Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
File: huGrpgDN5ewxgxmxVZS2irlslWw.mft (raw, json)
Hash identifier: XWIVjBU9nH41MXfwU/aPezfUlYxBKbiNz7X7HkrNaT8=
Subject key identifier: FA:2D:23:A9:24:2F:ED:E5:69:46:6E:9F:00:54:A7:34:D7:0A:CF:10
Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c
Certificate serial: 0196B52266BE0FB4057F38EEAD1F1ACB33F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
Manifest number: 0E32
Signing time: Fri 09 May 2025 13:00:52 +0000
Manifest this update: Fri 09 May 2025 13:00:52 +0000
Manifest next update: Sat 10 May 2025 13:00:52 +0000
Files and hashes: 1: Q7vNAscnF-4OhkgVonOsxeJBDjA.roa (hash: 0ioDa0FuPDgR/Y4yLPplBITqL6YDwLS4b5dcomdJX+s=)
2: huGrpgDN5ewxgxmxVZS2irlslWw.crl (hash: pMToJK4UPh2mAeB67pw4RwJ4TnIOdCwdHualp/3s4L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:22:66:be:0f:b4:05:7f:38:ee:ad:1f:1a:cb:33:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c
Validity
Not Before: May 9 13:00:52 2025 GMT
Not After : May 10 13:00:52 2025 GMT
Subject: CN=fa2d23a9242fede569466e9f0054a734d70acf10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6e:08:0b:b3:9e:87:53:43:b7:31:92:1d:b2:
da:ac:35:b4:b2:51:62:2d:09:0b:97:73:17:1f:ca:
8b:ab:c6:00:fa:92:d5:0c:36:92:94:4b:76:12:c6:
c4:c6:cb:78:6f:45:a2:c2:cf:97:9d:f4:dd:0c:19:
a6:0c:8b:3e:00:f5:2a:30:15:98:e7:48:0f:cf:61:
b9:c6:f5:e4:be:e7:64:5f:4c:6d:82:75:c8:42:ef:
6e:1c:91:ef:1c:6e:fe:42:36:48:88:4e:ca:16:38:
6d:73:71:9b:62:d7:c9:36:1d:d0:e6:42:ab:b7:97:
6c:5b:f2:71:12:a4:25:5e:d0:28:75:cb:20:b2:f0:
d7:e6:c9:7c:b7:94:7a:f4:3a:1e:54:f3:71:7e:0c:
28:75:7e:52:74:27:e6:15:84:ee:57:02:8e:16:85:
28:77:9e:cd:2f:dc:5f:42:98:04:d0:c7:92:9b:50:
fb:9f:c2:a5:6f:d4:43:68:6d:50:7a:c2:6e:ea:d8:
e0:8b:86:38:95:43:07:42:93:28:0b:66:bd:7c:2c:
1c:36:72:8f:5e:da:51:d3:f5:22:4a:e4:5f:e4:8b:
25:25:68:a2:f6:34:c8:7d:08:e8:79:9a:49:a9:79:
0c:63:da:4f:74:c3:9f:02:b6:7b:bf:83:17:ce:fa:
b3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2D:23:A9:24:2F:ED:E5:69:46:6E:9F:00:54:A7:34:D7:0A:CF:10
X509v3 Authority Key Identifier:
keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:03:46:09:5f:cf:d8:05:87:f2:96:d2:90:cf:ef:8d:2d:93:
1e:b6:95:38:2d:6a:b4:79:70:7c:b9:51:2e:56:0c:a6:c2:d1:
92:9b:76:88:1c:d1:12:af:96:49:42:8b:8f:d0:45:a3:cf:0f:
c0:34:43:a3:6e:82:9a:b3:39:83:66:15:66:30:0e:44:15:aa:
88:9f:36:bd:50:1d:9b:f4:7d:57:8e:36:86:5b:c6:72:2f:d7:
8d:49:8d:73:c6:7b:9b:52:76:42:92:69:39:46:89:b1:de:68:
32:8c:45:a8:43:0f:83:45:94:97:16:d5:d3:29:48:76:b1:5a:
e9:e9:b0:27:ac:b8:fa:87:cd:b0:67:1f:94:ec:02:af:5d:89:
b0:b1:8b:12:f4:2e:f1:7c:8a:0c:2a:c7:32:e8:54:3e:8a:4d:
c2:6d:85:b3:ef:e0:60:b6:14:2c:3e:e3:49:15:3a:6d:d3:49:
55:8d:f0:db:a7:7f:d8:2b:15:65:a6:b3:86:88:70:67:79:e3:
11:9d:22:f9:4b:bf:3d:d3:e3:db:54:a8:1c:af:cb:7e:5d:99:
26:72:ce:29:79:0a:95:1c:de:29:ad:eb:97:2d:f8:16:cd:9e:
da:f4:2a:90:81:e1:b9:4e:ff:b5:5e:ae:02:0f:71:c0:53:c7:
c8:e3:8f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 21:55:09 2025 by rpki-client