Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
File: hkl2gukwfEaHk1AIFzFH0TKijGQ.mft (raw, json)
Hash identifier: u3b+Ecxmtfdh/DQqs2zLGo5WasUA0KD7t+51PmlgrVU=
Subject key identifier: E8:E4:1E:28:A5:6E:AC:F4:09:0D:29:26:12:1F:6C:B6:C9:DA:30:58
Authority key identifier: 86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
Certificate issuer: /CN=86497682e9307c4687935008173147d132a28c64
Certificate serial: 0196CD9859696B2D31B93BAFECCF10CDDDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
Manifest number: 1109
Signing time: Wed 14 May 2025 07:00:35 +0000
Manifest this update: Wed 14 May 2025 07:00:35 +0000
Manifest next update: Thu 15 May 2025 07:00:35 +0000
Files and hashes: 1: BO3NQSZ4VV4Ik2Xgm0m98xsd8Po.roa (hash: zwimVc6fdY5wMVCx/Pfq1/VebJPothW3yZi++5QRFE0=)
2: hkl2gukwfEaHk1AIFzFH0TKijGQ.crl (hash: xJlWZm03Yo3J+MTY2w1SsdgxlEkSLA7UYu3oPnSgZ+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:98:59:69:6b:2d:31:b9:3b:af:ec:cf:10:cd:dd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86497682e9307c4687935008173147d132a28c64
Validity
Not Before: May 14 07:00:35 2025 GMT
Not After : May 15 07:00:35 2025 GMT
Subject: CN=e8e41e28a56eacf4090d2926121f6cb6c9da3058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1a:35:f3:9d:04:0c:74:d1:16:61:7d:c3:f0:
28:46:d1:f1:62:be:1d:ee:11:49:4e:77:a9:ce:9c:
89:24:e1:fe:35:f6:0f:d0:b2:f0:46:3c:81:e4:c8:
7f:e1:6c:9e:fa:5c:7d:9d:f6:26:16:1d:f0:4a:45:
19:7d:68:c1:bf:bd:33:83:b0:51:b6:d4:f9:59:53:
f4:dc:27:0b:db:29:09:18:97:aa:8d:c6:8b:15:a1:
25:7c:7e:80:04:71:5e:3b:bf:35:2f:64:0d:39:97:
22:e5:d5:9d:a5:c4:0d:66:37:32:33:b8:bf:db:54:
c4:f1:99:e8:4c:94:b0:93:2c:00:2a:6a:7e:79:cd:
53:1b:39:d7:6f:f9:b4:f9:ba:ba:0a:4b:7e:f1:8e:
fd:90:78:8e:f5:84:6d:29:38:83:49:b2:e9:72:5c:
63:23:37:05:06:b3:97:b3:94:dd:5c:76:47:69:84:
31:4b:2b:93:07:ff:9e:e6:52:68:2f:35:be:be:50:
9b:1c:fa:d5:3d:fb:23:cd:9a:cb:c3:6e:2b:b7:20:
d9:71:18:e2:74:87:52:7c:87:3a:ad:83:dd:3f:a8:
d0:9b:3a:db:3e:23:19:d0:e8:10:96:ce:e7:58:67:
72:27:61:32:0c:1b:13:f2:7f:61:dc:e6:84:c2:7d:
d2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E4:1E:28:A5:6E:AC:F4:09:0D:29:26:12:1F:6C:B6:C9:DA:30:58
X509v3 Authority Key Identifier:
keyid:86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ca:80:b6:bb:26:85:92:9e:f1:f8:8b:df:eb:eb:c2:fd:e3:
90:5d:18:cd:2b:1e:78:82:f4:a7:d4:2a:95:1e:e1:92:f3:b3:
0e:f0:5c:81:59:97:80:c7:7b:0a:cf:3a:ee:77:38:5e:49:de:
3a:29:06:30:a3:f7:4d:27:0d:e2:4c:26:0a:a6:9c:c4:fd:56:
ad:00:75:56:98:65:bc:f0:48:ee:2c:32:81:03:b8:f7:1b:45:
42:f1:90:6a:4f:df:cf:da:da:81:b9:6f:25:72:44:fa:50:b3:
3b:7f:4e:26:5d:4f:70:74:02:65:f3:8c:0d:91:88:b3:4a:a0:
15:00:47:db:b3:a8:7b:19:85:9f:24:fd:2e:cb:d7:6e:d8:e5:
60:f7:b2:e7:44:85:ff:6e:09:7c:f6:9d:cb:48:10:19:94:4b:
35:3c:11:42:7a:29:c9:ca:e6:a7:a5:78:6a:5c:e3:19:a1:75:
5f:e6:d3:2f:6a:b7:31:a6:04:63:91:b9:f5:e1:85:68:46:88:
90:66:21:b0:26:6f:3b:50:12:f6:26:d8:ba:f9:04:29:83:35:
3f:b1:10:ed:78:a2:c3:dd:af:d9:aa:45:5c:39:cf:f8:23:16:
30:d0:c4:e6:d6:f8:3a:5d:2b:97:d2:e4:77:46:6c:0f:b0:84:
7d:f8:44:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 09:26:01 2025 by rpki-client