Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: Tc4Ed7WJ8XtCIlin81mjzTktmmiMe7t+raWal+WKAU8=
Subject key identifier: 78:8A:F8:59:55:51:C8:E5:19:DB:6F:29:B2:9A:77:61:73:A2:2B:48
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 01969ED0EBA61FF93DB350B9339BC4039C1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 038C
Signing time: Mon 05 May 2025 05:00:13 +0000
Manifest this update: Mon 05 May 2025 05:00:13 +0000
Manifest next update: Tue 06 May 2025 05:00:13 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: aHRB/bOHvNsxnWZxpR4QyJBPdpkPE29oLwuMltBqz3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:d0:eb:a6:1f:f9:3d:b3:50:b9:33:9b:c4:03:9c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: May 5 05:00:13 2025 GMT
Not After : May 6 05:00:13 2025 GMT
Subject: CN=788af8595551c8e519db6f29b29a776173a22b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cd:c0:8f:b3:c6:1f:14:1b:e4:10:ad:94:b0:
37:56:22:58:6c:54:9f:c5:a5:b4:c4:cc:4a:d9:25:
72:90:82:52:67:3d:39:8f:f9:6f:9b:53:99:55:d4:
52:3b:b6:b9:97:4c:90:eb:ee:2f:16:5c:0f:d6:09:
79:3c:71:3f:3d:22:ee:7e:c4:ed:fe:14:fb:e4:07:
ea:29:aa:2b:6c:03:54:a8:c0:26:9e:e8:61:73:4f:
d2:89:97:19:3a:8a:14:4d:fc:5b:d5:2a:ef:5f:3c:
6e:39:ff:51:50:4e:ee:8a:a1:e3:3d:78:fe:d0:3e:
79:30:5b:2d:0c:4b:be:a1:5a:e3:fd:f9:a8:7b:3a:
c7:dc:b4:19:4d:57:3f:95:76:2b:aa:1f:92:46:70:
47:ee:b7:84:c5:00:0e:30:db:90:96:20:e4:52:ef:
01:73:bb:e1:90:43:93:87:48:8e:c7:82:95:69:7e:
5c:8e:f9:78:75:e9:d4:ca:64:81:4f:a5:87:dc:5e:
39:27:ca:2d:34:ea:2e:e2:ed:c1:9b:25:16:fb:ba:
a3:57:fb:fd:a1:0b:75:19:95:23:89:ce:0e:b4:6d:
17:fb:3a:83:7c:ab:6a:7d:43:3b:6a:88:35:76:59:
67:22:23:d9:b7:b5:ac:c1:cf:93:3b:43:ee:f3:b1:
9a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:8A:F8:59:55:51:C8:E5:19:DB:6F:29:B2:9A:77:61:73:A2:2B:48
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:24:ec:8d:23:e1:c3:ab:66:30:32:3f:80:63:a8:52:29:61:
4c:4c:b1:98:ff:56:6f:0b:94:f7:5e:84:46:32:d4:a4:0e:de:
37:bc:68:48:c2:49:32:f8:26:a6:2d:43:0f:b6:a1:72:c8:06:
22:5d:a4:fa:61:2a:cb:c8:46:ef:97:92:a7:52:f1:db:05:22:
fb:87:13:74:3c:5a:0a:69:1e:1c:8b:44:f4:b1:00:c7:95:eb:
e3:b7:90:6d:82:e3:51:f9:b7:55:c2:bc:80:07:27:b8:c5:a4:
de:1c:e6:77:1a:3f:45:ce:3f:37:e5:5f:89:10:c3:ea:a7:1e:
09:7c:5c:d2:2f:d7:7b:a3:85:6f:25:23:35:47:34:dd:2a:28:
e1:ae:11:af:c1:4c:72:78:3c:b1:ac:83:9f:d1:4d:ac:90:83:
87:42:73:06:65:28:7b:ba:9a:ad:88:49:e3:88:c7:3a:ad:96:
cc:41:ba:7f:2d:dd:00:98:c9:60:2d:f1:cc:76:23:d5:98:45:
ff:4e:81:af:58:32:8f:00:3f:e4:04:a2:3c:14:f2:2e:20:cc:
22:78:76:1b:e1:e6:b2:80:1c:63:3c:21:fa:4b:09:06:22:dc:
b9:37:a2:64:ac:38:ca:26:50:2b:c6:c3:b9:99:52:6c:34:47:
28:98:52:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 09:14:51 2025 by rpki-client