Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
File: hGbpF0La0bn0x5ayOzfres2FgWE.mft (raw, json)
Hash identifier: 3TMT3+JBrYlpbKn/pemnOyMC+pmTpKbk7zlw4D1e/Mo=
Subject key identifier: 2E:57:97:BE:C1:86:A7:D4:85:AB:DF:58:3F:FF:E9:B5:45:6B:92:63
Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Certificate serial: 0196A8B0035008D10EBCF9F151ABABC4448F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
Manifest number: 0FCA
Signing time: Wed 07 May 2025 03:00:29 +0000
Manifest this update: Wed 07 May 2025 03:00:29 +0000
Manifest next update: Thu 08 May 2025 03:00:29 +0000
Files and hashes: 1: bbcA4RxlQmcQjNn0rG4goHNMuOU.roa (hash: R2hOoSIVcz11ndb2ZPvvYv6Kv8fgZfMkny+ajnRe2GQ=)
2: hGbpF0La0bn0x5ayOzfres2FgWE.crl (hash: tMy7NrWXrAzm9w21vYfuZGjf79wAq0R5RLzfeQtqUMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:b0:03:50:08:d1:0e:bc:f9:f1:51:ab:ab:c4:44:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Validity
Not Before: May 7 03:00:29 2025 GMT
Not After : May 8 03:00:29 2025 GMT
Subject: CN=2e5797bec186a7d485abdf583fffe9b5456b9263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:92:ae:a3:22:d1:7b:7e:89:f5:bf:66:0b:76:
f3:d8:8a:10:b2:12:27:e2:68:bd:42:27:34:99:46:
ef:89:82:3f:47:82:56:3a:c6:10:cf:4b:fa:c4:f7:
dd:33:86:d4:39:ef:54:e0:27:e6:18:68:81:66:ff:
ef:e9:a5:ff:c9:fb:10:e3:25:0f:67:63:9d:de:49:
fc:52:c3:d6:d7:f7:cd:e9:1f:9d:b5:3f:fb:66:49:
2b:66:96:7a:5a:68:db:a7:6c:b1:22:14:7c:98:54:
d5:f3:6d:e7:73:96:51:ec:4b:da:4c:a1:aa:a9:e6:
1f:04:ab:c9:be:11:bc:7c:19:ec:2a:9d:a3:6c:b5:
4c:7e:87:e4:4b:c3:da:e5:76:b1:f2:e1:f4:1d:1e:
21:31:5c:9b:91:48:4c:73:c6:9b:c2:ab:38:13:ee:
33:8c:23:45:ea:ec:a3:d1:6c:5b:d1:32:81:43:39:
6e:d7:cf:8a:7f:cd:1e:8e:0e:4d:03:a7:d7:25:13:
13:2c:09:04:e0:4d:41:6d:f2:80:69:ef:2c:a6:04:
76:56:0a:af:a3:50:23:b1:5d:c1:93:29:de:7c:b3:
25:06:dc:96:2d:33:e9:7b:6a:2f:8b:fb:ec:98:62:
05:40:4b:16:44:1c:28:ac:5e:c6:59:16:42:fe:1e:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:57:97:BE:C1:86:A7:D4:85:AB:DF:58:3F:FF:E9:B5:45:6B:92:63
X509v3 Authority Key Identifier:
keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:c5:a2:2b:8d:60:ef:8c:b5:f9:7a:eb:56:33:47:95:0c:89:
63:3b:3b:b3:71:65:e1:6e:7d:8b:fe:90:c1:6e:9a:6c:58:83:
a7:e4:6c:ef:e6:4b:6b:33:0b:a1:6d:d3:8d:05:93:6e:20:f6:
84:99:e1:00:c7:18:cc:1c:22:d4:7a:62:44:02:7f:ad:3b:c6:
38:29:54:9b:41:e2:c3:3d:9f:9d:98:e3:ef:46:7a:42:ef:8f:
6b:2a:83:63:e7:4f:d8:77:5c:58:ad:db:81:8a:43:4f:14:64:
af:e5:47:94:91:a9:f2:e5:0a:b8:c1:db:86:14:0e:b5:3a:c0:
0f:59:96:d0:28:4c:a2:50:e5:2c:ef:19:17:31:7b:37:71:f0:
a2:2a:0c:c1:d9:e3:f1:4d:99:65:6f:d6:9d:5b:d0:e1:d6:09:
7f:f5:da:00:a3:2d:7d:b2:4a:e9:47:8c:ba:d4:35:8a:a4:d4:
a2:8b:f7:34:07:c4:81:14:df:83:da:ae:0c:20:a7:72:30:98:
6d:8b:6e:ad:8e:8a:49:6e:13:cc:41:f4:de:2f:08:cb:5e:1f:
52:21:79:f8:06:d9:b0:d1:05:47:60:b3:a0:44:26:c6:de:94:
cd:b3:a8:e1:49:02:fd:a8:a5:1d:af:52:b5:b7:ef:0c:74:de:
63:82:1e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 13:44:15 2025 by rpki-client