Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: ZM+cQ4xN+CrXphaBDA25sbmzYbAE2daKNwlG5O4FZNo=
Subject key identifier: EA:86:09:37:A8:59:B2:8F:F4:72:C2:42:54:54:61:F9:4D:FA:48:24
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 0196BE257016D5342E6652424127CCBBF574
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 0749
Signing time: Sun 11 May 2025 07:00:46 +0000
Manifest this update: Sun 11 May 2025 07:00:46 +0000
Manifest next update: Mon 12 May 2025 07:00:46 +0000
Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: hITpH2XKw9bSHorOEnxYWEof6x447ij3y5d47Ovp48E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:70:16:d5:34:2e:66:52:42:41:27:cc:bb:f5:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: May 11 07:00:46 2025 GMT
Not After : May 12 07:00:46 2025 GMT
Subject: CN=ea860937a859b28ff472c242545461f94dfa4824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:62:00:3c:1e:58:70:f2:90:61:e6:be:30:61:
16:b2:53:eb:52:55:84:e0:bd:62:ad:4f:ee:4f:0d:
32:e3:94:07:88:4e:08:13:b1:5d:33:74:8e:cb:29:
c0:53:f7:27:0f:ee:69:35:dc:fd:8a:cf:0f:51:3a:
f3:10:80:7f:08:8d:0c:7b:27:d0:e8:ca:c4:ab:7f:
5f:28:49:6d:52:d0:26:f8:12:bd:e5:2c:b6:2c:6c:
59:6c:65:14:df:eb:9a:bd:d2:e7:18:67:3e:0d:93:
27:cc:24:b8:47:00:3f:db:e0:cd:43:80:32:53:8e:
68:83:af:15:84:15:97:d0:60:35:59:18:50:d8:12:
99:f0:07:ca:0b:be:45:ee:3c:15:a6:02:1c:e5:f1:
49:89:67:f2:8c:7d:69:6b:b4:2e:d8:f4:a8:ea:65:
52:df:83:ff:94:de:e7:8f:09:ba:4d:a9:1b:9b:12:
6b:0f:38:e8:a2:34:64:b9:6b:32:da:9c:60:78:9d:
13:db:16:73:01:f8:5a:e9:4d:56:30:0d:84:5a:ef:
55:1d:5e:24:26:75:ad:78:39:40:23:de:51:ef:36:
81:17:82:2f:2e:57:f0:21:33:8c:72:4d:01:1b:72:
17:14:66:3f:ef:ee:ca:3c:1f:c4:d6:ed:4e:45:f8:
18:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:86:09:37:A8:59:B2:8F:F4:72:C2:42:54:54:61:F9:4D:FA:48:24
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:43:e1:e5:06:73:f2:f4:75:42:9f:44:2b:50:91:3a:d9:73:
fa:6e:aa:fb:8a:ca:c0:8e:dd:43:92:ad:ef:61:25:6f:92:ee:
06:0d:1b:36:bf:76:ce:11:27:14:98:ad:ac:6c:b8:80:dd:3b:
4e:e9:d2:81:a5:31:44:0e:57:ea:ff:34:ad:78:14:75:7b:dd:
87:49:60:c4:a4:6b:d1:70:26:9a:70:65:01:f4:81:66:da:e3:
4a:4f:2e:05:a8:ed:0f:74:f8:6a:88:30:2a:65:5b:38:fe:87:
3b:76:18:a9:43:cd:8e:6f:a0:6a:0c:d7:98:29:3b:83:f2:b8:
2f:50:70:ee:11:a7:62:1f:72:c1:9a:58:0f:ab:c1:a1:c1:28:
af:89:95:5e:e1:8b:3f:6e:d4:b0:53:96:24:01:04:58:82:5a:
7e:a7:71:b1:0f:9d:d7:cb:ae:a0:f9:ca:f2:87:92:68:ec:50:
e5:ba:4d:cc:0f:81:4a:a4:4f:f5:de:6f:d9:8f:c7:61:d6:d1:
a2:58:95:e3:02:4d:e1:34:1b:4c:bd:b0:14:8e:45:4d:f8:24:
bf:5f:22:bc:fd:c5:0a:76:6f:d6:1c:a2:1a:5d:d3:a0:2a:56:
f3:51:08:66:68:91:36:ee:20:8d:d7:f5:8f:3d:a5:a7:ea:fb:
38:40:86:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:34:42 2025 by rpki-client