Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: AOKScwLVoGhPiIcZJDccNbkG1+eTcwbA7lUtVqAwxhs=
Subject key identifier: 1B:DA:3A:72:24:12:68:4C:3C:6B:00:CD:BE:19:DE:63:54:83:22:9E
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 01959005FC0DE3156264A687E9CF71B0BE6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 0F97
Signing time: Thu 13 Mar 2025 15:01:06 +0000
Manifest this update: Thu 13 Mar 2025 15:01:06 +0000
Manifest next update: Fri 14 Mar 2025 15:01:06 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: 8o0jqIzCDwtuz2n9edJwziFZWOqnkJ1C+5qr7qbbjVE=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:05:fc:0d:e3:15:62:64:a6:87:e9:cf:71:b0:be:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Mar 13 15:01:06 2025 GMT
Not After : Mar 14 15:01:06 2025 GMT
Subject: CN=1bda3a722412684c3c6b00cdbe19de635483229e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ae:84:b6:84:78:e5:60:c8:62:ba:4e:21:0f:
a7:93:08:2a:62:db:68:66:49:eb:64:94:42:d7:b1:
fb:52:51:de:7c:72:26:90:43:7f:64:13:d2:6a:4c:
42:48:ad:c7:cb:7e:5f:4c:0f:cd:cb:9b:75:f8:9f:
07:11:c4:b2:6f:7c:33:9c:df:bd:6f:4d:5c:54:93:
a2:b8:50:0c:4e:41:f1:67:35:39:32:ff:b6:ca:e2:
7c:53:e2:b2:0d:31:c6:78:7f:4b:3e:a9:f3:18:63:
ec:ba:23:e2:cd:78:11:e7:d8:b1:75:38:49:a2:f2:
f2:ac:fd:a8:c6:63:07:08:3a:46:c7:b7:ec:64:3b:
c1:17:1b:b2:3f:bc:ca:d6:05:c2:35:4d:8b:8a:e1:
4a:02:ff:ab:e7:60:69:62:2f:44:02:45:f3:1e:16:
36:2a:42:ff:ca:9d:7b:1e:42:80:a2:32:f8:c5:40:
39:65:c5:fa:18:8c:12:30:23:7f:ce:c4:44:2a:2a:
e6:b0:a4:38:05:31:05:84:f0:c1:68:50:f6:df:24:
0e:e4:78:8f:51:e6:39:db:58:86:df:a0:d5:03:aa:
3c:64:4c:48:b1:c9:ca:a9:f3:36:78:8a:8e:10:18:
35:08:b3:25:eb:cd:79:4a:d8:bf:68:c7:c3:8e:9a:
05:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DA:3A:72:24:12:68:4C:3C:6B:00:CD:BE:19:DE:63:54:83:22:9E
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:57:42:02:6c:94:c4:e4:46:ac:a4:34:9d:be:4d:ea:cd:cc:
58:a5:fc:a8:3f:7a:38:26:83:a2:15:f5:c1:a9:69:67:ad:02:
5b:41:1d:19:1a:df:69:18:ea:e3:75:73:06:05:04:12:f1:9e:
52:89:41:a0:d1:84:32:84:c6:d5:ed:13:bc:e3:95:9c:04:4a:
4a:bd:ae:a2:03:e7:e0:27:e3:84:b0:b0:2c:6f:a2:7b:7e:4b:
3b:e5:ac:77:34:6f:a5:be:fd:13:86:ff:a6:70:80:1d:da:4c:
a6:29:73:64:df:f4:c1:97:6f:2f:c2:f7:f7:53:3b:f6:fa:ce:
72:13:90:8a:3f:bb:61:80:a6:6e:81:44:f9:62:60:13:a6:bd:
0c:de:a2:63:5a:6b:bc:9d:b4:c2:e5:22:2b:10:b3:97:ea:f6:
2f:b0:11:09:23:71:18:09:b2:58:9a:72:e2:58:11:a7:f9:3d:
e3:e8:0c:88:52:c5:c3:3e:97:2a:fc:cc:d3:aa:9d:72:a4:72:
4d:61:15:e5:42:3b:12:4c:8c:c0:5c:75:09:66:25:e0:31:bf:
02:f0:b3:7b:50:77:69:00:7f:20:3c:87:93:88:c0:fc:67:3c:
22:b0:fc:b0:be:6b:95:90:11:1b:6b:61:90:60:e3:ed:0f:ae:
e8:62:cb:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:27:42 2025 by rpki-client