Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
File: hAfwBj7przHYfP5lubwZPrQsiWk.mft (raw, json)
Hash identifier: v1xGG2T7/pQQM66VEOHGrqQKwdhINy8FJ4avdifMRKw=
Subject key identifier: 38:D3:97:EF:BF:BE:BC:4C:C1:03:15:B0:AE:8E:C1:42:E5:92:54:C4
Authority key identifier: 84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
Certificate issuer: /CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Certificate serial: 0196C3B96F029F406A4A9B60755AE2CDE50A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
Manifest number: 059B
Signing time: Mon 12 May 2025 09:00:31 +0000
Manifest this update: Mon 12 May 2025 09:00:31 +0000
Manifest next update: Tue 13 May 2025 09:00:31 +0000
Files and hashes: 1: Z7UyGu5eAyy6eE2IZXWBPwAGCsY.roa (hash: 69ViYIsd0St7iG615BWi/I8unIJ08lLoNoGfAWMd13A=)
2: hAfwBj7przHYfP5lubwZPrQsiWk.crl (hash: 6xJN/EBjjEUjSxWAgNpjsdg9CB0L+M61M7lmX52dkrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:6f:02:9f:40:6a:4a:9b:60:75:5a:e2:cd:e5:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Validity
Not Before: May 12 09:00:31 2025 GMT
Not After : May 13 09:00:31 2025 GMT
Subject: CN=38d397efbfbebc4cc10315b0ae8ec142e59254c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:33:4c:71:56:74:b3:47:c0:ac:b4:d4:d6:
38:e1:bb:f1:80:1b:08:4b:f6:86:66:aa:a9:e2:23:
d6:74:1b:3a:78:7d:e0:43:92:d3:ee:96:2e:31:65:
f8:a5:03:58:d0:55:75:ef:92:0a:7d:41:6d:8a:3b:
d3:cf:40:55:b0:d4:7e:4b:00:e3:bd:78:83:b8:56:
a8:b1:4b:28:af:2c:95:c8:cd:ca:6d:2f:0e:7b:16:
45:32:72:01:a7:7a:ce:db:ee:30:99:a0:f4:00:80:
58:2e:81:20:d4:a9:15:0e:68:a0:3e:0b:b2:c3:d5:
71:b9:87:ad:96:3e:8a:a7:1c:28:97:ee:a4:de:02:
d3:a5:fb:6d:69:0d:12:bc:ab:46:7c:fc:c7:34:df:
af:5d:de:2c:05:ac:28:10:f5:1b:c6:4c:15:a9:c4:
32:03:12:cb:2e:a7:b0:a8:90:aa:86:6d:bc:a1:73:
f2:be:99:2c:ee:ce:13:1a:31:53:9e:3b:af:6d:dd:
86:70:52:39:75:b6:c2:7a:b3:2c:51:10:6d:07:99:
9b:d4:62:a1:c8:a2:c7:e8:4f:de:2b:8c:de:11:73:
ea:28:d8:cb:6b:4a:d1:6f:f9:4e:09:6f:98:20:fe:
43:2a:a2:25:c4:71:57:c8:fc:5f:4f:23:f6:38:aa:
f6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D3:97:EF:BF:BE:BC:4C:C1:03:15:B0:AE:8E:C1:42:E5:92:54:C4
X509v3 Authority Key Identifier:
keyid:84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a6:11:1e:58:05:82:0d:f2:17:e7:30:12:13:9c:aa:34:d8:
04:5c:d3:09:1a:94:ba:e6:eb:84:38:2d:e7:2b:5f:01:2c:41:
23:9d:99:31:28:25:a1:77:ec:6e:a4:99:cb:a4:fe:15:52:93:
78:8a:be:2a:66:c8:49:05:3c:bc:51:2d:0f:71:c6:7d:7c:9e:
09:2b:9d:3a:b7:d6:bf:a5:7d:51:59:15:6f:8c:ca:bf:05:18:
45:db:5b:14:fa:1e:81:31:99:60:a0:b2:ea:ce:ae:17:96:df:
cd:68:0a:58:08:34:6b:51:87:40:39:1a:bc:7a:fc:0c:cb:be:
14:e3:ef:ef:6c:6c:4d:25:15:76:5e:be:c6:62:43:88:54:f0:
4b:9b:0d:17:93:0a:cc:b8:68:f8:b4:b2:52:5b:fa:4d:e9:4a:
1a:cf:f7:74:f9:c5:ad:36:7f:68:c7:18:7b:34:4e:ba:fe:2c:
4f:a5:ab:58:d4:38:35:0a:34:b0:41:61:d0:9a:f6:92:3a:1d:
26:af:21:a6:98:bb:72:65:dd:ae:e6:7d:7a:51:51:98:64:a4:
6a:c9:37:61:bf:be:21:a1:ec:b9:5a:c4:94:7c:83:37:49:f6:
aa:29:4e:0a:bf:56:5a:a0:bd:ce:be:0d:1a:92:ea:2b:0a:45:
46:38:a0:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 17:21:58 2025 by rpki-client