Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
File: 4HG570GlOChYzZ7vmKf7nRJqpK4.mft (raw, json)
Hash identifier: GcQ/g+5MZoHpkhc16ieqkW5QoP2Ez+9H0LlK2YnCoy4=
Subject key identifier: A2:A6:6C:1B:24:69:65:D6:5C:DE:2A:32:E1:42:0B:E9:E4:02:D9:CD
Authority key identifier: E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
Certificate issuer: /CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Certificate serial: 0196AA3161AA04F075BCCD537FA48B38BA21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
Manifest number: 0253
Signing time: Wed 07 May 2025 10:01:24 +0000
Manifest this update: Wed 07 May 2025 10:01:24 +0000
Manifest next update: Thu 08 May 2025 10:01:24 +0000
Files and hashes: 1: 4HG570GlOChYzZ7vmKf7nRJqpK4.crl (hash: 96zbjxwwfFWhqH0Xw+dEyCvm0gBoRsf2tQXWVykYmxI=)
2: YBfLAkuYURNDoMTvjD2hLc0uuNc.roa (hash: gM7Y+qrK9OGNkcbA31bQAYiigRBUM5Di4cIR3nOhPM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 10:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:31:61:aa:04:f0:75:bc:cd:53:7f:a4:8b:38:ba:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Validity
Not Before: May 7 10:01:24 2025 GMT
Not After : May 8 10:01:24 2025 GMT
Subject: CN=a2a66c1b246965d65cde2a32e1420be9e402d9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:76:51:54:30:72:f8:06:2c:80:fc:7e:af:a9:
2c:4f:23:d6:e7:2f:86:ea:93:94:60:b9:d8:a2:e9:
7c:a1:a8:be:57:5b:58:8e:08:8c:80:64:64:11:d6:
05:14:47:e9:8a:a5:18:49:cc:a9:3e:f2:41:02:83:
5b:e2:73:f6:9d:b0:48:2b:c3:ae:c5:5f:65:e9:d1:
19:06:df:1f:73:a5:71:ad:76:80:ad:91:62:04:15:
d8:11:03:11:f7:98:63:b4:41:cf:d2:50:a6:30:6b:
e2:d9:b4:35:f9:a2:58:10:a8:cb:90:00:31:be:25:
2b:b9:eb:f0:9b:c9:67:ad:97:a9:63:9e:5e:3a:6e:
3e:be:95:2d:38:cd:45:c7:b1:fa:f7:16:46:b6:ec:
f4:a2:12:c6:21:6a:2b:74:d5:8a:53:1e:d6:d4:a9:
89:32:40:7f:9c:c1:10:25:d6:09:21:72:46:83:78:
16:52:15:70:78:b1:50:92:46:3a:42:4a:80:a6:89:
8e:07:17:2f:e3:7a:9a:52:5b:6b:28:59:70:be:3c:
ca:30:11:4b:ff:30:5a:9b:42:30:d8:89:fa:80:c1:
fc:36:9f:ee:25:81:87:3b:72:51:67:aa:01:c2:64:
dc:03:c2:6f:c8:47:1e:fd:7f:d8:4d:d7:56:b8:ba:
f8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A6:6C:1B:24:69:65:D6:5C:DE:2A:32:E1:42:0B:E9:E4:02:D9:CD
X509v3 Authority Key Identifier:
keyid:E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:04:8b:66:90:d6:ec:81:07:7c:1b:c2:09:02:6a:e4:46:60:
46:2f:07:d5:93:16:04:52:b9:04:61:1f:c3:83:8e:10:11:e1:
42:51:8f:c2:6f:ba:b9:e0:7b:f3:74:13:3b:e6:0f:59:15:2e:
07:b2:af:39:05:67:fc:2d:fb:e1:26:f7:82:3e:b6:13:6f:5e:
99:9b:89:fb:bc:e9:c9:97:c6:a1:b7:3a:1a:35:e6:9d:9f:38:
8b:6b:83:83:be:7d:c4:9f:0d:ec:50:18:d4:f8:43:a4:45:d6:
18:65:cd:97:81:a0:bd:8a:53:ea:37:92:02:9d:c4:26:c2:8e:
85:86:ca:e2:1c:ac:94:47:78:ba:fc:9b:3f:15:28:0e:fa:9a:
a3:11:ca:2d:83:89:b8:9d:55:12:1a:6d:d5:1c:e9:b7:67:fa:
06:d1:5b:50:0e:cf:45:9e:be:9e:09:b3:c6:07:11:0d:71:3a:
af:b4:38:0f:38:b9:07:ca:3e:d5:dd:65:3e:fe:89:3e:e9:bf:
bc:9d:92:99:63:92:47:a3:03:37:04:df:64:fb:2c:e3:3b:34:
0d:f9:a7:83:e4:18:ee:bc:f8:01:66:01:95:f4:a9:3c:cd:9f:
61:79:ba:dc:6e:46:6e:aa:8d:8d:1e:a8:55:a1:1f:a4:42:eb:
b8:d6:00:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 17:11:16 2025 by rpki-client