Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
File: hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft (raw, json)
Hash identifier: 6NA9liTJlHDxUyTVr5kItHnGKM0cJxtgx4MtE2RPVFU=
Subject key identifier: 4D:8C:F4:5D:7A:AD:46:4C:D7:28:C1:05:4C:FC:94:20:60:73:C1:25
Authority key identifier: 86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
Certificate issuer: /CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Certificate serial: 0196C239036C8D45AE85D23C2A7E9588DE93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
Manifest number: 1119
Signing time: Mon 12 May 2025 02:00:38 +0000
Manifest this update: Mon 12 May 2025 02:00:38 +0000
Manifest next update: Tue 13 May 2025 02:00:38 +0000
Files and hashes: 1: F1oKspcJIA5CxkgGbXIBC4yC3wU.roa (hash: AKm+230ZJqvJyVXgtMkmTb/sN72RWRXH+8ONP+ImAwA=)
2: hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl (hash: TvEtjzjcLvFTD31rGvMHtoBDye1sqc148NjDlaG/m/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:03:6c:8d:45:ae:85:d2:3c:2a:7e:95:88:de:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Validity
Not Before: May 12 02:00:38 2025 GMT
Not After : May 13 02:00:38 2025 GMT
Subject: CN=4d8cf45d7aad464cd728c1054cfc94206073c125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c8:82:71:ee:7f:dd:69:2e:ab:0a:04:99:ae:
0c:df:79:57:03:43:c1:e7:ce:f7:de:a3:38:f3:ee:
62:b0:12:f4:93:96:44:fd:26:9b:25:f9:7f:ab:a4:
af:be:d5:c5:d6:a8:0e:2d:9b:fa:bf:28:a1:d8:7d:
37:e2:7e:34:69:61:a7:b1:27:9b:65:22:10:4d:a0:
85:eb:30:72:00:40:c6:3e:e8:95:a2:2b:b5:d9:c6:
cc:4a:7b:33:73:c8:1e:fa:7a:b3:c1:9c:40:b8:67:
7f:cf:84:2e:fc:84:45:75:3a:c4:7a:53:9e:ee:98:
95:34:e9:f3:28:9a:d2:32:fc:17:88:23:60:de:7e:
2f:0e:96:40:8d:c0:f7:2a:3b:71:68:aa:62:25:99:
90:a8:93:54:35:e3:38:0a:ed:22:8e:7e:21:0c:36:
50:9d:6d:8d:1b:a5:f9:57:8d:aa:90:18:f2:bb:27:
1b:53:93:d8:47:23:a6:e1:64:a3:ca:24:f1:2c:45:
10:f9:a0:93:b6:22:1b:9f:23:de:29:44:d0:98:e5:
c1:3e:e4:1e:36:38:30:c3:8e:d6:f5:af:27:26:d3:
bc:30:82:e0:df:3b:1d:bc:72:bb:72:9f:d7:cc:17:
9e:49:a7:97:1a:44:03:11:35:71:72:60:09:a1:d1:
0d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8C:F4:5D:7A:AD:46:4C:D7:28:C1:05:4C:FC:94:20:60:73:C1:25
X509v3 Authority Key Identifier:
keyid:86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:9f:ca:a9:24:29:3a:6f:f5:1b:73:2f:84:9c:25:c6:7f:62:
6b:9b:50:10:8b:cf:ac:04:39:f6:e7:1b:6d:f3:57:3c:c4:58:
f9:fb:57:97:44:89:7e:c3:ea:6d:65:b4:9e:01:dd:10:67:47:
a3:b5:5d:26:c6:06:be:3f:49:d7:88:0f:89:f5:81:fd:f6:29:
e7:b1:a0:4a:09:43:aa:2b:26:3d:65:b5:97:0d:22:d6:7d:6e:
b4:59:2c:ad:3c:6e:b2:b3:26:6e:e3:fc:98:f2:c8:88:1c:ea:
77:b3:6b:f0:cd:cb:28:18:e5:0c:16:27:b1:2b:56:b7:92:fc:
e1:7e:b2:a7:54:ce:cf:67:72:dd:1f:00:5f:a2:7e:a5:81:e8:
f9:6b:6e:1a:b1:14:c8:db:a0:81:21:d3:b0:32:04:df:45:85:
9e:5f:b4:f4:cd:39:f9:4c:d7:0f:6d:99:be:ad:ac:aa:a2:80:
b3:78:a4:bc:95:85:15:72:45:85:b5:33:13:e8:73:c7:64:e1:
86:89:85:1f:f3:ff:50:5b:b2:63:4c:95:50:74:13:ea:c2:50:
f4:a9:c0:bf:18:27:df:34:85:d8:e4:0e:44:60:40:81:0e:1a:
eb:99:69:bf:6e:f7:2b:78:7e:5a:e4:be:0a:2b:80:e7:07:8b:
90:10:ae:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:37:39 2025 by rpki-client