Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json)
Hash identifier: Fl6M2uGTvGTx+idP6Jdjo5u7jUCOZ8p81zYXeL0dDjI=
Subject key identifier: 43:6C:02:5B:82:E4:83:C6:5B:FE:55:17:30:CA:A8:78:6D:59:5A:79
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 0196B5FDD17B03062F5C31E5B575FCDDD187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
Manifest number: 0B72
Signing time: Fri 09 May 2025 17:00:32 +0000
Manifest this update: Fri 09 May 2025 17:00:32 +0000
Manifest next update: Sat 10 May 2025 17:00:32 +0000
Files and hashes: 1: 3n4D1SR6scBc56Ie3xGq3b0L8M0.roa (hash: aBbdE/LoKCgkOQOFc+caUhkJgro6NFyptlXPezVha0Q=)
2: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=)
3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: Dzttx77N6tGNaGmlwA7j0pf6yqbfEkzLXP5YYo72mE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:fd:d1:7b:03:06:2f:5c:31:e5:b5:75:fc:dd:d1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: May 9 17:00:32 2025 GMT
Not After : May 10 17:00:32 2025 GMT
Subject: CN=436c025b82e483c65bfe551730caa8786d595a79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a0:11:2a:a9:4e:de:0a:1f:a1:9c:99:e9:72:
6e:5a:c3:74:1e:84:61:a4:43:d3:85:dd:25:df:0a:
cc:7e:64:7b:db:c4:72:c8:45:6e:82:02:8c:35:e0:
89:df:6d:08:ff:c4:11:dd:5a:89:86:3a:8e:60:d9:
df:02:05:11:32:e0:3c:93:67:fe:a7:18:f2:ea:c9:
fd:64:97:b6:5e:33:64:20:46:87:76:40:e4:62:4d:
0d:25:46:70:6a:0e:c4:7c:0f:80:1d:a2:bb:64:83:
43:45:f3:51:bb:93:fa:af:97:1d:5e:67:c8:e2:b4:
13:60:23:e7:2d:07:60:62:7c:56:ee:3c:2d:73:b8:
19:6c:11:2b:d9:d3:cb:68:4a:b5:c8:0c:5c:01:13:
dd:a9:f4:31:af:a2:57:e4:e5:d7:7c:c9:d0:5b:e6:
44:17:3c:4d:44:b4:7b:17:c8:dc:16:4c:f2:cd:ea:
37:55:0f:87:81:3d:7a:2c:23:0f:af:5d:0e:fb:09:
60:7a:78:a6:a7:3a:eb:aa:f9:9a:02:3f:a9:a8:8e:
aa:0c:40:dc:b8:ff:08:da:08:02:e2:cb:16:05:3a:
1a:3a:d7:8c:47:8c:76:05:22:56:bf:16:25:fe:d9:
e0:d9:8a:e9:05:f2:db:6c:97:ec:42:40:3e:b3:e0:
a3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6C:02:5B:82:E4:83:C6:5B:FE:55:17:30:CA:A8:78:6D:59:5A:79
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d5:3b:af:cc:c1:e9:c9:0b:d2:d4:02:8d:70:09:71:c5:bb:
27:10:68:e2:ca:51:c1:b3:8c:b2:36:8a:81:70:cf:bb:3f:28:
ec:71:48:f0:ac:73:82:c3:34:10:57:0a:02:4e:8d:bb:c2:6d:
8c:24:d8:10:eb:73:1d:eb:e6:3c:0f:5e:38:a1:27:7a:52:e4:
1f:0d:1e:4a:be:7f:9c:e2:06:e9:6d:b9:cb:53:c6:28:73:a7:
92:59:96:d3:a5:bb:fc:bc:99:d8:06:24:ea:f9:1b:30:0a:fe:
90:21:23:84:2d:ec:c7:92:75:6f:9f:54:be:ca:4e:1b:c3:f3:
c7:be:62:34:9e:ae:34:26:f8:66:7d:92:d6:23:59:5a:ad:b6:
b6:71:fc:c2:8d:2a:9f:c6:ad:28:c4:95:0d:65:df:51:e8:76:
c9:39:50:8f:a5:fd:4e:6b:20:6e:59:7e:4e:d7:75:b4:d8:be:
bd:71:bf:d9:7b:c8:22:1c:9e:13:80:b4:70:b6:43:f2:9d:99:
39:87:fc:a3:d0:fa:20:47:18:c1:3f:90:d1:a4:66:7b:65:26:
db:c8:04:5c:42:a0:a2:d9:39:4e:ac:a7:ab:a0:2d:e6:38:b5:
4d:a8:55:3d:48:df:de:57:47:c4:4f:e9:f4:ad:e6:94:26:7f:
a1:6a:ab:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 23:45:38 2025 by rpki-client