Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: yJkPuQdbNA6hNotaRKo9Q5DqtQF8LRNh0U+3iXEVypY=
Subject key identifier: 58:A8:42:21:4A:0F:FC:11:64:08:70:76:CA:27:F5:14:7D:B4:E2:8A
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 0196BE257D61ECCE85972C1BA29FDCCEC4F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 08C8
Signing time: Sun 11 May 2025 07:00:50 +0000
Manifest this update: Sun 11 May 2025 07:00:50 +0000
Manifest next update: Mon 12 May 2025 07:00:50 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: z0+ipV0iVkKhyC2JchvnUKfh0YokQ3gjurR5d2j0qqA=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:7d:61:ec:ce:85:97:2c:1b:a2:9f:dc:ce:c4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: May 11 07:00:50 2025 GMT
Not After : May 12 07:00:50 2025 GMT
Subject: CN=58a842214a0ffc1164087076ca27f5147db4e28a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:60:79:c6:a9:f5:40:c8:88:fd:b7:53:79:bb:
b8:e0:fe:8f:13:70:9d:74:ab:70:a4:96:ee:ad:4f:
af:bd:9e:91:46:91:91:70:72:aa:c7:04:83:29:45:
3e:d9:5e:01:65:08:c3:36:eb:20:a7:70:14:ed:23:
3f:f7:56:5b:94:51:d3:37:c7:ce:61:56:0f:b1:df:
ea:3b:12:a3:e5:b4:14:fb:ec:53:08:44:fa:9e:ce:
9e:ec:82:73:e0:f3:c8:ed:39:90:82:1c:02:84:49:
00:65:8a:6f:6b:10:e7:f4:13:6d:c6:35:a0:b0:92:
81:70:58:72:30:66:7c:6f:65:2c:d5:1f:96:d6:1c:
4e:2f:07:ba:55:ff:47:cc:82:61:77:1d:c8:d1:f7:
a3:00:c4:4c:41:85:24:91:90:69:1a:2c:a7:26:54:
4e:5a:7a:41:cd:14:60:5f:ef:38:75:34:ad:a1:63:
71:bd:5e:56:13:be:71:5b:d0:b3:00:cc:e4:56:2a:
7d:0b:1a:69:c7:c6:fe:11:9d:d5:82:c1:b8:0f:2c:
44:c8:3b:0d:50:94:35:e8:2c:60:f2:20:ce:64:07:
af:bd:4a:2f:2d:f8:92:6a:21:99:dd:c3:2d:75:de:
7a:d1:87:12:22:81:0b:2a:f1:dc:c4:cd:5a:c8:46:
11:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A8:42:21:4A:0F:FC:11:64:08:70:76:CA:27:F5:14:7D:B4:E2:8A
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:cb:c2:81:26:08:9a:1a:ae:ca:b7:01:48:68:be:ad:eb:ed:
d9:a7:87:27:9f:24:31:d0:5a:0d:a9:81:dc:ab:8d:c3:40:2c:
a7:2c:2e:a5:d3:af:13:59:c6:02:71:c7:09:d4:43:cc:7b:a3:
cb:71:70:53:ab:06:2b:51:55:76:37:97:05:86:2c:38:84:e2:
26:01:d8:57:2f:82:e4:06:9c:5a:d3:ed:dc:3b:30:b7:32:05:
85:1e:73:48:7a:81:98:dd:44:bf:da:65:ff:22:05:0c:dd:c5:
41:b5:96:a1:ce:a0:87:d8:87:3d:14:d2:33:32:9f:5e:ef:d8:
88:36:bf:74:94:9e:fa:14:fe:8c:35:d6:12:ae:06:a5:2b:ad:
cb:a5:fa:66:dd:5a:e6:32:db:45:a9:34:c4:3a:76:e9:db:a8:
44:bc:b0:bd:7a:1f:78:9e:8c:ba:96:12:a4:18:c1:77:5d:f1:
04:b1:03:5e:c9:6a:b4:92:2e:9a:05:ab:ad:9c:1b:e9:01:a4:
7d:95:24:31:52:69:96:e7:6f:41:fe:19:63:99:f0:4d:14:62:
9b:e7:81:f5:4a:d5:ff:e3:1f:57:fb:5f:ea:1c:ce:91:03:c6:
8c:5f:cb:2b:12:cb:34:78:c7:60:dc:73:83:7d:de:90:7e:7a:
bf:86:ed:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:36:28 2025 by rpki-client