Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
File: HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json)
Hash identifier: zuyITkDEgJtzyNQWHTfkTU9T/0Taom9O8gyUKGS0om8=
Subject key identifier: 2F:33:62:D9:8D:6C:4E:92:4A:1A:18:72:C3:9B:EA:E4:73:90:F3:94
Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
Certificate issuer: /CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Certificate serial: 01963C8A605FA94772281602EB75CA784EA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
Manifest number: 14EB
Signing time: Wed 16 Apr 2025 03:00:23 +0000
Manifest this update: Wed 16 Apr 2025 03:00:23 +0000
Manifest next update: Thu 17 Apr 2025 03:00:23 +0000
Files and hashes: 1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: jmxwwfpK4CUeBdkEMQNsRnEnhgrGt2DPS/8ycWMv3mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:8a:60:5f:a9:47:72:28:16:02:eb:75:ca:78:4e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Validity
Not Before: Apr 16 03:00:23 2025 GMT
Not After : Apr 17 03:00:23 2025 GMT
Subject: CN=2f3362d98d6c4e924a1a1872c39beae47390f394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6c:76:3d:c3:47:26:99:0c:b8:f5:d3:7c:b0:
9b:b1:d4:fc:cb:45:f7:7c:72:c7:bb:6d:a1:3d:b4:
7d:c0:de:57:42:e5:35:b4:6a:b0:fb:c1:7e:39:0d:
72:7b:d9:46:c6:c7:a1:9e:f8:6d:6d:03:18:54:00:
2b:28:8f:30:33:f3:3c:bf:bf:bf:85:e8:76:43:4c:
01:d9:19:7c:b6:cd:1e:eb:6f:d9:a1:71:82:4c:27:
00:6f:ea:45:b3:e0:74:f2:51:e1:8d:0d:e1:af:b8:
1a:6e:80:70:55:0e:cd:f5:c0:4e:d0:51:32:ee:4e:
2b:93:1c:5b:6c:ba:62:77:62:d1:9e:6a:02:99:63:
cf:95:e8:0b:bc:9e:27:97:6b:c8:42:be:db:a5:ec:
53:dc:6b:68:24:be:76:60:ee:25:b5:0d:5e:7d:ef:
6b:2b:6c:20:25:ab:fd:d6:c2:89:50:d2:99:68:70:
bb:5a:81:d6:0d:d6:16:95:34:04:37:2b:d0:14:81:
99:34:99:c2:8a:e7:9f:13:65:c6:13:f2:06:8a:f0:
c8:ed:3b:26:c2:b0:80:bf:96:63:56:3d:88:28:6f:
b5:27:db:96:68:79:b4:c0:36:73:49:e0:33:00:17:
40:39:25:a0:db:73:75:b0:11:92:62:de:e1:8e:1a:
0f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:33:62:D9:8D:6C:4E:92:4A:1A:18:72:C3:9B:EA:E4:73:90:F3:94
X509v3 Authority Key Identifier:
keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:cb:eb:c5:3b:29:20:2e:ad:98:71:62:dd:9a:e7:30:6d:70:
3c:d6:ef:76:52:b8:ac:43:7b:31:54:21:c8:b2:91:82:f4:c2:
82:e0:a5:dd:74:0d:54:53:fd:98:59:cb:fb:c7:ca:ab:36:6e:
d5:a2:b1:98:99:50:1a:7f:4a:00:56:f4:7c:b5:d2:d0:02:94:
34:ad:56:bb:2b:79:54:0f:df:8f:93:35:c3:87:81:bf:54:ef:
58:72:59:e9:d5:72:93:be:fa:76:b2:08:7c:61:79:03:ff:14:
71:f2:1e:4f:94:8a:10:0a:55:a8:3a:91:ad:9f:e1:2f:cc:7f:
9e:74:2f:27:a9:66:c1:62:6f:3a:bb:be:89:a7:77:a3:83:7a:
08:51:9d:6e:18:0f:96:dc:04:27:f9:c9:41:b5:f2:3e:f6:d0:
77:86:f1:9d:95:93:10:9a:94:4a:26:28:91:5a:f2:af:74:c7:
4e:10:a6:94:25:74:24:70:e0:c6:d4:91:d0:80:70:68:69:c4:
eb:93:14:ad:a4:ca:31:d8:f1:82:5c:79:1f:6a:ee:6e:c1:31:
0c:3f:a5:24:77:d0:bb:12:83:d2:ac:4f:67:46:e5:2a:4c:11:
54:29:75:f9:5a:34:b8:23:79:32:48:18:fc:59:74:4f:4c:a4:
a5:0c:89:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 07:23:02 2025 by rpki-client