Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: dr61xCzz8NcnH9w4PE0ntBH0e1HsUdQh0Za7kYk9Law=
Subject key identifier: AE:42:EC:D9:2B:87:58:61:F6:6B:0A:E1:54:AD:8C:FC:07:A5:D7:40
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 0196B7B501FDCBDF9A78FB750AA49094D77D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 109C
Signing time: Sat 10 May 2025 01:00:15 +0000
Manifest this update: Sat 10 May 2025 01:00:15 +0000
Manifest next update: Sun 11 May 2025 01:00:15 +0000
Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: QCyWWPbqpPDSptHRxj2uJyr97iB3YmIMy/0R8c2CiME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:01:fd:cb:df:9a:78:fb:75:0a:a4:90:94:d7:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: May 10 01:00:15 2025 GMT
Not After : May 11 01:00:15 2025 GMT
Subject: CN=ae42ecd92b875861f66b0ae154ad8cfc07a5d740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f6:76:fd:7e:06:e0:98:e3:3f:e1:00:01:ae:
de:df:4a:1c:cd:81:e0:78:57:e8:82:79:ef:8c:76:
79:26:0a:6c:b2:5c:03:b8:08:3b:5b:5d:62:29:4c:
d3:0a:48:f5:2d:ed:fc:ba:90:10:71:d9:ea:22:d1:
a3:ce:ec:13:36:de:33:1e:56:d8:10:71:b5:78:69:
49:dc:00:4e:be:1f:9c:a5:52:38:8e:f8:4e:77:47:
62:ff:a5:ac:17:d6:0f:51:4a:7e:f7:77:cb:90:af:
de:bb:a9:d3:c9:6e:f2:45:f9:13:1c:f2:3f:dc:00:
f9:43:c6:be:67:50:c6:73:5a:dc:fa:e9:f7:dc:66:
9a:f5:d8:e8:ed:9b:ad:fd:04:cb:02:90:5e:36:f0:
c6:43:25:8f:63:20:53:b7:81:9e:9d:16:99:f9:58:
4a:1f:c6:8d:99:7c:f7:5c:ee:01:1b:9d:32:c0:46:
df:80:c7:c9:7b:55:56:e3:49:79:5c:c6:a4:ae:7d:
75:5b:cf:ef:af:6d:97:b4:ac:ab:48:fc:40:34:69:
ea:ea:6a:f0:f5:59:72:75:b1:82:cc:8b:91:31:9d:
90:75:5e:72:08:ae:6f:13:47:74:b4:bd:2f:6b:d2:
08:77:1a:fc:dc:7c:ae:20:b2:79:a2:9b:d6:69:9c:
0d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:42:EC:D9:2B:87:58:61:F6:6B:0A:E1:54:AD:8C:FC:07:A5:D7:40
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:21:e8:af:b8:95:99:28:2b:2d:71:60:24:23:b5:b1:dc:1f:
bb:b5:79:68:e9:e5:c9:3f:c6:9f:6a:c8:10:55:cc:13:5f:95:
ed:a5:3e:e5:9d:ff:de:56:41:b1:a9:b4:d3:5d:82:0e:07:fc:
14:01:52:0f:fd:20:f8:dd:e1:57:24:a1:b6:dd:14:15:52:a5:
68:6f:56:ab:aa:54:e0:cd:d5:10:a7:91:7d:b9:f9:82:3f:00:
a6:00:7d:d5:fa:9a:3c:f3:83:95:6f:3a:21:4b:a9:ec:f7:37:
dc:87:be:07:b1:e9:8a:af:0a:d2:f3:16:bf:a9:71:1e:e0:aa:
bf:b0:cd:f0:a6:0b:a2:e5:6c:1c:2b:c1:ee:1b:bc:25:f1:1c:
d1:ee:59:b5:56:cc:7c:07:fc:a4:50:9c:98:5a:64:c4:94:0f:
54:73:b3:4b:78:ec:bf:db:35:f6:33:c5:48:f7:58:56:92:cd:
77:41:39:1a:c8:f6:e8:63:ed:12:b0:c8:f2:67:17:1a:5d:10:
5f:4f:89:27:0a:df:e9:41:f8:a5:94:ff:2d:fa:99:48:0d:a2:
9f:89:d7:51:b2:3e:5e:67:af:f2:c7:6c:f3:c4:0d:2e:1e:4c:
f3:3c:f6:db:20:fd:79:98:07:dc:e8:ad:ae:d3:da:64:66:bd:
c3:7a:93:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:15:33 2025 by rpki-client