Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
File: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft (raw, json)
Hash identifier: ttSMXNwe1UFP1d8hOm489gu58yScZdP0Scz0f8xJAnQ=
Subject key identifier: BE:0C:EA:34:15:7E:4E:3E:8F:50:24:C0:32:11:43:DB:16:A4:B4:0D
Authority key identifier: 85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
Certificate issuer: /CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Certificate serial: 0196B28F513A8176C19584D165F715E47003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
Manifest number: D7
Signing time: Fri 09 May 2025 01:00:58 +0000
Manifest this update: Fri 09 May 2025 01:00:58 +0000
Manifest next update: Sat 10 May 2025 01:00:58 +0000
Files and hashes: 1: cllA8kNp-t480y7IfyyWuiklziY.roa (hash: 5bq8pPC98WVuN+UCw7i3OOCXOObrhETW5cCP805rEU4=)
2: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl (hash: Rtnrc3XnhTCvDtldMmyPgf8btRKFZVnkx6t/d7IWIMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:8f:51:3a:81:76:c1:95:84:d1:65:f7:15:e4:70:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Validity
Not Before: May 9 01:00:58 2025 GMT
Not After : May 10 01:00:58 2025 GMT
Subject: CN=be0cea34157e4e3e8f5024c0321143db16a4b40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d4:f5:ee:90:6d:b8:5e:cd:61:87:68:b0:cb:
3f:df:79:41:7e:f9:39:bc:36:33:b4:56:bf:4d:2b:
b5:03:41:76:88:25:4c:52:e3:40:35:ad:42:d0:f7:
df:8f:ae:af:86:50:52:2e:e9:ee:f5:f4:52:6c:d6:
06:98:50:db:50:bf:9a:3a:69:3e:e3:f3:b7:8c:03:
85:b2:ab:d5:3f:10:ea:c0:cf:dd:10:1f:00:fb:70:
13:fb:05:29:05:86:24:21:0e:55:ca:5e:10:3f:2d:
6b:84:bf:9b:35:06:94:a1:de:f9:25:f7:92:00:92:
97:f2:ee:fc:15:d2:3e:b3:23:6b:0e:ea:0b:cd:a2:
0d:d6:72:ce:0b:6f:ca:bb:21:8e:de:21:3e:ca:5c:
06:15:40:f4:75:e4:29:b7:a1:58:74:0f:7c:7e:f5:
52:f6:9c:68:98:0b:fc:8b:d7:83:e8:a0:a1:73:68:
79:55:ba:88:5c:5d:59:ae:90:9b:65:9b:1f:4a:ab:
14:92:97:87:23:e5:3d:07:f8:8f:52:71:34:fe:8d:
cf:4e:80:86:cd:ed:f1:ac:6b:20:cc:c1:af:02:db:
59:27:1f:75:77:cf:6c:14:fc:b1:f1:23:a4:0c:e5:
bd:bc:0c:80:3a:8d:ce:77:76:04:50:46:a1:0d:6f:
2f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0C:EA:34:15:7E:4E:3E:8F:50:24:C0:32:11:43:DB:16:A4:B4:0D
X509v3 Authority Key Identifier:
keyid:85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:07:68:20:71:5f:c3:41:db:b2:37:b1:15:83:66:5c:39:cc:
ba:94:5e:57:ac:fe:7d:41:f2:ce:59:31:d4:64:f3:d9:70:a0:
36:ec:13:31:9c:34:fb:80:a5:a7:6f:1c:44:d8:d9:ee:d9:2b:
0b:e3:93:7d:36:ca:fb:8f:7d:97:0c:29:60:a0:45:2f:6d:42:
ee:d1:33:3d:0e:08:89:71:0c:ec:db:0e:87:b0:38:fd:dd:ec:
e1:0f:a4:77:fd:f6:c2:54:ae:57:30:9a:d6:6f:74:89:32:5e:
f1:24:b6:72:fd:41:ca:c2:8a:e2:87:53:97:66:11:5d:e7:90:
75:03:06:67:1e:52:e4:41:eb:02:97:ba:c9:9e:a7:a4:13:81:
d7:7c:b5:b4:e9:0d:28:7b:cf:ae:ef:4b:d3:01:d2:19:71:18:
73:9b:4e:2f:b5:06:97:e3:f7:e2:9c:af:55:f7:87:dd:48:7f:
fb:27:46:88:ba:6e:49:9a:00:44:1e:47:ef:78:84:83:43:2b:
50:50:d4:b7:ff:36:77:21:fc:0d:25:4d:e5:fc:8f:1b:84:91:
b4:05:a8:e9:cf:e3:1c:e0:ce:e0:de:37:7b:a9:f0:4c:46:46:
6e:45:7f:85:c4:ca:dc:e5:3d:0c:c4:c4:fc:08:11:e3:e9:8f:
16:07:47:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:05:26 2025 by rpki-client