Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: v/CxNBw+n3Whos0oQtb5yNKYmrCKC9lju+9hBE40bRg=
Subject key identifier: 13:4F:E0:96:A1:8D:44:4B:73:BC:8B:8B:45:37:38:03:13:91:67:C0
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 0196B558C7DA9D4146D09B6B44958D6D7383
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 01B0
Signing time: Fri 09 May 2025 14:00:16 +0000
Manifest this update: Fri 09 May 2025 14:00:16 +0000
Manifest next update: Sat 10 May 2025 14:00:16 +0000
Files and hashes: 1: 2pti9pBmz4atvNZhpCWITb53-xY.roa (hash: 0r7is1hWfeXO9VX604GYHWtiKXbqtiLGFrPkk9l13E8=)
2: CR8YJspwxomYpmDyzYM2dLoc98I.roa (hash: iJ3gsU4zydGrCTb03TaGmqam+0fxWdzK3zynKtfQSFo=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: SoDX4LZmtQ8amYM2c93v56FDr8C+jLEbt2k2/Ssr4l0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 14:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:58:c7:da:9d:41:46:d0:9b:6b:44:95:8d:6d:73:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: May 9 14:00:16 2025 GMT
Not After : May 10 14:00:16 2025 GMT
Subject: CN=134fe096a18d444b73bc8b8b45373803139167c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f9:9b:72:e8:d5:27:61:84:a8:f0:fb:54:d2:
03:ca:4e:eb:9b:0e:96:ca:f5:60:04:a8:00:19:47:
1d:d8:77:c0:da:fc:cf:48:d9:dc:61:36:b4:3a:85:
1d:28:80:9c:ba:c3:00:28:4a:35:5b:c6:94:4b:ea:
6e:1b:48:ff:da:db:b5:4c:15:5e:32:77:11:22:96:
ef:a6:7e:44:6e:86:9e:1b:af:d8:e5:cd:98:7b:07:
2e:f2:67:ee:cc:58:c2:48:89:9a:bf:c4:90:b8:7c:
c9:8a:19:07:4d:27:0e:79:07:a1:51:21:d9:cd:b6:
da:4d:ed:61:54:b6:35:af:fa:bf:71:b1:bf:36:a7:
46:91:bf:81:0c:bf:5d:1b:7c:b0:8c:d7:20:4b:fa:
3f:94:09:55:50:42:13:55:44:b8:9e:a9:1e:c8:7d:
10:15:56:a0:6f:ca:6d:11:a4:99:a1:89:e9:81:f8:
1a:30:d4:a5:33:4e:c2:d3:8f:66:f6:a0:90:bf:b4:
ca:32:e2:25:ad:54:16:b0:be:b3:2a:c1:4a:ca:2c:
fc:fb:69:fb:99:f2:cc:85:20:41:75:39:0b:b2:87:
f9:ce:fc:45:87:3b:1a:f1:cd:de:22:85:21:cb:b1:
97:96:e7:73:10:a7:a0:f8:a2:8d:60:81:37:b9:0e:
b4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4F:E0:96:A1:8D:44:4B:73:BC:8B:8B:45:37:38:03:13:91:67:C0
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:a8:a8:a0:4b:84:b9:90:51:8b:cb:9d:17:03:57:9d:1a:a5:
db:de:8f:44:b6:03:0b:7e:c0:b9:6f:6e:00:6c:d3:95:f4:47:
1c:45:c7:9a:75:13:6e:e3:ef:ae:8a:e5:dd:e8:22:57:fd:6d:
8e:a8:00:39:04:e8:68:94:2a:e0:a5:83:2e:05:47:60:ff:c8:
b1:70:1e:4b:26:b0:19:9d:fe:4f:a4:2b:64:21:75:d3:96:4c:
ef:59:74:73:22:a3:67:f4:0d:54:8e:55:f2:23:c6:67:c7:73:
e5:92:7b:25:c1:2d:f1:17:59:4c:75:25:59:f6:7e:64:75:84:
8b:f0:b9:5d:06:02:f3:3b:d1:ba:bf:d0:2f:7b:87:d8:c5:22:
36:d4:3d:74:a1:b8:2b:26:fc:65:29:a4:c5:5d:d9:9b:51:d0:
76:f8:87:c6:92:72:30:58:61:56:74:21:e4:c4:ba:f3:7e:61:
ac:54:49:2c:d3:63:01:ea:9c:e7:ec:18:5e:4a:a2:94:dd:6a:
f7:4b:9b:30:91:56:19:70:56:e9:50:e5:c7:dc:35:eb:e4:ac:
f7:90:66:b2:70:72:94:b9:2e:15:fb:55:42:21:42:ad:28:5e:
e2:ee:c4:25:2a:ab:d8:1f:55:69:85:ae:4a:ae:8f:57:4c:e0:
1d:3f:7c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:41:37 2025 by rpki-client