Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
File: sHATRrrVXff13IGLu7z7t9sQcKs.mft (raw, json)
Hash identifier: UnetEsZlvCyRRHCqvN2U7v3YJnIkSZg5NT+T5sdD7do=
Subject key identifier: B4:D8:5A:DD:E1:2B:68:FD:29:D0:52:68:5B:A2:D9:4B:27:EF:80:28
Authority key identifier: B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
Certificate issuer: /CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Certificate serial: 0196BFA5A1D6E15410E63D27D0C4838F47BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
Manifest number: 0709
Signing time: Sun 11 May 2025 14:00:25 +0000
Manifest this update: Sun 11 May 2025 14:00:25 +0000
Manifest next update: Mon 12 May 2025 14:00:25 +0000
Files and hashes: 1: 2vj5B04hPRrl36o4PSEreNmSh7Y.roa (hash: IJqTeCNZ6pF/BafJ55wl0YbKPxsnvPNim6xG4D9/f0M=)
2: sHATRrrVXff13IGLu7z7t9sQcKs.crl (hash: pRNJjHiBTSuIx/BVKHbNPTwHb/YzE4TPgnEqyr7bhMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:a1:d6:e1:54:10:e6:3d:27:d0:c4:83:8f:47:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Validity
Not Before: May 11 14:00:25 2025 GMT
Not After : May 12 14:00:25 2025 GMT
Subject: CN=b4d85adde12b68fd29d052685ba2d94b27ef8028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:c7:bf:5f:73:18:55:14:93:d5:5a:c6:fd:
75:77:1a:e6:2b:03:0d:bb:a5:0c:26:f5:42:a0:56:
b1:84:9d:ce:48:b2:e6:e3:18:9d:f1:82:b4:9a:5b:
5b:6a:0a:6f:7b:d0:e8:cd:9a:9e:d1:b0:dc:78:10:
88:90:d2:d6:d0:4c:1a:2c:5c:89:8f:a4:68:09:6e:
bf:66:8a:6f:28:d3:5e:e5:31:50:78:15:1e:43:96:
62:94:c6:ed:a2:e4:d9:42:f0:bb:31:fa:dd:d8:a0:
f8:b7:e6:7a:ca:50:b5:4e:8a:f0:a3:f9:22:85:e6:
f8:5e:03:17:48:b8:f3:bd:cd:99:9f:0f:0c:d6:c7:
ac:df:28:54:18:fa:42:94:cf:0b:c2:1f:58:35:7b:
47:c6:5e:6c:b1:5b:d3:93:c6:97:83:6f:29:b1:46:
df:50:4d:6e:41:c2:dd:22:51:b0:bf:9f:49:a7:24:
7e:d2:90:7c:59:5a:83:0c:61:d3:84:0f:f0:50:fd:
01:91:b6:2e:f0:88:66:3a:2a:08:6e:2e:8c:f3:53:
3c:48:22:3d:45:9f:0e:c0:cb:70:4e:1c:64:30:41:
be:86:c4:db:36:66:85:08:dc:1d:1b:ce:43:97:08:
de:b4:53:7e:91:06:4c:03:6a:f2:cf:6a:c5:95:8a:
d5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D8:5A:DD:E1:2B:68:FD:29:D0:52:68:5B:A2:D9:4B:27:EF:80:28
X509v3 Authority Key Identifier:
keyid:B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:10:dd:50:bd:4c:b7:d7:b1:97:e9:b3:86:93:40:13:d1:87:
a7:1d:0c:24:85:a4:c2:a7:8d:7d:f6:a8:95:da:02:09:d9:a9:
60:9c:47:55:c1:8c:02:b9:33:5d:a8:e3:c4:c5:d4:af:e6:4f:
38:e0:f6:6a:8f:b4:4d:33:03:b1:82:01:2d:10:a1:ba:75:e0:
af:91:b6:79:42:2e:78:18:8c:51:9c:34:72:d8:2c:b0:31:3e:
9a:ae:ef:72:53:b2:56:9d:8a:42:9b:17:24:e4:51:f6:3e:00:
1d:f3:74:f7:e5:48:cb:92:bf:28:d5:3f:4a:35:d7:09:88:ce:
f6:6c:10:c7:1f:54:c6:b9:fb:f8:41:0b:ab:88:b1:9b:db:d7:
82:cb:91:0e:43:83:ec:fa:25:c2:3a:73:ad:f2:86:11:41:83:
79:98:19:23:7b:d5:1e:cc:6c:df:b7:85:70:2c:95:1b:a5:d2:
5a:11:69:ef:ed:66:cb:fd:42:08:7b:8b:ee:a9:11:ce:4f:ab:
9e:21:14:c6:e7:ed:57:25:6a:18:69:65:55:01:fd:12:6c:66:
bf:a8:2c:bd:02:15:90:18:24:4a:8d:c3:63:70:f0:1c:20:58:
20:1b:6a:75:12:14:43:f0:48:5e:87:ce:c4:43:e0:64:13:11:
68:a5:e3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:49:11 2025 by rpki-client