Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: l5vACjbIsOSrKwHCf0SJwOuYsN6ycUdiDorZfKUVEXU=
Subject key identifier: 05:43:C0:39:51:78:3A:17:A7:6D:C3:8F:0E:36:50:95:A0:2D:27:87
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 0196C8DFC182607327470EC37216CFEA18E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1536
Signing time: Tue 13 May 2025 09:00:29 +0000
Manifest this update: Tue 13 May 2025 09:00:29 +0000
Manifest next update: Wed 14 May 2025 09:00:29 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: FXEBSp+/IOrDbefOz2uzmWttH5fVyCyt6Gg23fnVSSA=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 09:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:df:c1:82:60:73:27:47:0e:c3:72:16:cf:ea:18:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: May 13 09:00:29 2025 GMT
Not After : May 14 09:00:29 2025 GMT
Subject: CN=0543c03951783a17a76dc38f0e365095a02d2787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c6:9c:d4:4c:6b:78:c9:d7:52:87:3c:a3:70:
90:eb:4b:d5:05:ef:ba:9a:83:dd:e7:79:ca:25:0b:
a8:a4:48:e1:5a:a5:ab:d6:6d:48:7e:99:70:f5:54:
04:a3:8f:35:8a:1b:41:42:98:1e:82:f9:fc:aa:0a:
77:ba:78:d0:a1:cc:56:65:23:cd:2d:8b:76:0f:15:
17:3c:2a:ef:d4:44:fc:01:7d:3d:5c:d0:ea:aa:9d:
3b:56:87:70:be:17:24:aa:96:fe:61:25:d4:62:bf:
e1:d6:82:50:67:9c:7e:db:41:5b:d0:03:f5:74:aa:
94:a5:7f:6b:fe:bd:43:f0:8c:e6:cd:f7:66:18:2c:
ee:f2:b8:68:06:81:df:da:14:b3:12:30:e8:a1:39:
b8:5b:b2:ca:c2:08:b1:dd:dd:c6:61:36:93:72:d9:
7d:ac:75:30:be:df:ce:a6:65:f8:d0:cc:30:f0:e4:
d1:19:83:47:8c:b0:4a:9b:8f:c8:6b:49:2e:57:0e:
9b:8b:fd:34:3e:bc:c5:ac:10:fa:98:13:63:7c:16:
16:72:c0:47:3b:77:11:1b:c7:8c:db:be:8c:19:d9:
19:74:83:cc:ac:80:fa:43:f0:0d:11:61:06:e9:49:
cf:88:0d:e0:ae:26:f7:1c:30:ea:89:7b:a5:3c:d3:
8b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:43:C0:39:51:78:3A:17:A7:6D:C3:8F:0E:36:50:95:A0:2D:27:87
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:88:2d:3f:0c:55:bb:d3:1a:9a:e6:6f:e5:e2:5a:7e:5f:74:
1a:7e:30:b7:00:99:21:7a:00:fd:d6:09:9e:c7:29:15:25:f4:
6f:79:dc:a6:33:bb:1d:28:11:50:ed:e7:f6:48:e1:fb:b5:46:
a2:e5:6d:79:9a:18:93:b0:b6:67:7c:7b:03:2d:25:ea:cd:3b:
c0:d2:8e:67:b9:59:03:9f:42:48:6e:0b:f1:8a:43:13:32:82:
93:9e:f4:fb:ce:b5:5e:f8:ef:0b:30:52:7c:a1:61:4f:38:e4:
95:8c:e5:70:ca:6a:83:17:94:34:10:27:a1:70:d0:c7:47:6c:
46:cc:8a:c3:ef:8f:30:26:cc:5a:50:13:6c:d2:28:85:02:32:
1e:24:38:3c:5e:c9:3c:85:15:2d:5c:3e:50:b1:47:e3:26:ff:
15:47:9b:93:cd:29:2e:93:79:55:b0:c8:31:60:d6:7b:2a:6e:
49:b6:68:dc:90:a3:a4:64:1c:11:c9:8f:f0:63:8d:36:46:1b:
07:b2:e6:35:b5:fd:a7:9b:b4:fb:89:6c:d4:b2:fd:97:6a:86:
09:5f:50:76:52:52:ef:e1:e2:9a:16:97:c5:24:e2:cd:21:88:
43:71:9d:b9:e3:7f:40:32:b6:36:5c:74:be:e5:15:57:55:3b:
72:a7:2e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 16:31:21 2025 by rpki-client