Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: JjdGyoV4S/zzUrgJIGd6J9fpxOUsR3MUAqn2RXnVe7A=
Subject key identifier: 72:00:F8:91:E5:5F:75:1C:21:90:03:9E:9F:1B:85:3F:ED:3B:F8:A6
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 019655385187661DE4297F08CCC9B945C9F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0B53
Signing time: Sun 20 Apr 2025 22:01:16 +0000
Manifest this update: Sun 20 Apr 2025 22:01:16 +0000
Manifest next update: Mon 21 Apr 2025 22:01:16 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: lzUlxifQ5DBN+Ess9hnaqG8KXI3FE7J6gfoHXXo56rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:51:87:66:1d:e4:29:7f:08:cc:c9:b9:45:c9:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: Apr 20 22:01:16 2025 GMT
Not After : Apr 21 22:01:16 2025 GMT
Subject: CN=7200f891e55f751c2190039e9f1b853fed3bf8a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1c:b6:63:16:c0:15:e2:05:3c:e6:39:be:47:
5d:0d:ef:a7:09:50:25:01:85:d5:58:a4:b5:5b:fa:
aa:4d:7a:6f:35:4b:52:d0:77:d3:33:b0:99:23:74:
f9:53:7f:e5:49:e0:0a:fb:d1:5c:e7:89:40:a2:f4:
70:74:57:3a:85:cb:f5:30:9e:cf:20:4a:58:c8:bd:
06:ff:c2:ab:1f:ea:c0:6c:71:30:5e:58:e0:f5:dd:
1c:0b:8a:61:b2:4e:31:a4:34:a5:73:6a:3d:48:1e:
c2:a8:1e:29:16:d5:5f:9a:d7:ea:c7:0a:8e:7b:7b:
1c:21:e1:64:89:a7:20:bb:14:fd:5b:4f:ee:50:57:
ad:71:35:fb:44:7c:55:3f:fa:9f:61:9b:9a:a4:7b:
d7:d1:9a:e6:4a:17:2c:4d:1d:a1:99:58:ad:9e:c6:
ac:a2:2a:ae:c5:21:86:b0:3e:ec:b2:21:f3:98:94:
b1:d2:d6:24:8f:13:c3:4f:b8:9e:1f:26:14:79:bb:
d7:86:00:5c:a3:5a:e9:d8:2c:7b:32:97:da:e9:32:
33:46:ed:68:fb:b6:1d:f6:0d:11:45:ea:4d:e8:8c:
18:9f:6c:8f:91:35:ef:65:dd:37:90:ab:1c:18:01:
74:ca:58:af:99:f4:5b:f4:0a:22:5f:bd:75:0a:22:
e0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:00:F8:91:E5:5F:75:1C:21:90:03:9E:9F:1B:85:3F:ED:3B:F8:A6
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:5b:47:36:5d:b7:00:c9:37:57:17:96:03:75:10:80:4f:8e:
14:85:86:f7:50:a1:e4:1e:23:25:f1:90:6f:a4:4a:87:13:aa:
bc:79:bb:e4:8b:d8:be:d0:d2:8b:dc:b5:20:73:50:7c:5f:fe:
65:c4:01:1d:9e:f7:2d:44:dc:1d:9b:75:06:d9:05:39:30:67:
2b:53:92:be:cd:8e:9f:72:0d:79:cc:79:71:98:9e:73:a6:42:
dc:dd:c5:8c:0a:89:60:2e:84:5c:5a:b2:20:3d:d5:eb:02:87:
9a:e3:e8:e5:1f:f4:f3:55:07:40:19:8d:01:4b:95:c1:91:5f:
bf:62:1f:81:ed:d0:17:b7:59:37:c0:08:b9:33:0a:67:5f:7a:
73:23:54:4f:7a:22:93:b4:ee:3e:37:89:d1:25:79:d8:06:72:
67:b0:6a:40:27:a8:cd:23:e1:c4:11:bd:5a:60:37:61:88:dd:
7a:93:5e:79:f2:ee:55:91:d3:f0:45:06:8f:c4:db:e8:9e:bc:
0d:62:cf:76:eb:b1:a2:95:03:56:fd:20:57:b0:8c:42:7f:91:
bd:ed:13:ff:43:16:10:a2:90:54:9a:4d:8b:ac:86:c5:cd:ee:
cf:58:32:0d:8e:67:be:8c:2d:27:67:eb:ad:b8:63:a9:67:ae:
8b:61:8f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:26:05 2025 by rpki-client