Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: evgfPmIVYHcYXrZI6HlKqSWz6FS+CQ2FQn1rdCy08+g=
Subject key identifier: 33:42:EE:07:64:61:E1:37:A2:CE:BA:F4:C5:5A:BA:DD:45:DB:C1:0E
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0196A57856F3F7440651AB60A9267B38B408
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 05A8
Signing time: Tue 06 May 2025 12:00:49 +0000
Manifest this update: Tue 06 May 2025 12:00:49 +0000
Manifest next update: Wed 07 May 2025 12:00:49 +0000
Files and hashes: 1: Kw49QnoalcUIwGD7L_UCEBnFzUk.roa (hash: 5nS3wTYqHyzRyVlDkHb3qPe9ElMZpDyRT50Au3dlMjE=)
2: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
3: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: 0/QlSMfS/AhNThw1BY/rNahclsvGWXe/EgVGeew8ll0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 12:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:78:56:f3:f7:44:06:51:ab:60:a9:26:7b:38:b4:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: May 6 12:00:49 2025 GMT
Not After : May 7 12:00:49 2025 GMT
Subject: CN=3342ee076461e137a2cebaf4c55abadd45dbc10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:e4:f8:18:5a:90:8b:10:29:68:3a:26:e8:44:
4d:94:e9:6c:7d:3d:a7:d2:1b:2f:03:7b:4c:23:bf:
5a:15:d9:1a:fb:a0:ee:3a:ae:e7:11:e1:22:44:37:
2c:90:b5:a6:c1:88:f9:3b:21:c0:3f:f2:51:94:48:
de:59:b2:ac:02:41:bc:14:2c:ae:1d:c1:fc:72:5d:
8a:ee:45:a6:38:07:67:f3:97:a1:53:68:24:e3:8e:
90:a2:85:58:6a:e8:6c:2f:f7:09:3a:ca:7f:b6:2f:
84:f2:9b:ca:d2:e3:45:a6:7b:7b:19:d1:b9:50:70:
cd:76:6a:ca:ef:8a:cb:68:1a:0e:b8:8c:91:96:d5:
38:3b:06:61:a0:cd:ff:97:16:9e:19:03:70:a3:8a:
98:cf:69:bb:83:37:1e:df:46:4d:c1:5d:3e:e8:39:
9a:b5:f6:23:c7:fa:f8:12:44:60:5e:70:77:35:11:
ed:91:b4:78:2c:e2:f3:37:da:55:7b:a3:76:32:0f:
24:a3:3c:40:45:84:9a:50:65:f9:81:6e:dc:e3:ac:
da:b4:68:12:bb:93:1a:5d:d0:f9:de:40:94:98:2c:
37:ec:50:cc:d9:2d:57:ad:03:a5:00:a4:63:ad:35:
e0:72:40:33:57:2f:f6:ba:72:e2:7d:e6:e2:d7:a0:
28:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:42:EE:07:64:61:E1:37:A2:CE:BA:F4:C5:5A:BA:DD:45:DB:C1:0E
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:05:4e:1d:33:a5:14:19:b9:a5:ed:90:a7:98:6d:e2:81:40:
ef:d2:cd:d1:ad:6a:9c:95:2d:71:c0:f7:33:42:ce:d8:d0:17:
4b:80:00:e2:ce:80:39:1d:04:9c:99:44:82:c3:33:70:f7:42:
12:7d:3b:5b:68:92:e8:c1:29:25:d1:d2:cb:46:b1:bd:5d:a2:
9e:3b:d4:2a:f0:cf:1a:f8:30:c8:42:4d:93:12:a1:71:e4:ef:
97:d2:54:0e:ae:62:61:28:87:74:2e:01:97:b9:23:f7:c1:1a:
56:15:33:3c:45:37:4b:60:7c:64:68:45:ba:79:b7:e0:49:11:
a1:7d:12:6b:4e:5d:f2:c3:9f:58:6a:96:00:4d:cb:03:f3:2d:
2a:62:11:d0:14:7c:4a:ca:b5:04:f7:f2:46:a0:97:c1:b5:ba:
bd:a4:48:85:ae:29:6f:6e:ad:8e:c8:52:d2:41:48:e1:46:55:
1a:f2:0e:3b:7b:16:bc:51:f9:85:e9:75:30:93:61:83:b2:1c:
bd:7c:9d:aa:f6:ca:e4:05:e4:32:b3:1c:4a:eb:e7:cd:99:84:
be:e8:ef:eb:34:0c:e1:b9:7f:3f:65:dc:df:f5:85:6d:a1:02:
d3:61:87:c9:7c:0c:56:8c:f4:d6:69:8e:ba:7f:67:45:bf:9c:
de:5e:af:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 20:39:48 2025 by rpki-client