Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: Y6ntpStop/KMWg7KJilfelIttrM+qy2hvPHgPx3YKv0=
Subject key identifier: 41:39:3B:8A:C0:91:62:03:EE:0B:44:DE:C8:69:46:51:B5:2D:76:95
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 01974B1F8CC4561ED59395BE1DCCC3AA8045
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 12CA
Signing time: Sat 07 Jun 2025 16:00:48 +0000
Manifest this update: Sat 07 Jun 2025 16:00:48 +0000
Manifest next update: Sun 08 Jun 2025 16:00:48 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: gfH3wx93VV/k7MpYL+p5zcGY6QdZm2cmhlh1iiBIngk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:8c:c4:56:1e:d5:93:95:be:1d:cc:c3:aa:80:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Jun 7 16:00:48 2025 GMT
Not After : Jun 8 16:00:48 2025 GMT
Subject: CN=41393b8ac0916203ee0b44dec8694651b52d7695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:94:82:ea:24:32:96:bd:47:fe:e2:e3:53:
b3:dc:77:5e:0f:a7:e6:5e:ff:f8:26:40:0a:e1:d0:
a9:f6:73:0d:00:14:f6:cb:15:13:8b:d8:f8:e2:fd:
16:8a:bb:d1:09:e0:cf:40:07:99:8c:09:3c:17:a0:
c8:00:da:89:f3:28:d9:df:78:15:14:44:cc:0e:64:
d4:a6:b5:f9:36:3b:c7:77:c5:c6:2d:d0:83:b4:2f:
e1:e5:d9:d2:37:bb:7d:97:6b:c9:6f:76:d0:46:a3:
09:91:af:cb:5e:5b:66:d1:4e:79:25:c5:f8:bb:6b:
db:18:13:d2:10:7a:34:2c:9e:92:c7:81:1f:ed:cb:
1a:b7:34:2b:7d:93:d8:fe:38:f3:77:96:99:2b:f2:
75:15:bd:1e:29:49:89:9f:41:7e:5a:6e:e9:90:b1:
88:12:fa:dd:6d:6b:7d:9e:d9:d3:62:25:c8:d3:57:
8e:0a:9a:1f:dc:11:2d:11:6d:69:f7:8d:ea:ef:c2:
82:e0:69:3e:54:cc:95:d3:48:39:ed:c5:49:e8:61:
2c:49:d4:9e:d3:65:98:41:4e:f5:bd:dd:e4:b1:ba:
b5:8a:ea:72:e9:71:b2:b4:15:21:79:39:6d:d4:3f:
ee:68:1a:d6:2c:d3:f4:dd:a0:13:05:a5:48:8b:f5:
58:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:39:3B:8A:C0:91:62:03:EE:0B:44:DE:C8:69:46:51:B5:2D:76:95
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:47:69:2d:94:b9:42:d2:f3:0d:ac:a0:8a:33:22:8f:dc:e6:
82:5b:db:a5:92:ed:f9:e6:92:50:83:98:d9:e6:50:c2:39:e2:
6b:6c:55:5b:5a:39:dc:61:c6:3e:4d:87:b4:a0:f9:b8:25:70:
ad:58:c6:67:28:de:bd:a8:c0:d5:9e:47:ae:81:05:3d:6c:0b:
75:36:38:fc:c9:50:18:4f:86:3d:79:50:55:d7:6c:bf:46:7a:
1a:15:97:c7:a6:c6:e5:4e:f1:7e:c6:54:60:53:7b:b4:02:4e:
fc:2f:12:e8:e7:af:e1:58:d4:14:57:fa:1a:6b:58:e6:75:f6:
31:12:87:4e:6d:9d:08:ec:e8:34:7c:e4:a2:a0:73:0a:ac:91:
10:ad:e3:e2:fa:cf:64:21:a6:0f:cc:44:ff:a6:65:c7:39:92:
e6:b8:2b:38:a4:d8:ae:1c:78:be:ba:7e:8d:c2:03:54:22:f4:
04:42:75:f2:52:c8:0d:60:f0:21:cf:ed:f6:1b:56:45:5d:6d:
a6:c6:0b:22:43:bd:78:36:5e:ea:f3:6c:f1:d3:63:d8:53:b8:
68:b9:e1:3c:89:97:79:cc:3c:3c:57:d2:1b:b6:e7:6c:1b:32:
91:15:88:40:28:f7:b2:30:61:08:c8:52:ac:8c:09:99:dc:49:
1e:31:ed:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:12:23 2025 by rpki-client