Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
File: H8jtRm3i5spZZNHu0PJA3dJR3kg.mft (raw, json)
Hash identifier: x5C/BnKRxC+1hhGiU/3vPD/ppcjugJcJgwGfzIM9w2E=
Subject key identifier: E1:B2:E4:4B:CC:9D:C9:2C:DD:59:C1:24:D0:63:81:04:EF:34:CA:50
Authority key identifier: 1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
Certificate issuer: /CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Certificate serial: 0196C0138C16ED09A34A2EBDF840F23F8E55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
Manifest number: 148C
Signing time: Sun 11 May 2025 16:00:28 +0000
Manifest this update: Sun 11 May 2025 16:00:28 +0000
Manifest next update: Mon 12 May 2025 16:00:28 +0000
Files and hashes: 1: H8jtRm3i5spZZNHu0PJA3dJR3kg.crl (hash: V3y6Zs1QIFxiV6B9LS1/UflMlIQIHS6WPcw8RsdSesY=)
2: nevmretTwrxwqsKKQjHFsjVUEY0.roa (hash: fWFJu1Hs2S96Xtm1+v7RRTX9W7ZYHV7fdQSuyQbPzQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:13:8c:16:ed:09:a3:4a:2e:bd:f8:40:f2:3f:8e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Validity
Not Before: May 11 16:00:28 2025 GMT
Not After : May 12 16:00:28 2025 GMT
Subject: CN=e1b2e44bcc9dc92cdd59c124d0638104ef34ca50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d5:63:d1:68:e3:81:4c:83:49:c8:c9:ce:7b:
19:89:19:0a:86:7f:c7:f8:ea:56:46:2c:01:1d:61:
8e:8e:ea:73:90:e8:d0:83:a3:f1:e0:22:d6:6e:7b:
39:97:db:c6:f8:b9:6a:6e:6c:bf:3f:ba:32:57:1c:
e6:44:ee:ee:7b:69:66:21:cf:60:b5:b3:3b:bd:5e:
9d:32:11:ae:22:61:e3:a2:5c:6a:4c:33:39:f2:c4:
33:64:c3:97:a7:b7:66:46:49:7f:c5:7b:d2:f6:d1:
bf:f1:9b:0c:2e:e2:64:75:6b:8b:19:78:a1:84:49:
fd:3d:86:c6:2d:5a:d5:b2:42:e5:5f:53:4a:ff:0b:
c7:20:8e:15:ed:0d:42:a7:b5:1a:df:7b:22:9a:11:
7d:4d:27:5c:14:2c:b4:c4:0d:b2:5c:70:60:1d:92:
49:5f:22:50:8f:f3:de:16:f8:38:29:af:4f:43:d5:
b2:fe:eb:fb:e7:50:8e:52:08:16:ff:d8:94:8a:1b:
23:a4:2e:3e:4c:92:c1:ae:74:b0:b2:e3:2e:3a:d6:
e9:11:73:07:40:31:2c:d9:b8:54:ba:c0:ed:77:f5:
aa:8a:66:b1:be:fd:bf:f8:90:ed:e8:4c:e6:1e:3b:
f1:9c:92:9c:35:0f:8b:c9:3e:4d:b0:3c:bd:37:cb:
34:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B2:E4:4B:CC:9D:C9:2C:DD:59:C1:24:D0:63:81:04:EF:34:CA:50
X509v3 Authority Key Identifier:
keyid:1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:1d:e3:7e:db:8e:d0:d8:2a:08:f6:c3:dd:5e:d8:15:81:6c:
28:18:fc:36:93:6e:2a:ff:26:48:e7:f7:d5:9b:8c:8a:52:e5:
f7:19:29:3c:21:dd:b6:e9:28:30:6e:9f:2a:70:b8:0e:28:7e:
e0:09:ec:cb:f0:01:aa:53:41:45:f7:ac:06:3a:ae:22:81:a7:
51:9e:6c:ee:fa:02:8c:14:15:49:69:06:28:53:88:8c:50:0c:
8b:39:d2:86:8b:2c:07:31:8a:f7:de:f2:f3:c3:2f:6f:fc:24:
35:57:d7:1e:86:43:d4:e2:6e:d4:b6:30:3e:36:0f:3f:e6:4d:
42:70:89:72:40:25:da:c5:6d:72:86:e8:86:d3:91:34:8b:6f:
66:f8:e2:c3:b9:1c:9d:5c:29:65:5b:a2:fd:f1:e4:2b:25:6e:
2d:ef:4a:02:89:8a:b8:22:4e:de:0a:83:80:14:64:15:39:e4:
ee:c0:a4:8a:d1:2a:18:2f:d1:5b:e1:e7:40:85:99:dd:b8:e6:
c0:4c:3b:a2:5d:47:90:50:11:6f:7a:0f:69:ed:4c:27:c7:43:
e6:ce:71:4a:7a:5f:b0:1d:38:1c:12:c1:16:65:93:7d:24:dd:
af:79:29:79:3b:7f:53:67:35:ab:c7:51:42:de:e9:3b:33:05:
39:53:be:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:39:37 2025 by rpki-client