Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: SoYGhN5Tvtm/xviG3QOaLAUaFrdWJYCgVbXBLITBUvM=
Subject key identifier: A1:B3:0A:18:81:2F:59:98:02:36:A5:7C:BD:0C:5D:31:E4:20:1E:ED
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 0196BE5C4184DF7AA92D21B1163EA065AA37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 09E8
Signing time: Sun 11 May 2025 08:00:39 +0000
Manifest this update: Sun 11 May 2025 08:00:39 +0000
Manifest next update: Mon 12 May 2025 08:00:39 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: SyWDWvlFDzGCy0t+135Gr6HhvUpgt1s9J1YUEJjSEg8=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:41:84:df:7a:a9:2d:21:b1:16:3e:a0:65:aa:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: May 11 08:00:39 2025 GMT
Not After : May 12 08:00:39 2025 GMT
Subject: CN=a1b30a18812f59980236a57cbd0c5d31e4201eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:2c:08:13:b7:2e:84:e7:98:8e:c4:dc:76:
cb:0b:fc:64:0f:34:1e:ee:e1:e0:02:c5:5b:b4:ee:
0e:21:e0:13:ce:7e:7a:e6:02:47:37:e0:c5:95:fb:
bb:75:3c:60:be:d1:49:1d:47:c5:ab:23:2d:25:00:
6b:79:1c:a7:d7:33:31:61:e4:09:ec:46:eb:a6:20:
a1:d9:32:25:f6:ab:7f:2b:26:12:9f:a6:5b:d3:d3:
e7:66:7c:74:0c:63:cb:5c:e2:d7:07:7b:78:ff:79:
0c:5d:06:3e:c0:73:5d:7e:80:5e:e1:45:2c:91:97:
3d:3d:b4:24:87:f3:78:c9:07:74:27:ec:46:b8:3c:
6b:7a:42:66:aa:de:03:88:77:21:a0:96:e6:62:43:
00:27:23:02:8c:e2:3c:b8:ad:09:0e:19:d7:87:ad:
53:dc:8b:6f:85:58:da:06:48:93:76:21:35:2a:c2:
29:47:b4:ea:72:35:8f:04:96:b8:bc:ca:53:b3:60:
d8:80:8a:58:e0:77:9f:0b:1f:2d:c2:34:42:cb:d7:
3b:ec:1e:9f:00:68:b9:02:50:38:7b:da:f3:05:c5:
ef:69:49:e4:1b:cd:23:d6:25:a4:68:8c:d1:4b:96:
6f:10:03:b1:85:de:a2:57:10:4f:26:1e:f1:70:6f:
6f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B3:0A:18:81:2F:59:98:02:36:A5:7C:BD:0C:5D:31:E4:20:1E:ED
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:dd:5d:0e:6f:2f:e9:e3:f0:04:95:3f:e2:cb:79:82:4b:30:
89:01:c0:e7:f7:fe:47:e9:73:86:4e:ad:49:19:2c:02:f4:13:
78:71:d1:8b:ab:ff:93:e3:1b:4b:f6:66:47:bb:d1:87:23:56:
78:2a:e4:73:f6:f7:98:32:c6:a6:3f:59:12:ad:55:c9:d0:3d:
73:88:b9:fd:95:a1:55:b1:d1:30:c7:9f:53:8a:e7:f2:47:bd:
92:59:1e:cf:05:c5:6e:2f:c4:ab:d1:89:81:18:a5:50:a2:57:
28:5a:9d:96:3a:b5:49:fd:e3:d6:7d:ad:d5:30:70:b1:ed:d3:
73:5b:90:8e:f7:cc:54:5c:f7:a8:0d:76:12:b9:c4:3a:ab:f7:
47:c2:e4:be:56:74:04:86:f0:f1:56:83:f3:c3:54:48:90:19:
d6:9e:d5:6b:98:a7:4d:60:24:ab:d1:fd:69:af:d3:ff:04:2e:
be:8a:db:95:3c:be:c0:69:68:08:53:60:0b:32:ce:21:76:ad:
49:aa:f3:a3:48:99:4d:08:18:74:37:af:77:50:58:41:06:05:
1a:8b:48:91:09:90:01:1a:8f:b9:8c:32:2f:36:12:9a:a3:49:
d4:98:06:02:51:fd:c6:23:b8:a1:11:0a:a8:98:22:56:7a:8f:
7c:65:f3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:45:01 2025 by rpki-client