Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
File: hZjLxOjf8YUkBKmSddIwpWERBV8.mft (raw, json)
Hash identifier: E1ulyZOrXCQ10q8TDxJ8kj1pTTOieOrxtKnorYgwMiQ=
Subject key identifier: 2C:93:8D:04:7E:A8:D8:BB:FE:66:D3:D9:AC:9B:EF:75:B1:6D:99:33
Authority key identifier: 85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
Certificate issuer: /CN=8598cbc4e8dff1852404a99275d230a56111055f
Certificate serial: 0196C45DFFCB585AE27E1BE0373C8A5A803D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
Manifest number: 0586
Signing time: Mon 12 May 2025 12:00:16 +0000
Manifest this update: Mon 12 May 2025 12:00:16 +0000
Manifest next update: Tue 13 May 2025 12:00:16 +0000
Files and hashes: 1: XOOVHbvdi1PyG7OFqAlrThvaXr0.roa (hash: FXkyjiQc3j4OAi/BA8pdWLXnVuKz/SxHMWNuTxG6YRs=)
2: hZjLxOjf8YUkBKmSddIwpWERBV8.crl (hash: MpJVLxdBhpsUA1mnld5x5+R6yPiUtp3QHoRYvyTwFmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5d:ff:cb:58:5a:e2:7e:1b:e0:37:3c:8a:5a:80:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8598cbc4e8dff1852404a99275d230a56111055f
Validity
Not Before: May 12 12:00:16 2025 GMT
Not After : May 13 12:00:16 2025 GMT
Subject: CN=2c938d047ea8d8bbfe66d3d9ac9bef75b16d9933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c4:4f:e7:59:10:11:3c:84:de:3b:bf:b0:a9:
be:b7:26:4a:2b:62:76:e0:49:92:6f:75:a3:1b:bb:
15:ee:15:e2:29:45:b1:b7:29:8a:50:b0:a3:54:ae:
2b:51:ed:a6:95:1f:f8:24:bd:9b:8b:74:a7:aa:3c:
5e:03:ed:c6:12:c4:5c:ba:4a:44:f1:20:3d:65:38:
a5:0d:20:90:3e:2a:9c:0e:bc:7c:bc:32:03:42:17:
69:54:5e:3e:fb:72:e4:30:16:2d:90:3a:e5:29:5c:
d9:45:42:db:17:50:b4:4c:ae:63:8e:a2:3a:04:ab:
f7:93:47:7a:17:0e:7e:30:ab:20:06:15:d0:87:ca:
f1:23:94:2e:f2:55:a9:48:ba:78:f4:a0:d5:e2:6b:
13:de:06:77:27:6c:f5:9a:56:66:68:a4:b5:89:98:
a7:b6:fe:9d:3e:fa:16:98:ac:14:02:e5:74:08:4f:
b6:5f:d8:1a:94:75:5c:b9:a6:92:96:1b:5d:46:8c:
b4:ed:65:19:30:15:f8:a6:9c:a7:a5:44:d7:a4:38:
d9:42:28:a0:a9:f9:8c:53:fe:9a:d7:67:92:7a:dc:
b7:ed:32:9d:51:de:77:e7:10:d9:6b:a1:53:47:e0:
0e:d6:b3:61:ab:78:05:be:e4:12:e5:89:1c:94:c2:
ff:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:93:8D:04:7E:A8:D8:BB:FE:66:D3:D9:AC:9B:EF:75:B1:6D:99:33
X509v3 Authority Key Identifier:
keyid:85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ad:67:64:2e:4d:71:f4:50:32:54:d9:7d:e7:96:55:a1:52:
de:0a:e9:be:e1:57:f3:80:e6:ec:4c:cd:2e:4a:e7:00:00:9b:
3b:57:4c:ea:62:02:9e:c4:a7:d9:0c:da:a8:66:44:6f:48:4c:
a0:5c:95:ac:e0:41:0c:37:f6:71:55:38:45:7b:59:e7:b2:0e:
99:cc:f6:73:b6:13:7b:e9:9b:36:1e:74:ca:04:01:be:4c:2f:
f6:bd:02:cc:80:ba:df:cf:5b:fd:f6:90:35:58:d8:10:70:4d:
3f:42:e1:66:6a:56:7c:b9:ad:4e:3e:40:48:a0:50:26:97:a9:
4c:85:79:57:4d:db:26:60:1d:97:66:bc:c8:ab:c1:8d:d2:89:
d2:c9:ac:b6:7f:ff:62:b9:f5:46:88:53:f6:9e:17:f1:0e:1e:
a9:27:22:f8:38:12:a4:0a:ea:e1:49:ab:f1:37:a3:7b:b5:b8:
0e:81:3c:8f:41:89:95:2d:7b:1e:8d:80:87:57:8c:63:ec:9d:
a1:6a:b3:da:0e:16:63:40:6d:72:38:63:d7:d7:3d:b5:8e:b3:
5a:2e:b7:37:34:34:c5:63:7c:32:11:01:5c:a3:3f:94:82:3e:
72:96:ce:1e:a5:e8:24:39:5e:72:69:95:ae:f1:f9:3a:27:5f:
f2:6d:af:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:43:20 2025 by rpki-client