Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: Dc0AZcF5KXB+S/V9uNduQuU+X7pFq25y9A3yVHv2l30=
Subject key identifier: 76:97:E9:4D:FA:FF:5B:7D:B3:07:4D:F7:D2:C5:5F:36:74:DE:92:22
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 0196BA11C2B37ABE368EFD33ADDCD918330D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 08CF
Signing time: Sat 10 May 2025 12:00:48 +0000
Manifest this update: Sat 10 May 2025 12:00:48 +0000
Manifest next update: Sun 11 May 2025 12:00:48 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: vbs6/qP38KLUuc5M6l7NnDP7JwxCPXyw1y8oMT9J+HM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:c2:b3:7a:be:36:8e:fd:33:ad:dc:d9:18:33:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: May 10 12:00:48 2025 GMT
Not After : May 11 12:00:48 2025 GMT
Subject: CN=7697e94dfaff5b7db3074df7d2c55f3674de9222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3b:57:d1:b8:aa:40:d8:3d:b6:8f:76:6d:1f:
23:2a:53:06:34:11:f9:c1:77:dd:38:31:f5:72:7b:
1e:9c:89:f5:15:01:ad:70:ac:a0:cd:ec:99:1e:cb:
b4:bb:c4:2a:ab:7a:9f:49:29:2d:51:35:7b:71:9f:
58:68:35:d6:89:ae:03:e3:d4:63:31:c3:fa:7d:96:
90:50:6f:0a:13:0d:59:38:df:ac:be:37:30:41:71:
8e:cc:ca:75:31:a1:80:1e:a4:36:0c:ce:45:03:ad:
0d:d9:6f:1e:97:a2:5d:77:e7:07:c9:26:1e:4c:e2:
a4:a4:6d:cc:26:5e:5c:e8:c7:b9:68:09:ff:03:49:
98:3e:61:9b:5f:ec:f7:89:9d:ee:56:c1:4b:48:61:
4a:d4:79:9a:f5:71:e1:f8:87:4a:07:07:fb:ce:02:
09:67:e5:9f:1e:03:71:99:8b:3d:4c:23:0a:3b:16:
bf:0d:ba:b4:fc:fb:3f:a7:b0:d0:12:42:9d:e2:20:
a2:f6:72:ab:ec:2a:19:ae:f8:22:73:fb:97:4b:f5:
55:3f:45:1b:5a:09:39:51:bf:fc:b2:32:b8:1c:8c:
a7:a7:b8:b6:35:6e:00:46:00:f6:52:aa:d4:c9:f3:
33:ea:15:38:c7:df:eb:63:28:e5:c1:34:cb:75:dd:
ef:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:97:E9:4D:FA:FF:5B:7D:B3:07:4D:F7:D2:C5:5F:36:74:DE:92:22
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:74:29:f8:72:e7:64:9d:61:68:af:87:cb:34:0a:1d:2e:5c:
00:8d:9c:fd:b3:13:48:b0:87:9f:34:c7:27:49:f1:99:c1:f3:
4e:31:39:0c:21:2b:63:a7:0f:e8:3c:b5:b7:bb:20:31:c4:9d:
31:c1:ee:bb:13:01:f9:49:a4:9a:7d:fd:3d:7e:13:0c:6e:75:
0d:9a:52:00:c1:76:92:89:8b:f6:15:eb:fa:be:d1:67:c0:1a:
0d:0a:79:37:c4:97:4c:02:73:0d:09:1f:d0:8d:ac:0c:ca:49:
2d:c6:2f:b5:ec:4e:0f:ea:37:86:27:44:7e:51:7d:59:c1:94:
59:61:38:f6:ac:d0:b2:75:f0:c8:24:d4:23:29:31:52:06:0a:
06:28:69:a5:30:5a:18:11:20:b4:70:45:47:c0:30:8d:1a:bc:
05:15:0f:93:e5:d6:58:67:d6:82:ff:3b:81:59:00:91:4d:fb:
d0:92:f2:51:50:9e:04:8e:41:99:9a:4d:a8:51:42:3d:39:4b:
c9:e6:66:05:ab:9c:51:4d:b0:c3:37:32:f0:c4:56:b3:f9:89:
f8:6b:aa:76:79:b2:40:78:2f:1e:51:19:a2:33:9f:e4:3d:5d:
9c:8c:23:8a:34:bc:cb:e2:e3:78:4c:9e:68:ca:2b:af:08:77:
cc:7c:fd:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:59:19 2025 by rpki-client