Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: 7Vft3cpgogpI7FKqVSQAcg0Ng/3nxCHOniWgq84p/Mo=
Subject key identifier: E6:17:75:9E:10:14:FC:7E:0A:2C:45:4E:9E:A4:3B:9C:40:D2:D6:09
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 0196BA48E56275823AEA83326FDBF0113351
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 13:01:01 +0000
Manifest this update: Sat 10 May 2025 13:01:01 +0000
Manifest next update: Sun 11 May 2025 13:01:01 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: S5HLzVaLFgLj2dPszAA+0asiJTZ/tRzjXNdNvuih+1A=)
2: zYnN-i8U1PX-vVy0Kko-kLxeBsU.roa (hash: SDcPgjrr8y9zPr3/XTNgtJ+0oZH17N4IYV4VzMId4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:e5:62:75:82:3a:ea:83:32:6f:db:f0:11:33:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: May 10 13:01:01 2025 GMT
Not After : May 11 13:01:01 2025 GMT
Subject: CN=e617759e1014fc7e0a2c454e9ea43b9c40d2d609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:70:e1:69:ae:47:90:c1:a2:70:d3:08:68:4f:
32:ad:27:4f:5f:60:08:2f:4d:68:be:39:9e:08:dc:
ba:ae:b0:8e:7a:90:d1:53:eb:8f:2d:c8:51:65:e6:
c7:84:7f:7c:1c:6f:3c:e4:7f:9b:2a:1e:a6:a3:29:
6b:d1:2b:4c:6c:af:38:99:09:4a:b6:e2:eb:ac:93:
47:55:c6:b0:86:79:cb:c7:39:75:51:7f:aa:4b:c9:
1c:dd:4e:c7:9c:e5:b4:0a:d9:ab:c6:c2:41:3d:f7:
1c:0e:97:35:f6:49:c6:d4:78:d3:67:de:2a:c3:6c:
fb:fa:d9:65:4c:aa:66:d1:5e:cd:a6:12:57:71:31:
b5:cb:a0:e5:0c:41:e3:22:3e:de:59:10:2b:24:00:
1b:39:6b:b4:e7:7d:9f:26:52:ef:12:f8:0f:c3:e3:
b7:74:06:bb:d4:36:5c:e1:d3:bb:7d:3e:95:42:a5:
d5:4d:e9:e1:3c:7f:40:7c:41:30:52:d6:86:33:17:
71:c0:26:aa:e7:cd:ee:1d:06:ef:af:1d:6c:d1:de:
7d:33:3c:7b:9d:c3:b7:50:07:5f:58:1e:54:96:ae:
59:1e:74:48:ad:88:1f:4b:08:4e:31:b5:d3:74:36:
6e:77:0d:b8:c7:49:2a:45:ee:da:55:7c:a0:54:c6:
1c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:17:75:9E:10:14:FC:7E:0A:2C:45:4E:9E:A4:3B:9C:40:D2:D6:09
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:9e:77:73:fb:1e:f0:41:ee:e9:7c:0d:72:1e:9a:6d:4f:7f:
de:3b:a8:2a:a1:bc:e2:5c:5a:22:0e:f5:b0:a8:ec:60:77:95:
12:17:19:25:77:81:9e:06:71:58:37:82:aa:0f:ec:4f:c9:c8:
0f:6c:63:a9:f0:84:55:2b:47:c6:35:ad:6a:35:f5:6f:ea:aa:
a1:38:08:63:b3:b0:b0:79:35:81:4d:5d:f4:a5:50:ea:bc:f3:
3e:ad:cd:a9:bb:d0:be:71:8b:67:67:ea:83:ec:50:54:c2:8f:
25:78:8a:91:be:45:39:b3:23:22:6c:9e:8f:3f:68:15:a6:44:
d3:99:8f:d8:43:96:0d:30:c5:61:37:e0:87:ff:83:4c:62:f5:
ac:83:04:36:b8:6a:dc:70:f8:cd:88:49:0f:6c:4e:f4:59:eb:
b3:cf:c8:be:fe:fa:fe:18:d6:6b:c3:90:3f:0e:e9:80:ff:0b:
0c:08:95:5d:7d:0c:48:bb:89:4e:42:64:73:ff:ca:1a:eb:9f:
ed:a8:e1:e1:10:5b:53:e7:a7:3c:fb:73:dc:bd:29:f8:69:ec:
e3:80:25:99:17:f4:f5:13:e2:a1:aa:08:02:78:e2:07:50:98:
55:05:15:00:1c:3f:48:6d:b3:6f:bf:b8:b0:5b:db:fc:b3:2a:
22:fa:e4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:13:59 2025 by rpki-client