Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: k3QHi31S594zrg4lidunQuTBEQq01zPach7iWyfvwyQ=
Subject key identifier: DF:A2:A4:E7:BC:E1:C8:EB:D0:CE:73:DF:66:3C:02:FF:D8:1C:10:CF
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 0196BA11E226204EFDCE3031A382C3120FC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 57
Signing time: Sat 10 May 2025 12:00:56 +0000
Manifest this update: Sat 10 May 2025 12:00:56 +0000
Manifest next update: Sun 11 May 2025 12:00:56 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: WopANY7gAEf0h8tnNoObGTNQJEnS1Es+foouF+qkyto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:e2:26:20:4e:fd:ce:30:31:a3:82:c3:12:0f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: May 10 12:00:56 2025 GMT
Not After : May 11 12:00:56 2025 GMT
Subject: CN=dfa2a4e7bce1c8ebd0ce73df663c02ffd81c10cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a8:17:48:07:f2:18:ec:55:2d:97:2c:77:06:
7a:44:e8:49:9c:57:9e:18:75:7f:07:c0:aa:47:17:
f2:d5:89:a1:9c:5d:27:31:4f:a4:f9:10:33:90:b5:
f8:b4:69:90:38:09:19:a4:ac:9f:fa:e1:3c:65:e0:
c5:cb:d2:96:50:c2:6e:e5:d6:ff:8c:29:54:56:3f:
c2:c0:a7:df:d2:7f:e3:a9:02:07:92:03:c7:64:35:
5b:11:7f:2b:04:74:4e:55:36:9f:ab:10:71:ec:5d:
40:f3:d4:64:88:5d:43:9c:a3:db:bb:8c:8d:d6:2e:
bc:aa:a3:c5:e6:78:80:31:86:07:83:00:88:78:88:
08:e0:76:b2:74:aa:a9:5f:d9:ec:aa:08:f4:90:f6:
16:7b:7d:07:0a:fd:f0:ee:25:8d:9e:78:f7:99:c1:
ac:3d:cd:70:09:e7:75:42:2f:78:f4:ce:d2:05:fd:
3b:0a:a2:cc:28:37:23:8e:a7:86:16:5c:81:dd:02:
82:af:3a:f5:6b:09:84:35:b0:5c:b9:00:e1:f7:a2:
3c:f1:16:1a:6c:2a:bc:60:a0:49:b3:cb:f7:0c:ea:
8f:43:0e:72:dd:f6:73:12:cf:f4:c2:6e:57:75:f0:
73:0a:15:f4:a7:0c:22:7d:56:fb:11:4d:27:e4:74:
db:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A2:A4:E7:BC:E1:C8:EB:D0:CE:73:DF:66:3C:02:FF:D8:1C:10:CF
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:5d:c5:b7:5c:70:b2:08:fb:f4:22:35:f8:3b:93:e5:25:b3:
b6:ca:0f:cd:bd:6b:97:a7:cc:1f:76:76:8f:b1:9d:ee:4c:39:
d3:62:06:c3:37:83:85:52:69:02:f7:21:8a:d8:fd:82:58:7f:
7e:2c:53:70:93:d4:48:4f:aa:9e:a5:14:a0:f6:cf:3a:b4:56:
2b:8d:58:c5:6b:f5:23:f8:b7:a0:b9:17:83:43:f2:f9:55:bd:
e2:0a:c0:dc:16:0c:f3:7d:37:91:db:63:e0:4d:5a:12:70:cb:
f8:9c:25:70:d3:ac:fa:b8:37:f4:0c:33:34:f4:5a:f1:89:b6:
33:fd:91:f8:12:c0:df:38:19:c3:94:57:27:21:7c:67:e0:33:
b9:48:c7:4c:a2:f4:04:74:00:0c:3b:44:bb:33:ea:bd:07:88:
59:0b:2b:fd:14:ea:0a:7c:9d:bd:7c:e8:fd:5a:fe:11:ad:f0:
12:5f:f5:78:ef:63:5c:bb:17:fe:e3:ba:d7:45:0c:3d:5c:d2:
98:ae:a2:1a:d5:03:3f:51:fd:94:dc:67:88:85:cc:74:80:c4:
62:49:1b:67:af:83:c7:22:65:3e:65:1d:f1:33:46:23:b9:f9:
b7:8d:be:a4:d8:fc:e8:43:bc:ab:9a:0f:0f:f6:87:9b:f7:bf:
f3:dc:4c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 15:06:36 2025 by rpki-client