Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
File: hqSVrmh0HnnVjjiGviqoeMSME7Y.mft (raw, json)
Hash identifier: eUq83tO8zz087Uvkbf/H+mSfSGsGmaa16UxOh0D4eXo=
Subject key identifier: CA:F9:0F:B2:41:B6:5F:59:2F:5F:37:43:CD:9B:1A:CC:8C:AD:CA:C5
Authority key identifier: 86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
Certificate issuer: /CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Certificate serial: 01958B4D768109C302641DDC06D65F0200AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
Manifest number: 1492
Signing time: Wed 12 Mar 2025 17:01:04 +0000
Manifest this update: Wed 12 Mar 2025 17:01:04 +0000
Manifest next update: Thu 13 Mar 2025 17:01:04 +0000
Files and hashes: 1: hqSVrmh0HnnVjjiGviqoeMSME7Y.crl (hash: LykhUtFGu0XB+XLpIAV/7PDWUPlyYIjaZnJGFKZDZq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:76:81:09:c3:02:64:1d:dc:06:d6:5f:02:00:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Validity
Not Before: Mar 12 17:01:04 2025 GMT
Not After : Mar 13 17:01:04 2025 GMT
Subject: CN=caf90fb241b65f592f5f3743cd9b1acc8cadcac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7a:f6:ca:a0:dc:64:a8:15:99:21:3e:c3:89:
f0:a1:5c:06:12:c4:d1:19:bb:8d:63:f9:f7:79:e2:
2d:54:47:63:a5:98:86:4a:4e:2d:80:3e:ab:01:1e:
6e:62:00:42:1f:e1:6d:a7:b0:e6:ba:17:5c:cc:89:
66:d0:9f:cc:8e:09:5c:8d:b4:b3:30:9a:8f:b1:bb:
72:f9:b4:1b:c2:59:84:a1:f2:a2:54:ac:3e:3d:dd:
ef:a4:0d:49:7a:f5:32:61:77:d5:84:b9:f8:e5:20:
d2:ff:e6:11:a4:ea:08:72:9c:fc:98:f0:30:b3:6c:
51:41:54:6d:e6:eb:08:e1:42:eb:24:56:66:d2:d0:
0a:99:bc:ed:a2:9d:73:69:86:3a:b0:89:ad:0f:9b:
46:54:19:b9:46:41:61:f9:87:d1:ea:df:cc:be:df:
77:f0:9e:ad:c4:13:3d:28:b3:68:21:fd:87:1b:1a:
8d:d3:a3:7c:11:cf:ca:dc:ea:b8:6c:83:d8:6f:a7:
7b:39:e6:b8:22:b9:9e:a6:18:fb:7c:59:70:a7:ac:
21:6d:c8:41:87:cf:c3:d0:f2:59:88:ba:d5:2e:2d:
72:1b:83:7a:80:76:79:47:30:2a:c6:ce:67:9d:8f:
3a:d8:8f:c7:6e:5c:f4:a3:b0:9b:76:9a:6a:f4:78:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F9:0F:B2:41:B6:5F:59:2F:5F:37:43:CD:9B:1A:CC:8C:AD:CA:C5
X509v3 Authority Key Identifier:
keyid:86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b7:ec:52:38:4b:03:4a:71:43:4a:1e:2a:42:4b:df:40:d6:
79:99:a5:d6:f4:da:1b:9a:51:5e:39:d3:cb:df:ee:09:57:20:
be:70:75:5c:60:f4:12:ae:bf:b5:b6:45:66:b9:da:e5:38:d9:
31:dc:75:2e:ef:ed:b1:de:ad:85:6a:f8:e6:b4:b9:a0:bf:68:
49:65:6f:52:7f:54:34:91:61:0d:55:8a:04:1e:7e:24:0c:87:
6b:dd:07:3b:3d:e6:41:77:d8:3b:8e:15:9d:a9:cc:aa:33:11:
f2:07:e3:75:0b:41:bb:09:d9:da:ff:94:29:12:16:63:c2:e8:
bb:a5:06:5d:f4:19:82:30:8c:ee:a0:95:ef:15:74:37:44:60:
38:2d:b9:21:6d:b6:7d:af:b9:ed:27:24:10:e3:99:96:91:de:
24:53:2e:01:02:3e:bf:0a:21:c1:4f:15:22:c2:18:2f:2b:cd:
21:e8:68:60:9e:e1:b8:83:f3:71:11:32:bf:7f:c1:44:ab:1f:
c3:ee:58:32:a1:3b:1c:b4:49:68:98:e2:81:bb:d3:3f:b8:b1:
ab:da:34:47:15:fb:48:b3:cf:22:75:2c:49:50:5c:b8:06:3d:
18:b1:85:87:c2:f7:76:c1:bc:65:7e:2e:9c:49:b1:30:17:fc:
ee:27:02:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLTXaBCcMCZB3cBtZfAgCrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YTQ5NWFlNjg3NDFlNzlkNThlMzg4NmJlMmFhODc4YzQ4
YzEzYjYwHhcNMjUwMzEyMTcwMTA0WhcNMjUwMzEzMTcwMTA0WjAzMTEwLwYDVQQD
EyhjYWY5MGZiMjQxYjY1ZjU5MmY1ZjM3NDNjZDliMWFjYzhjYWRjYWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03r2yqDcZKgVmSE+w4nwoVwGEsTR
GbuNY/n3eeItVEdjpZiGSk4tgD6rAR5uYgBCH+Ftp7DmuhdczIlm0J/MjglcjbSz
MJqPsbty+bQbwlmEofKiVKw+Pd3vpA1JevUyYXfVhLn45SDS/+YRpOoIcpz8mPAw
s2xRQVRt5usI4ULrJFZm0tAKmbztop1zaYY6sImtD5tGVBm5RkFh+YfR6t/Mvt93
8J6txBM9KLNoIf2HGxqN06N8Ec/K3Oq4bIPYb6d7Oea4Irmephj7fFlwp6whbchB
h8/D0PJZiLrVLi1yG4N6gHZ5RzAqxs5nnY862I/Hblz0o7Cbdppq9Hj6tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMr5D7JBtl9ZL183Q82bGsyMrcrFMB8GA1UdIwQY
MBaAFIakla5odB551Y44hr4qqHjEjBO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEt
NDkxOGIwMjc0MmM3LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEtNDkxOGIwMjc0MmM3
LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH7fsUjhL
A0pxQ0oeKkJL30DWeZml1vTaG5pRXjnTy9/uCVcgvnB1XGD0Eq6/tbZFZrna5TjZ
Mdx1Lu/tsd6thWr45rS5oL9oSWVvUn9UNJFhDVWKBB5+JAyHa90HOz3mQXfYO44V
nanMqjMR8gfjdQtBuwnZ2v+UKRIWY8Lou6UGXfQZgjCM7qCV7xV0N0RgOC25IW22
fa+57SckEOOZlpHeJFMuAQI+vwohwU8VIsIYLyvNIehoYJ7huIPzcREyv3/BRKsf
w+5YMqE7HLRJaJjigbvTP7ixq9o0RxX7SLPPInUsSVBcuAY9GLGFh8L3dsG8ZX4u
nEmxMBf87icCNQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:24 2025 by rpki-client