Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: v5L5EWj+pA4I8Wua3tGHHi8W6iL+mKEt38fL9iEa2GY=
Subject key identifier: F2:B1:E1:EB:DE:AA:23:55:DF:0F:35:4A:2F:0F:87:5B:D7:64:00:5D
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 0196428CB6E861C99505576DF4504FE82D59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 1241
Signing time: Thu 17 Apr 2025 07:00:40 +0000
Manifest this update: Thu 17 Apr 2025 07:00:40 +0000
Manifest next update: Fri 18 Apr 2025 07:00:40 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: ejWpGU+TKh3zxPRLqPnGvUXPNGf1oUCxycxKFW17qT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:42:8c:b6:e8:61:c9:95:05:57:6d:f4:50:4f:e8:2d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Apr 17 07:00:40 2025 GMT
Not After : Apr 18 07:00:40 2025 GMT
Subject: CN=f2b1e1ebdeaa2355df0f354a2f0f875bd764005d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e1:6e:ec:4c:ec:aa:f4:63:c2:bc:e8:5b:2c:
45:05:8e:bb:ab:c7:d9:d8:34:46:b5:cd:eb:93:2f:
21:2f:b4:c0:78:ca:83:55:1d:77:67:20:7e:14:98:
39:7b:68:e0:a4:b3:76:d3:bc:c9:aa:5d:9b:70:af:
2e:a2:f9:63:3c:78:59:8d:c8:49:e7:6c:94:35:46:
c4:17:62:20:e7:cf:04:0b:0d:cc:a2:17:ac:84:1b:
c8:d4:09:20:57:03:84:d1:fe:a9:41:94:64:bb:57:
0b:5c:4b:74:c0:b3:fa:17:28:04:25:05:bc:71:54:
76:7a:57:3f:90:0a:6d:b7:4b:1f:c0:b5:03:32:20:
f0:61:fa:b9:cc:88:a0:16:df:1a:06:d6:61:4a:29:
f5:92:cf:ec:99:e9:09:aa:13:cb:0b:46:f0:c3:94:
56:63:60:b3:c6:9f:86:65:75:51:51:7d:53:c4:02:
b5:7d:6e:37:12:5f:79:bd:fc:92:1c:47:11:1c:f8:
b8:14:4e:6f:6c:77:33:08:d4:6d:78:c3:e1:df:51:
77:87:de:90:1c:9d:25:cf:d8:42:1e:3a:fb:93:75:
21:11:f7:17:ac:fc:19:33:72:a9:e4:a9:dc:58:4f:
a5:8e:ff:df:03:4e:46:7e:bd:fb:d4:95:9d:96:e9:
6f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B1:E1:EB:DE:AA:23:55:DF:0F:35:4A:2F:0F:87:5B:D7:64:00:5D
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:5c:53:2d:9b:3d:da:c7:2e:76:06:1b:20:d1:ac:78:a0:41:
ce:3c:d0:2d:b5:df:fd:40:31:a1:33:4b:b1:4b:3f:fc:97:b7:
d9:1e:02:69:f6:aa:e6:af:b9:df:7b:94:4e:d6:56:a5:d9:d7:
6f:60:ad:b8:44:af:53:dc:71:f2:ee:81:6a:63:89:d4:b8:7b:
31:af:3b:09:62:3a:7f:52:31:0c:46:74:01:9d:26:ee:ea:13:
bd:88:57:28:54:9e:25:eb:02:4c:e5:4f:11:3b:19:3b:7e:ef:
42:51:7d:58:a3:61:0f:03:b3:34:5e:7d:e8:b1:37:3f:b5:40:
6e:75:3c:d3:47:4b:ec:99:00:6f:a7:e8:e3:a0:31:a7:29:ed:
8a:1b:28:c3:22:b0:4b:67:8f:29:de:3d:53:0a:ce:8f:e7:cf:
6b:44:28:a1:41:31:2b:51:45:06:78:46:32:78:e5:5f:d4:b4:
4d:79:d7:26:86:a1:1d:a5:aa:64:fc:f1:1d:db:a5:ed:dd:88:
9f:13:81:a6:fc:0c:59:d9:37:24:6b:db:e7:95:d9:56:7e:8b:
6d:60:84:d7:19:bf:ee:0a:62:ae:b3:9d:12:1c:85:bd:1d:90:
6a:f7:fd:34:50:57:aa:fd:4a:8a:5e:76:80:ac:c9:fb:df:0f:
c7:fa:d3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:38:48 2025 by rpki-client