Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: aXKHDUgjpHsLeAkmGItTBa7C7k+MCIqz+EfQik5bUBo=
Subject key identifier: FB:1B:A6:A7:67:53:96:64:27:AE:AD:D2:57:DC:F0:2F:15:25:D6:C8
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 01965E7204CF21C3CD612E06C9C936C249E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 0DDA
Signing time: Tue 22 Apr 2025 17:00:52 +0000
Manifest this update: Tue 22 Apr 2025 17:00:52 +0000
Manifest next update: Wed 23 Apr 2025 17:00:52 +0000
Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: 8a5T1D9CWmbOPkI4LV0dnRK9v223DCgj/8zQoRZLo+g=)
2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:72:04:cf:21:c3:cd:61:2e:06:c9:c9:36:c2:49:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Apr 22 17:00:52 2025 GMT
Not After : Apr 23 17:00:52 2025 GMT
Subject: CN=fb1ba6a76753966427aeadd257dcf02f1525d6c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:55:92:5a:db:c6:45:55:62:91:73:8d:7e:d8:
9d:e1:c8:82:8b:00:64:ab:24:2e:c8:44:31:26:ec:
9c:af:21:25:f7:46:55:af:6b:67:0c:c8:3d:38:d0:
23:f0:47:8c:d3:72:1b:b1:07:17:cd:5d:a4:bf:80:
fd:55:fc:16:0b:20:7d:12:4c:9a:80:01:b7:c5:d2:
0e:53:16:45:17:b1:7c:50:b0:09:6e:b3:a0:b9:a4:
0c:1a:7b:6a:93:c6:5d:a5:fe:0e:04:e2:49:e0:83:
08:77:24:ed:f3:c5:96:ff:4b:a7:f8:0f:b7:0e:2b:
ac:a3:3f:e5:3f:d0:fd:29:aa:ec:d5:38:f1:84:14:
56:b9:a5:b1:fa:29:fc:bf:33:4f:f6:b9:0f:ad:21:
97:51:5e:4e:18:38:0b:81:38:d7:d4:4c:9d:77:42:
3a:51:04:e7:32:5b:ba:2c:35:ab:8f:02:88:6e:c9:
df:fd:45:f6:ab:0f:f6:96:44:7a:fc:90:2c:3b:7a:
09:72:3c:ec:f3:e9:2e:2b:62:d5:2e:c1:2e:2e:21:
ce:c2:26:00:96:a3:02:14:b3:3b:ee:08:c9:b6:c2:
36:18:b4:21:ac:ab:53:b4:b5:01:3e:06:10:fc:d7:
ef:fc:d1:93:86:69:39:b6:64:9b:96:8d:fd:93:0a:
fb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1B:A6:A7:67:53:96:64:27:AE:AD:D2:57:DC:F0:2F:15:25:D6:C8
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:3d:bf:29:26:c4:3c:5b:60:55:97:f6:9c:3c:b3:44:0e:30:
86:64:f7:95:0d:70:3e:ea:9b:d9:2f:0a:4a:22:37:15:e5:bc:
8a:6c:82:ee:50:95:f4:7e:40:d8:e6:af:f2:c9:56:b6:f6:6a:
d9:dd:9b:d1:53:fc:b3:a5:a4:26:94:85:b3:33:ff:38:cd:a0:
06:d8:fc:43:f2:b7:54:09:63:8f:09:c7:53:d2:5d:ab:c1:b0:
0a:30:f2:3d:cc:db:26:bc:00:ef:c9:3b:0d:e8:9e:d9:84:2a:
ee:61:af:e9:02:8e:fe:ea:c7:79:cb:f6:5b:56:b9:aa:4c:82:
53:f3:5f:5e:ec:49:11:3d:e9:55:db:33:77:4f:6c:28:e7:b7:
ba:ca:da:05:d7:16:8f:31:0e:85:bc:71:52:57:31:c8:fe:af:
5d:e1:a3:60:92:bd:00:81:64:f0:6d:c3:81:43:4c:25:07:a7:
af:fb:7e:6e:9c:81:f6:c8:29:51:df:81:4b:21:01:eb:6a:26:
aa:a9:37:93:89:fc:79:79:1e:01:43:e3:79:ef:2f:96:53:09:
39:6a:e6:d5:9f:4d:29:be:24:5e:b7:0e:31:18:c7:5e:af:79:
f4:a2:2a:ee:5e:fa:d7:db:a2:a3:21:92:e3:c9:b8:af:4a:39:
44:47:0e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:42:31 2025 by rpki-client