Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: hSNBcawcGn76Bx4ckvvMvnWlKvBvZW73/RrmXNPfN6c=
Subject key identifier: 72:1B:A7:E8:18:DC:65:DE:FE:C2:50:67:32:3E:1F:9F:63:5A:E6:63
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 0196A8B0960C18FAD178A566359483319B10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 10D5
Signing time: Wed 07 May 2025 03:01:07 +0000
Manifest this update: Wed 07 May 2025 03:01:07 +0000
Manifest next update: Thu 08 May 2025 03:01:07 +0000
Files and hashes: 1: EgrdXaLN-vc8C2zZS8RN3DywvDo.roa (hash: hzm54PDUPW3onP/qtSLZRsQOvKv3wuQ4riGx7IRQcQA=)
2: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: yrunPjGGuGVSXKBiNDEjN4SoD4F3mC6Um2gc4rMW26Q=)
3: rAaiXMvO9i5snovqluPbyo_QCN0.roa (hash: pt3vDzVbNzSpy4PSZ8+XX3gpZBn6uEG/ZRILx9TbDQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:b0:96:0c:18:fa:d1:78:a5:66:35:94:83:31:9b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: May 7 03:01:07 2025 GMT
Not After : May 8 03:01:07 2025 GMT
Subject: CN=721ba7e818dc65defec25067323e1f9f635ae663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:1c:fe:2c:ef:b9:b8:08:65:78:f4:5b:47:
42:ca:5a:04:a9:79:53:16:d0:54:c1:d6:16:4b:9f:
05:e6:01:33:f3:36:0d:1c:cf:3a:0e:2e:d4:8a:3b:
05:fb:af:b5:36:e6:b5:8c:aa:86:df:e1:97:6d:bf:
e2:44:48:b6:8d:8d:c5:e5:46:b1:33:31:7f:64:99:
82:5e:67:02:8c:dd:e1:3a:60:96:98:bc:57:da:b4:
8c:44:3d:26:3c:02:1a:82:38:40:a4:f6:70:87:b1:
07:15:06:6f:65:21:5f:4c:bc:be:6f:88:f4:ec:6c:
da:02:6e:91:3d:85:cd:51:8b:7e:96:e4:cf:57:da:
67:c1:f6:50:be:32:99:ab:be:13:3d:73:fe:0f:b6:
71:96:29:6c:d3:f7:69:cb:5e:ed:19:26:f2:7b:a7:
d1:96:37:ce:62:30:69:08:91:2a:b9:04:29:a4:1a:
fd:5a:b2:58:0a:f5:aa:e7:90:fa:81:fe:5c:6c:23:
37:ac:e0:84:06:ce:68:f0:00:9d:81:ed:e8:b5:35:
6a:ac:c7:05:a3:5b:37:2d:8c:1b:e1:9d:36:0b:85:
0c:5f:59:53:49:98:73:6d:af:f4:33:9b:56:3b:79:
c9:8e:8a:61:55:d4:ea:5f:81:e3:f9:20:0c:66:64:
d4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1B:A7:E8:18:DC:65:DE:FE:C2:50:67:32:3E:1F:9F:63:5A:E6:63
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:76:b5:28:b0:ac:23:76:cd:b8:d0:04:a4:ad:fe:f6:6f:30:
e9:6f:98:0a:a8:9e:af:a3:55:a8:54:1c:2d:de:9e:70:e6:97:
ce:3a:6a:8f:2e:87:a0:ed:0a:f2:8a:f8:3f:58:f3:73:55:ff:
26:a9:9e:9a:21:1c:d3:d1:61:08:bc:53:85:54:f3:b5:86:94:
9a:28:9b:ae:c4:6e:17:16:f1:00:89:4e:fa:80:dd:46:42:ef:
77:32:8a:fd:6b:fa:a1:4d:45:34:c2:e4:5e:67:8d:13:a8:90:
86:07:0c:c4:2e:a1:8f:84:72:3b:e5:93:3e:4c:84:e8:9a:37:
dd:bc:ec:21:1b:65:a1:36:d9:c0:a5:bf:3b:f4:3d:2a:29:58:
af:06:ca:7d:05:37:b6:61:34:e0:1b:7b:e3:fa:90:31:94:50:
3b:4e:91:5e:aa:92:41:bf:16:d8:04:8e:65:d5:e4:d2:71:b3:
32:94:ed:b1:36:63:72:9c:51:ef:03:41:fe:20:f0:57:77:2b:
5a:c1:aa:f2:b4:8d:d9:68:05:a5:3e:cc:1b:b3:fc:8f:18:57:
10:53:b7:21:c3:62:cd:09:45:c4:03:64:ed:85:14:e6:23:37:
93:f6:ed:83:14:74:8d:ab:fd:01:16:57:29:35:81:70:90:30:
0c:ed:35:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:24:57 2025 by rpki-client