Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json)
Hash identifier: YrJMSbRV1LYd0BTmDJIRyiS5Yw0mly3mglJr8ZY6XVs=
Subject key identifier: D9:B6:0B:BC:FB:17:C6:A7:A8:49:93:F4:33:22:75:39:CB:B4:A7:75
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 0196A91E0E8F84B2BEAAD84297AF009C54FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
Manifest number: 0C4F
Signing time: Wed 07 May 2025 05:00:41 +0000
Manifest this update: Wed 07 May 2025 05:00:41 +0000
Manifest next update: Thu 08 May 2025 05:00:41 +0000
Files and hashes: 1: 574W7z-0GVSyQ6o383reYXA7QZc.roa (hash: 7oxCz8Z8dYajS9esPzPSpl386CuN+PzQh5YVWvXB59o=)
2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: ObLmzvOtoWtLOn9OJo0EjVswoQ59C5j+CFVsK4Vnh4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1e:0e:8f:84:b2:be:aa:d8:42:97:af:00:9c:54:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: May 7 05:00:41 2025 GMT
Not After : May 8 05:00:41 2025 GMT
Subject: CN=d9b60bbcfb17c6a7a84993f433227539cbb4a775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:59:bf:11:7b:f2:d4:dc:f5:03:44:9c:5a:46:
9f:78:64:44:a9:0d:4a:e7:1c:db:8a:19:83:fd:e6:
e8:a2:fe:fe:4e:4a:a7:12:ea:36:4c:7d:01:f1:8c:
0c:6e:6b:bc:b1:fc:fc:e8:e5:5f:87:75:92:b7:0b:
7f:09:36:45:0d:8a:28:8e:ac:65:93:a4:ae:e8:44:
9b:c9:1e:65:5e:09:bd:a8:49:5f:a6:bd:4c:f2:dd:
2c:8a:ff:1e:0d:5a:5c:53:63:68:28:8a:8e:ee:02:
d2:d4:5a:e3:44:eb:bd:35:ea:0b:74:43:b9:17:40:
5c:c7:d1:44:52:72:08:72:c1:28:02:4b:96:53:61:
d8:17:67:11:66:08:c2:a7:2a:fe:f9:eb:a4:c1:53:
dd:42:13:ec:d5:38:23:d7:7d:d1:4b:f2:ab:dd:94:
c4:c4:b9:89:2b:61:b7:4d:5f:cd:78:78:88:f4:83:
48:be:8f:f7:7d:91:fc:47:9c:c9:7a:9f:4d:43:59:
19:91:b8:1a:97:8a:a6:86:00:86:d7:7a:78:78:81:
96:ae:4b:e6:23:a4:83:9b:2c:d8:36:4f:47:73:07:
0d:b0:40:65:91:0b:95:ae:bf:cd:10:66:50:96:96:
98:80:b1:9d:04:56:fc:0f:d2:c8:e0:d4:97:04:db:
fc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B6:0B:BC:FB:17:C6:A7:A8:49:93:F4:33:22:75:39:CB:B4:A7:75
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:f6:3f:d0:0a:08:0a:25:40:ea:06:87:98:25:da:df:2a:38:
60:f4:02:e4:ae:80:f9:23:fb:78:f8:b2:94:8a:64:64:23:36:
e7:9a:99:ae:ff:c5:10:a8:c1:62:17:be:1a:fa:35:23:54:25:
52:0b:b3:98:d7:64:e1:d7:b8:f8:84:11:f9:21:dc:4a:f7:54:
9c:7c:16:1f:ba:aa:bc:63:07:85:98:81:94:9b:14:63:b1:6d:
4c:04:03:46:ba:84:bb:ca:0e:a2:d1:15:fc:85:7a:91:1e:79:
58:af:77:68:3c:c0:9f:40:2a:c6:f7:dd:d1:ac:d8:4a:a8:ed:
fc:52:84:73:1d:64:21:24:47:77:8f:06:3d:c5:d7:db:34:b6:
a4:ee:df:7a:bd:ef:7f:2e:29:c9:9a:25:f3:1e:23:b7:9c:94:
83:d9:06:a2:e0:d4:2c:22:b9:69:6e:0d:2d:1c:12:29:7b:2e:
4c:06:08:ca:f5:fd:77:2b:46:51:d2:99:c6:a8:1c:47:ab:16:
a7:29:32:f6:db:6f:49:97:72:74:04:4e:21:b0:05:0f:c6:4e:
e2:02:29:d2:5d:21:86:8f:70:2f:93:81:31:35:7d:eb:f6:e3:
9f:71:bb:fa:84:92:2e:c2:83:73:86:bc:d0:8c:5c:4c:07:82:
82:30:d0:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 12:42:01 2025 by rpki-client