Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
File: HyAOBxBBRee6mHap0-55Kgc2TTY.mft (raw, json)
Hash identifier: 4rA2IGnQfuA+6sh1fZeECh2wpPFIMb5fC++NBzrTOFk=
Subject key identifier: EA:BC:BF:0A:80:BE:2C:86:A5:E7:BB:1C:53:A8:75:C5:1D:9A:17:19
Authority key identifier: 1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
Certificate issuer: /CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Certificate serial: 01965537FA99653483020C8C1F55828696EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
Manifest number: 0224
Signing time: Sun 20 Apr 2025 22:00:54 +0000
Manifest this update: Sun 20 Apr 2025 22:00:54 +0000
Manifest next update: Mon 21 Apr 2025 22:00:54 +0000
Files and hashes: 1: HyAOBxBBRee6mHap0-55Kgc2TTY.crl (hash: nEU0hKD+hH6at2sL2JC+Qz6S2MIgGuV646q6EA6LhaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:fa:99:65:34:83:02:0c:8c:1f:55:82:86:96:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Validity
Not Before: Apr 20 22:00:54 2025 GMT
Not After : Apr 21 22:00:54 2025 GMT
Subject: CN=eabcbf0a80be2c86a5e7bb1c53a875c51d9a1719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d8:da:2c:57:07:59:4f:9d:82:f8:03:44:5c:
e6:43:75:97:12:fe:ab:4f:04:c4:c3:d7:78:51:a6:
cf:bf:94:d5:87:f7:80:7d:79:d8:0f:2d:2b:3d:7a:
0c:e3:49:58:95:af:b8:eb:64:e4:e7:65:e2:fb:92:
ec:52:6c:17:c3:06:55:2d:a6:e2:2c:2a:98:48:d2:
5c:fa:21:f0:83:00:e0:aa:1b:d4:1a:25:0c:02:20:
8e:70:4a:20:46:19:9f:0e:69:1e:0f:6b:cd:1c:25:
74:7b:75:05:7f:1f:a7:ba:7b:4a:87:df:18:9f:ce:
b5:20:19:24:8d:b1:5e:fb:1e:e0:e6:0f:e5:22:9c:
c6:18:ae:32:fe:e4:93:ea:4d:11:bd:aa:54:db:1e:
f7:ea:8b:1c:83:9a:d3:9c:ac:5a:a2:ec:1a:e1:50:
c4:88:99:a6:3c:fa:1f:ae:b9:84:5d:d4:22:04:86:
9b:b3:d3:13:ca:54:eb:4b:02:5e:27:77:f1:99:44:
41:9c:38:1b:4a:67:63:48:5d:f8:db:db:06:f2:41:
14:40:0b:20:cd:06:e3:35:05:40:37:7d:34:cd:1f:
0e:89:9c:8d:37:27:d7:cf:78:ae:4a:83:9d:dd:b9:
75:c8:9c:57:53:74:3e:55:50:d7:d2:8f:ec:8c:45:
2f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BC:BF:0A:80:BE:2C:86:A5:E7:BB:1C:53:A8:75:C5:1D:9A:17:19
X509v3 Authority Key Identifier:
keyid:1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:cf:b1:21:94:b0:4c:e5:c6:7d:ed:67:fd:8a:93:40:5f:7a:
47:da:af:56:97:eb:55:2a:98:fc:bd:9f:55:81:02:ee:52:02:
c7:4d:53:71:99:6c:f7:fe:26:c7:af:8a:dc:d9:cb:b6:9f:fa:
00:49:a3:03:0b:e8:58:f5:7a:a0:aa:ca:a7:2c:86:6c:da:b2:
de:4e:78:98:39:0d:d2:3c:18:66:a8:30:10:77:27:58:20:9a:
0e:d7:ab:88:80:e0:4c:b7:88:85:aa:fe:c5:1a:7b:57:fd:f1:
3c:b2:b6:b0:35:11:f1:b8:7d:ff:be:09:29:83:42:13:c9:02:
46:55:fb:6d:e5:31:7f:38:98:8e:aa:9c:38:83:21:3e:fe:f6:
1e:74:9e:80:9f:95:a8:f7:87:a9:79:a5:65:d7:00:b2:d9:f1:
9d:b4:7a:68:7d:3c:dc:26:77:53:c0:3f:82:80:a5:df:7c:ec:
b9:39:d3:06:ba:8d:c3:db:53:d4:06:e9:96:eb:15:c3:1d:81:
4e:12:06:42:4f:f0:f9:07:fb:db:3b:8a:89:fd:9c:60:14:ce:
d2:93:e9:d3:90:1b:ae:cc:23:92:49:15:e5:0b:a3:3a:30:f1:
cc:81:a2:00:db:bb:73:69:69:c3:d8:41:c4:21:58:af:9a:55:
99:79:e4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:12 2025 by rpki-client