Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: 7u21k2PJeJA+yWwBbS1eTbRZskQQfwhOyAe1TFUChF0=
Subject key identifier: D4:84:3B:3F:48:F6:97:26:25:BF:44:50:01:E8:C0:84:BC:44:56:8F
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 0196C984B2DED7CBED023A8D82665F5A8A30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0E9B
Signing time: Tue 13 May 2025 12:00:38 +0000
Manifest this update: Tue 13 May 2025 12:00:38 +0000
Manifest next update: Wed 14 May 2025 12:00:38 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: cJMR2874sTYTJepnHqSa74tfsr76Ucu9tqImjr+OUdE=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:84:b2:de:d7:cb:ed:02:3a:8d:82:66:5f:5a:8a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: May 13 12:00:38 2025 GMT
Not After : May 14 12:00:38 2025 GMT
Subject: CN=d4843b3f48f6972625bf445001e8c084bc44568f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:a0:87:1a:59:73:aa:b7:18:34:95:6c:8b:
a7:83:bf:3e:f7:5f:84:60:74:15:fa:5f:14:70:64:
9b:eb:0a:8a:61:f3:70:ac:3f:11:2f:29:56:72:93:
b1:62:56:30:bd:a8:e9:09:37:be:0a:b5:94:f0:11:
b7:f8:02:52:09:a9:49:d1:a8:f6:07:42:9c:ed:96:
59:81:79:5b:6e:95:c2:84:91:80:33:c7:25:61:30:
43:af:ca:ef:5c:48:9d:5f:ee:29:9d:0a:e2:7a:42:
11:59:15:9b:25:a6:cb:a1:98:fa:b4:87:05:b4:0a:
4d:1d:6a:e8:e5:d9:d9:ca:f6:07:70:6f:d2:89:67:
e0:e4:ae:4a:79:c8:b3:29:ed:ab:84:74:5c:38:fb:
69:31:42:66:d4:90:97:ab:34:93:2c:5c:e6:fe:f2:
cc:56:bb:a8:e7:ba:50:2a:61:5c:f5:f2:19:25:18:
f8:f8:4d:cd:23:53:97:e7:40:eb:f4:fc:7e:e0:d3:
80:04:52:da:83:21:4f:a2:19:0a:2a:82:d0:77:2c:
69:8e:24:bc:13:18:20:a9:74:8c:72:8c:05:0e:75:
00:4f:31:ab:f8:a4:3b:51:c8:be:ae:05:63:f0:45:
20:de:0e:01:7c:e3:5e:64:66:f5:97:e5:66:31:6b:
08:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:84:3B:3F:48:F6:97:26:25:BF:44:50:01:E8:C0:84:BC:44:56:8F
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:77:77:c5:9c:e3:f3:63:3f:01:c8:aa:ae:d9:34:9f:e9:ee:
c3:f3:c6:7a:cd:1f:e0:80:6f:78:15:a3:3e:10:d8:08:d8:f5:
4f:38:3a:d1:f8:d3:46:7a:96:02:7f:54:fb:ac:a5:10:0e:d1:
dc:1d:d2:79:44:0c:c0:7c:08:0d:e5:b7:32:ea:4a:ea:a7:85:
0d:7c:cc:af:af:02:7e:5b:69:4c:ee:08:2b:64:5d:a2:ae:09:
41:4b:02:d5:09:bb:bb:e5:4c:39:5f:70:8c:fb:b4:16:13:7c:
53:f2:0e:cf:a5:21:ff:f2:64:b3:aa:f0:6b:05:21:92:e2:67:
a4:9b:54:d4:4c:b3:75:bc:cc:07:08:91:4b:ee:44:a4:41:d6:
44:e6:a7:72:e8:4e:38:3e:5b:0c:c9:cb:b3:6f:89:7b:82:52:
a5:7c:cd:e0:9d:35:a4:9f:51:c1:52:7a:72:89:fa:0a:dc:79:
75:76:69:1c:26:1f:ff:64:0f:9d:ec:88:ce:a8:60:5b:ea:2b:
b3:22:e1:66:e2:ba:13:4e:83:67:86:72:5a:78:f9:c7:3a:cb:
05:7b:88:8f:53:95:e1:15:70:72:2d:36:0d:ac:e9:02:ba:e0:
31:9d:ae:9c:1e:56:8b:2b:eb:a5:4f:1c:20:6e:38:e0:92:7d:
e3:58:26:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:25:16 2025 by rpki-client