Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
File: ha9TEIBex1YaGiL5yJDJcx-23r8.mft (raw, json)
Hash identifier: Ty0zpVmN9l9KHXsajqpWGvHxlQw5Wx1hnTxp9UW9FgU=
Subject key identifier: 59:18:88:28:91:8B:BF:CD:D2:31:78:DE:2A:47:B9:2B:BD:36:B5:1E
Authority key identifier: 85:AF:53:10:80:5E:C7:56:1A:1A:22:F9:C8:90:C9:73:1F:B6:DE:BF
Certificate issuer: /CN=85af5310805ec7561a1a22f9c890c9731fb6debf
Certificate serial: 0196BAB6848C78E463FC53E9CBCC4BED3D73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
Manifest number: 1536
Signing time: Sat 10 May 2025 15:00:45 +0000
Manifest this update: Sat 10 May 2025 15:00:45 +0000
Manifest next update: Sun 11 May 2025 15:00:45 +0000
Files and hashes: 1: Gumma7CSH0QJDyYLGYO8JVucFbw.roa (hash: AHbFRK4oddEvM9hnH4lxRaSLOWlIxIkwfpWyReC2ymY=)
2: ha9TEIBex1YaGiL5yJDJcx-23r8.crl (hash: rXgv5dRf+8RaFAVsrDxLXLR646nEiKs6i8vyitqoiZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:84:8c:78:e4:63:fc:53:e9:cb:cc:4b:ed:3d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85af5310805ec7561a1a22f9c890c9731fb6debf
Validity
Not Before: May 10 15:00:45 2025 GMT
Not After : May 11 15:00:45 2025 GMT
Subject: CN=59188828918bbfcdd23178de2a47b92bbd36b51e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ee:1d:52:c8:d7:a5:3a:04:00:6c:04:f8:3f:
f9:55:e6:f6:9b:6c:a1:b4:9b:a6:b8:3d:2f:e8:bf:
0c:8a:a7:4a:5c:37:81:4b:6b:02:1a:96:13:b5:1c:
91:f3:bc:8a:c1:15:72:1b:fe:c1:73:94:41:c4:8f:
26:86:40:14:8e:f2:7d:a1:e7:2d:2d:db:f6:e4:ea:
9b:1e:1f:6f:a5:a6:02:76:8c:8a:be:b8:02:af:6a:
48:95:9e:74:9d:c3:6f:ae:b1:f2:bc:88:35:39:fd:
89:48:d3:cc:d6:b4:08:3d:09:51:00:39:2c:d1:56:
10:81:20:13:cf:2d:35:ef:0a:b4:c3:90:88:c1:b4:
c1:aa:08:28:bf:9a:f7:0c:9b:72:39:c6:3f:69:8b:
fc:5e:c8:ee:af:42:f4:cb:15:5a:b7:ce:33:f3:75:
c0:d4:30:ab:dc:9c:97:6a:21:97:96:71:4e:33:05:
c6:6f:1e:0d:74:51:5c:54:81:38:23:8f:c4:90:33:
d8:0d:1a:a4:8f:a0:88:e1:97:f0:e3:27:4f:a1:21:
17:52:d0:eb:0e:ae:10:5b:12:75:69:f0:38:a6:c5:
84:83:c0:4e:d7:f1:ea:89:5c:b2:e6:c4:5b:97:de:
4e:1b:35:71:69:68:16:a7:cf:ff:74:05:32:d3:f0:
64:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:18:88:28:91:8B:BF:CD:D2:31:78:DE:2A:47:B9:2B:BD:36:B5:1E
X509v3 Authority Key Identifier:
keyid:85:AF:53:10:80:5E:C7:56:1A:1A:22:F9:C8:90:C9:73:1F:B6:DE:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:06:a6:a9:35:ce:6f:30:2d:bb:e5:d3:83:1c:d2:c1:d0:dc:
dc:d2:f7:8b:8c:70:7b:bd:3a:f5:cf:a5:30:cd:1e:7c:6e:ad:
fc:99:b4:1d:0a:a2:e9:af:00:c7:2e:80:64:eb:ae:e2:fc:b8:
65:89:34:d2:7d:3e:39:a1:4c:d2:14:23:cb:48:94:78:a9:00:
92:a6:37:ea:25:af:53:3d:62:e3:3d:8e:4e:fd:ae:72:21:d1:
46:f1:8f:a7:20:bf:a5:9a:e9:b6:61:cd:72:c4:de:58:74:6a:
92:e4:85:fb:af:e7:db:6f:15:c6:7d:99:1a:49:d8:a7:bf:2e:
c7:97:48:d1:e0:1e:e2:5d:3b:4e:76:5e:4a:30:b7:6b:4c:ac:
44:ab:52:9c:8e:2d:59:73:0d:42:4a:3c:52:f1:eb:66:6d:67:
85:f7:e3:33:98:56:74:c4:12:0b:88:2a:d7:96:44:80:cd:99:
e9:b2:c3:9a:06:c3:ce:fb:3e:ca:f2:f3:f0:89:ac:f1:5f:e0:
33:76:f2:64:c8:3d:ac:2d:bd:59:26:26:1f:f6:81:47:60:77:
23:79:a0:86:ba:08:e5:70:dd:d5:e4:2c:07:ad:37:9f:e1:66:
10:ce:bb:03:dd:15:93:08:5b:c6:25:5f:8b:cd:40:ae:ec:9b:
ff:7b:69:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:41:01 2025 by rpki-client