Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
File: hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json)
Hash identifier: mSETyA+Em6A1UE8CbBKQ/6CzhRNLAtI7usAuxZvfeJ0=
Subject key identifier: 54:B6:BF:A0:64:BE:83:B1:4D:5D:21:25:19:C5:00:EF:CF:B0:5B:78
Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
Certificate issuer: /CN=8466a5dde27f911da8be73c261ff55b5881198a9
Certificate serial: 0196A42E815AD236BA36B76269C681E3CEF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
Manifest number: 1527
Signing time: Tue 06 May 2025 06:00:33 +0000
Manifest this update: Tue 06 May 2025 06:00:33 +0000
Manifest next update: Wed 07 May 2025 06:00:33 +0000
Files and hashes: 1: P7kra4ub5VF3YEJjz3ym8CwbAXA.roa (hash: AJEYR0xnzVy6utllNh8R4LIoanjGY6stnMXm+hMmUEo=)
2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: Yc1NrAMsaq0MComzH+5+Or5CoXGDvEFNj0BBzWKKNPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:2e:81:5a:d2:36:ba:36:b7:62:69:c6:81:e3:ce:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9
Validity
Not Before: May 6 06:00:33 2025 GMT
Not After : May 7 06:00:33 2025 GMT
Subject: CN=54b6bfa064be83b14d5d212519c500efcfb05b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fa:7c:47:40:d8:39:cb:76:24:f9:06:82:3a:
63:33:4f:fb:8e:9f:b4:2a:a4:de:55:9b:cd:1e:2e:
1e:09:05:54:27:48:d3:81:e3:31:b1:e8:52:24:c7:
b5:8f:92:04:b3:52:d1:8f:c2:66:ff:29:76:ae:58:
7a:00:e7:fc:95:09:08:c0:83:fc:7c:fb:b7:8b:9a:
2d:1b:98:60:f0:7f:2c:bb:69:8e:ae:ef:7b:1d:44:
06:5a:de:e0:c5:21:e9:32:c7:06:72:33:ca:bf:4f:
53:00:20:3e:13:44:35:d8:cc:00:d2:c0:a3:f7:c2:
35:9f:af:29:86:f0:1f:6d:df:99:47:63:e7:6e:33:
7a:e5:1f:d3:8e:c6:32:f1:d7:1b:80:4e:ae:5c:b1:
c1:54:4a:1f:ad:6b:22:8c:96:73:c7:cd:a9:e8:f4:
2f:61:e9:5a:f4:0f:72:b7:80:65:3d:ca:eb:e0:d6:
39:89:dc:b7:2e:a6:eb:27:2a:db:18:f0:43:fe:55:
7c:99:2c:aa:cb:62:70:82:4d:d9:10:a5:07:0a:80:
fb:a8:b9:7e:ee:bc:a6:60:9c:b1:e4:8a:1b:36:cc:
93:9b:38:8d:27:7b:ad:51:24:a4:45:ac:41:af:9c:
b0:e0:08:c1:19:61:3a:f1:59:82:c2:02:68:a0:0b:
f0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B6:BF:A0:64:BE:83:B1:4D:5D:21:25:19:C5:00:EF:CF:B0:5B:78
X509v3 Authority Key Identifier:
keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e5:70:ca:0d:01:eb:ae:9c:f7:56:4d:1b:c9:68:1c:c5:44:
6a:31:e5:d8:75:6f:41:4d:79:e0:d9:c7:ee:e8:60:b6:02:4c:
1c:1d:5a:73:be:78:21:6d:c9:45:d6:e9:2e:1a:58:92:69:2e:
5a:80:6e:9b:b7:15:ea:82:a5:03:51:08:42:3a:7b:e9:9f:c0:
3c:bc:ad:04:95:a2:ba:cd:a2:69:d3:2b:87:5e:ee:48:f1:b1:
0a:bf:2d:e9:d8:b2:2c:a9:c8:f2:a1:9f:42:46:78:21:54:e6:
57:37:d5:b8:24:d3:a3:56:28:72:6e:d8:3d:59:d6:90:00:04:
4a:70:f9:88:d6:5f:88:b6:fc:43:24:40:53:9f:ec:64:7c:e7:
f0:a0:18:ef:49:5d:a4:55:0a:28:a2:8c:b0:d5:00:f6:d9:ab:
6c:68:49:bc:2a:65:d3:c1:88:b5:f3:92:99:77:fd:63:a0:14:
02:4a:07:af:29:79:b3:f7:4d:04:b1:d6:21:e8:ea:20:23:46:
4f:0b:f4:26:65:ad:6a:a7:bd:76:ca:dc:c5:f0:51:32:19:7e:
48:10:8e:9f:ab:14:c5:68:01:e8:59:a9:4c:c2:a9:7b:28:57:
8f:6a:d2:71:85:8c:fa:c0:4c:19:44:53:74:f8:36:a8:12:b6:
61:08:b4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 12:58:57 2025 by rpki-client