Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
File: hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft (raw, json)
Hash identifier: HCj5eQEpC5j9biNTcJMx+YnWROktSkWwpJCO1v54CXE=
Subject key identifier: BA:73:13:6C:3F:70:3B:77:B6:96:FF:EB:AB:49:9E:66:C6:B0:78:72
Authority key identifier: 84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
Certificate issuer: /CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Certificate serial: 01965915472FE8C1B55975BCA926BE2E2048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
Manifest number: 07E5
Signing time: Mon 21 Apr 2025 16:01:28 +0000
Manifest this update: Mon 21 Apr 2025 16:01:28 +0000
Manifest next update: Tue 22 Apr 2025 16:01:28 +0000
Files and hashes: 1: hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl (hash: Ha6MdckvCCewLjHObyDRE/aau67Zb28Er7GsTnKZXLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 16:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:15:47:2f:e8:c1:b5:59:75:bc:a9:26:be:2e:20:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Validity
Not Before: Apr 21 16:01:28 2025 GMT
Not After : Apr 22 16:01:28 2025 GMT
Subject: CN=ba73136c3f703b77b696ffebab499e66c6b07872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e3:57:87:ae:a7:d2:bd:37:3f:c0:76:0d:41:
09:1d:ff:40:9a:42:06:7b:d9:7e:ee:cb:be:b9:a6:
85:56:fe:27:f6:0c:ee:eb:fe:4b:a3:3c:ac:1e:dc:
69:d2:a7:c3:09:32:24:89:24:c6:ba:03:d1:ae:d4:
11:e4:ff:b3:4a:4a:99:b3:e5:b1:70:31:57:12:31:
ef:58:70:50:4e:ee:63:89:a3:dc:7a:44:1a:01:06:
cb:04:17:78:55:f4:fe:fc:7d:96:69:bc:44:87:6d:
b6:20:5f:1e:c3:b5:47:93:a7:a2:8c:14:90:85:27:
43:bc:34:0a:11:51:4c:ac:03:59:2f:5c:d7:ed:a2:
f6:71:b1:45:4d:09:9b:8e:04:10:e0:1a:eb:b0:02:
5c:1b:72:2d:60:cd:e7:00:2c:f7:1c:ee:c8:08:2d:
91:db:8c:c7:62:a2:fe:55:21:9b:c9:a3:8e:01:28:
78:a7:4b:05:58:e6:54:be:4b:41:df:5b:78:30:d1:
d1:00:96:e0:30:89:83:fe:83:ad:81:ae:59:de:c0:
1f:2e:bd:7c:d5:81:f5:10:18:2f:5a:31:1e:e3:50:
04:82:a1:2d:a3:de:39:93:54:23:42:53:5e:13:90:
51:a1:af:0a:f3:fb:35:e1:03:29:82:f4:f0:dd:e1:
be:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:73:13:6C:3F:70:3B:77:B6:96:FF:EB:AB:49:9E:66:C6:B0:78:72
X509v3 Authority Key Identifier:
keyid:84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:0e:be:3a:7f:c8:97:9a:50:a6:fd:8b:e0:fa:99:3b:7a:d6:
bf:36:67:65:77:0f:04:94:7b:da:e6:9e:ca:a3:48:83:b6:7b:
d2:f4:4b:b9:b4:c4:e8:1b:5a:09:21:f9:7f:43:64:51:21:8e:
e5:fe:26:49:28:5a:f0:c5:10:c1:37:45:b0:ba:b9:34:31:e5:
11:c1:0c:48:80:f7:5f:30:76:4b:64:0f:9c:f3:d8:96:15:38:
9e:af:34:0d:a7:5e:e3:b3:7c:c7:9a:d3:cb:50:22:72:4e:40:
8e:90:5c:84:e7:e1:c7:e7:4f:01:76:a8:c3:1e:5f:e7:ba:f1:
5b:a3:88:4d:31:55:0a:d4:b6:ab:c9:3e:b6:ec:e6:01:1d:22:
c8:fa:76:3a:7e:2f:5c:10:1d:68:00:db:f5:a5:72:8e:30:2d:
cd:fa:b6:69:0f:69:77:d1:bc:4d:5f:bc:f2:d8:f0:57:a6:9e:
b9:57:8a:50:64:2c:b5:90:24:d7:be:16:20:fb:ce:60:74:d9:
ce:70:66:9f:9a:e6:4c:1a:2b:d8:af:e8:63:a0:d1:81:31:e6:
e4:16:04:79:5a:27:ae:84:80:d5:0a:c2:bd:b3:23:97:df:43:
61:5e:42:7d:43:93:e4:87:8d:35:47:25:89:8d:56:08:e8:be:
e7:60:6a:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZFUcv6MG1WXW8qSa+LiBIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MmIxOGY4ZDFkYjFmOTQ3NjIxYjJkOGY3ODY2MDNlMmIx
YmQ1MGMwHhcNMjUwNDIxMTYwMTI4WhcNMjUwNDIyMTYwMTI4WjAzMTEwLwYDVQQD
EyhiYTczMTM2YzNmNzAzYjc3YjY5NmZmZWJhYjQ5OWU2NmM2YjA3ODcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ONXh66n0r03P8B2DUEJHf9AmkIG
e9l+7su+uaaFVv4n9gzu6/5LozysHtxp0qfDCTIkiSTGugPRrtQR5P+zSkqZs+Wx
cDFXEjHvWHBQTu5jiaPcekQaAQbLBBd4VfT+/H2WabxEh222IF8ew7VHk6eijBSQ
hSdDvDQKEVFMrANZL1zX7aL2cbFFTQmbjgQQ4BrrsAJcG3ItYM3nACz3HO7ICC2R
24zHYqL+VSGbyaOOASh4p0sFWOZUvktB31t4MNHRAJbgMImD/oOtga5Z3sAfLr18
1YH1EBgvWjEe41AEgqEto945k1QjQlNeE5BRoa8K8/s14QMpgvTw3eG+GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLpzE2w/cDt3tpb/66tJnmbGsHhyMB8GA1UdIwQY
MBaAFIQrGPjR2x+UdiGy2PeGYD4rG9UMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8zYzhlNzgtZGZhMC00NjE2LWIyMjgt
MGI5NzBiOTZjOTBiLzEvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8zYzhlNzgtZGZhMC00NjE2LWIyMjgtMGI5NzBiOTZjOTBi
LzEvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACQ6+On/I
l5pQpv2L4PqZO3rWvzZnZXcPBJR72uaeyqNIg7Z70vRLubTE6BtaCSH5f0NkUSGO
5f4mSSha8MUQwTdFsLq5NDHlEcEMSID3XzB2S2QPnPPYlhU4nq80Dade47N8x5rT
y1Aick5AjpBchOfhx+dPAXaowx5f57rxW6OITTFVCtS2q8k+tuzmAR0iyPp2On4v
XBAdaADb9aVyjjAtzfq2aQ9pd9G8TV+88tjwV6aeuVeKUGQstZAk174WIPvOYHTZ
znBmn5rmTBor2K/oY6DRgTHm5BYEeVonroSA1QrCvbMjl99DYV5CfUOT5IeNNUcl
iY1WCOi+52BqUw==
-----END CERTIFICATE-----
Generated at Tue Apr 22 00:10:58 2025 by rpki-client