Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: uoDlU1cpFck0tPcLYPbRTpE7UpbXtGYJ+gNBQta0fWw=
Subject key identifier: 6A:D7:5B:66:A2:A8:36:37:98:7A:53:F6:93:83:35:3E:B4:73:9D:94
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0196BF37F7DEEB8E24020834D4881F1B5942
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 0F71
Signing time: Sun 11 May 2025 12:00:38 +0000
Manifest this update: Sun 11 May 2025 12:00:38 +0000
Manifest next update: Mon 12 May 2025 12:00:38 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: iZ9FZ+dFgo9+pTYNHnI6WUwi10nVwDQ4R+T6hnCk0hw=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:f7:de:eb:8e:24:02:08:34:d4:88:1f:1b:59:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: May 11 12:00:38 2025 GMT
Not After : May 12 12:00:38 2025 GMT
Subject: CN=6ad75b66a2a83637987a53f69383353eb4739d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ba:43:9e:77:d1:3c:8b:18:5d:64:34:7b:df:
a7:6e:5a:02:cf:b5:82:80:cf:a1:18:5d:4f:69:3d:
96:47:de:5a:54:6c:f4:5c:29:02:4f:fc:0d:8b:e6:
50:57:eb:46:ee:9f:0c:0d:3c:af:6b:e0:58:73:17:
79:f3:b4:0b:6e:22:3b:24:58:44:84:ee:1a:bc:e8:
3a:bf:72:99:8c:e3:70:72:a6:46:30:25:e4:b5:48:
71:29:eb:01:89:04:46:12:df:0e:17:b1:c6:d9:21:
e0:5e:a6:57:ee:30:0b:6a:da:15:a0:82:d6:32:f2:
ef:02:6c:b4:a9:74:d4:a4:52:7c:e7:80:7e:83:8b:
cb:2f:35:85:46:1b:72:7f:4f:23:d5:72:e3:4d:de:
af:eb:21:9a:e9:06:42:0e:5c:06:a3:d5:18:c3:a5:
ec:fa:50:01:42:20:17:ba:70:58:80:b5:2a:51:34:
40:88:fe:e2:81:dc:7d:da:16:d3:22:a5:3c:95:4d:
e7:1b:b7:18:70:75:cc:33:35:bd:6f:b6:1c:69:05:
f9:13:c6:cc:00:af:ad:4e:46:26:b4:e3:2b:8a:27:
b0:7b:e2:d6:3b:a2:49:f1:34:89:8b:cb:68:a6:71:
db:e4:a1:96:97:b3:1c:6a:93:15:64:62:b1:75:b0:
41:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D7:5B:66:A2:A8:36:37:98:7A:53:F6:93:83:35:3E:B4:73:9D:94
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:8f:bd:ba:65:86:b8:a9:85:0a:82:06:05:7e:a9:bc:7e:a2:
ad:e3:84:0b:87:e5:d2:35:02:dc:32:45:76:94:3e:2d:72:e0:
84:aa:a0:25:e4:88:ac:ee:62:de:1e:45:44:cd:d3:ed:24:6f:
12:b5:ee:fe:0c:40:93:3c:49:c0:da:00:86:1e:f2:7d:86:29:
30:3d:e4:f9:30:11:b6:d3:38:37:80:9b:a3:5c:42:2b:de:88:
ab:8d:87:28:d6:47:55:37:bf:a3:0d:63:01:e9:6f:6a:7c:4d:
06:40:ad:f1:42:a4:0a:0a:b2:32:bd:dd:00:fc:1a:f5:86:12:
f1:30:f2:2f:f4:57:d3:ca:4a:0d:48:7c:52:b8:52:f7:22:f3:
14:61:1e:3a:87:6b:5e:a6:dc:24:52:26:8c:c8:bd:e3:24:70:
b6:09:ea:47:0b:8e:b0:df:33:75:6e:38:60:0b:23:6a:fa:4c:
b4:ae:7d:1a:6e:34:56:8a:ac:6f:26:50:5e:0a:3b:8a:0c:8f:
85:93:bc:1d:b3:70:3b:68:d3:c5:6d:fc:ed:76:2b:ae:a0:24:
f8:f6:26:cc:13:77:60:51:b1:ab:e0:15:6b:4f:75:c4:44:51:
a5:60:ff:77:60:4e:3b:f4:d7:81:4e:bc:bd:21:d0:6e:2b:e6:
e1:b4:8e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:23:12 2025 by rpki-client