Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
File: hP-lQvPYybB7926uioaYWj17Tcc.mft (raw, json)
Hash identifier: seMItdREdoLfsB90UwKBzMif0fRsBmaxclqVjRw2OyA=
Subject key identifier: 14:8E:6B:E2:DC:A2:FC:BC:BD:CB:B1:D5:7A:73:B0:A6:6B:96:22:AA
Authority key identifier: 84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
Certificate issuer: /CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Certificate serial: 0196C34C5C3F2A26B8D5ED72225BC1424344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
Manifest number: 0F00
Signing time: Mon 12 May 2025 07:01:23 +0000
Manifest this update: Mon 12 May 2025 07:01:23 +0000
Manifest next update: Tue 13 May 2025 07:01:23 +0000
Files and hashes: 1: hP-lQvPYybB7926uioaYWj17Tcc.crl (hash: GlsdLWgln7LV27hwOjnOZj4FLBeU3U2wHR0jRQs+JC4=)
2: uVc-YEHIfoCC97dYSAB-pvf1GkY.roa (hash: xpxJQ9Mtn3be8wfSELsmv9qWpA192efhc4xx/FDBoxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4c:5c:3f:2a:26:b8:d5:ed:72:22:5b:c1:42:43:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Validity
Not Before: May 12 07:01:23 2025 GMT
Not After : May 13 07:01:23 2025 GMT
Subject: CN=148e6be2dca2fcbcbdcbb1d57a73b0a66b9622aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b1:bc:aa:5e:53:68:67:da:a7:a1:a2:c7:13:
8a:b3:95:61:3e:b2:43:da:6b:37:e0:b9:5e:1e:85:
82:6d:81:81:dd:ce:10:20:91:ff:a1:f2:14:3d:38:
ac:32:13:df:53:ca:07:67:22:5a:ec:6e:96:cd:93:
ac:32:bf:1c:d2:55:46:c0:b2:a9:6c:4b:f0:ee:24:
8f:72:62:7e:b7:61:3e:1b:f4:9d:3d:2c:ff:1e:28:
ef:90:ed:cf:db:9a:dc:69:41:b4:12:49:34:d0:6b:
f7:ad:56:d8:1a:54:40:43:e7:26:4d:b5:3c:09:ea:
a8:e4:67:71:e4:05:c5:3a:88:da:10:ee:73:9e:11:
41:7b:67:fd:a8:27:c2:79:f8:b1:3f:23:43:59:ce:
c1:55:43:69:6c:14:71:40:50:f1:f8:5c:65:ae:97:
2c:7f:22:a0:16:46:61:60:d7:b4:11:13:2f:cf:7c:
6d:86:d0:c9:36:27:8f:aa:c3:fa:b7:a2:a6:1e:e7:
36:bb:de:b6:28:d9:0c:84:a8:69:19:d6:b1:e4:31:
06:14:a0:af:ff:6f:57:ef:6b:4d:a1:c8:7a:e5:df:
29:ab:50:c3:1a:6d:88:91:27:e3:9f:14:6b:b7:b4:
0e:29:ff:34:83:cc:7f:7a:ec:4f:93:7c:dd:37:b8:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8E:6B:E2:DC:A2:FC:BC:BD:CB:B1:D5:7A:73:B0:A6:6B:96:22:AA
X509v3 Authority Key Identifier:
keyid:84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:76:16:c0:ab:3d:45:8f:6d:8c:d4:44:44:b1:77:98:54:58:
d4:14:15:20:d2:d8:ab:7f:d4:a5:63:8b:52:ed:ff:6e:3d:a9:
81:ec:ed:5a:30:7d:63:65:b6:c0:e5:aa:76:51:68:d6:0f:02:
41:6c:e9:18:f9:ef:ba:e8:21:36:cb:f2:68:e7:ea:eb:82:12:
57:fd:54:e1:d8:29:cd:71:12:1e:49:93:ce:b8:5b:fe:9e:9a:
b5:81:c1:84:48:53:c7:d4:77:6b:a1:c8:da:5e:c5:68:38:8b:
fa:f6:c2:30:a6:83:94:fb:fc:33:c2:19:56:fb:a3:f0:5b:32:
c4:7f:db:1f:41:af:81:10:2a:35:aa:4f:a5:f9:d2:86:d2:23:
dc:f0:8e:61:c9:ad:67:b9:98:ea:9a:86:3a:e1:7a:2f:9c:d9:
11:39:99:38:00:da:08:dc:54:26:6d:26:54:94:da:b1:a1:6b:
53:80:17:04:e2:4e:0d:8c:16:38:28:67:28:d1:a7:a2:67:d9:
a8:69:e4:fc:be:9d:25:83:57:7c:45:c8:56:bf:78:f0:6d:fd:
34:00:b9:46:28:7e:b0:a1:61:d3:d4:76:40:c1:cd:88:9e:a0:
7b:e1:b4:ae:f3:22:6e:ce:ac:8c:9f:2e:22:33:e1:ac:ef:9c:
4a:cd:ca:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 16:15:06 2025 by rpki-client