Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
File: Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft (raw, json)
Hash identifier: 0MPS+pGIB7gcYbh8uZCAiFE+fCwKfqfilAxOLwsR4/o=
Subject key identifier: 5D:BE:27:83:7A:7D:AC:36:0F:63:25:6C:6E:AD:69:EF:E1:77:C4:9A
Authority key identifier: 1E:68:BF:27:DA:C7:05:F3:10:2E:A8:86:73:47:0D:27:DC:86:86:6C
Certificate issuer: /CN=1e68bf27dac705f3102ea88673470d27dc86866c
Certificate serial: 01958C2936A9BFB34365B07693AFE52CCE7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
Manifest number: 0BB6
Signing time: Wed 12 Mar 2025 21:01:05 +0000
Manifest this update: Wed 12 Mar 2025 21:01:05 +0000
Manifest next update: Thu 13 Mar 2025 21:01:05 +0000
Files and hashes: 1: Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.crl (hash: R9JN40D4H9xM7upxf8EuT5WoIQjt/KF69ZCijlYRZ/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:36:a9:bf:b3:43:65:b0:76:93:af:e5:2c:ce:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e68bf27dac705f3102ea88673470d27dc86866c
Validity
Not Before: Mar 12 21:01:05 2025 GMT
Not After : Mar 13 21:01:05 2025 GMT
Subject: CN=5dbe27837a7dac360f63256c6ead69efe177c49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:c0:df:3f:0c:c0:b6:99:73:fe:73:fe:74:
e4:6a:ae:6b:6e:b4:29:b9:6c:f2:15:b6:a0:a8:c1:
a5:86:d2:3a:70:a8:ae:d3:be:fc:2c:20:73:b0:50:
e9:4d:76:dc:f7:26:87:04:6b:9a:f0:ce:34:c9:5d:
22:98:09:8a:94:83:e5:d4:fe:e7:01:9b:5f:d8:cd:
c9:da:fb:f5:70:61:3a:c0:b1:f4:80:44:ae:b7:0d:
6e:bc:30:55:bf:6e:e9:48:46:f9:a9:ce:e6:68:0e:
54:0a:b3:05:9d:92:b7:9b:ac:fa:54:18:7b:b3:8f:
16:7a:51:d9:cc:3c:d2:8c:e4:35:30:90:2b:92:84:
a4:16:67:2d:21:b5:e8:7f:cd:41:25:32:f0:1b:d3:
d1:a0:49:10:fb:ff:cf:03:6c:62:81:d6:bb:a3:c5:
79:2f:f4:fc:1d:9e:24:b0:08:5c:37:fc:e2:78:b3:
11:e5:b9:97:5d:eb:49:ed:59:14:64:87:fa:b9:d4:
bf:5f:4a:e2:4d:b6:00:ac:13:e9:30:a8:02:bb:4a:
0f:e5:62:a4:d7:18:f4:0e:ac:98:ed:50:47:44:7e:
dd:2d:cd:38:b9:23:90:ff:8c:5d:77:f8:be:56:b6:
29:86:2a:b2:d0:d8:b3:46:bb:69:97:77:e4:67:58:
8c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BE:27:83:7A:7D:AC:36:0F:63:25:6C:6E:AD:69:EF:E1:77:C4:9A
X509v3 Authority Key Identifier:
keyid:1E:68:BF:27:DA:C7:05:F3:10:2E:A8:86:73:47:0D:27:DC:86:86:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:56:3d:e4:df:a4:5c:5a:34:f0:17:1e:dc:25:8a:00:90:8c:
6e:92:e2:3f:e7:3e:63:6d:c4:ff:36:2d:0d:d4:d8:ca:ae:1a:
15:4d:9c:58:49:cc:cf:a9:86:a9:b6:84:17:0d:bf:58:a7:57:
bf:7b:0b:f1:03:d5:c3:cb:f4:30:5c:28:60:92:12:02:99:ef:
7a:02:8c:5e:97:22:c6:96:a1:1f:a9:aa:c9:e0:9d:23:00:06:
35:9c:4d:ba:89:de:3e:a2:14:9f:b3:11:33:10:fd:bf:74:98:
6b:98:65:04:85:d4:cc:9f:f1:b4:99:4f:2a:ca:39:a1:5e:aa:
e4:1f:d4:43:d7:14:2a:2b:20:54:93:f7:cf:0a:ee:5d:d8:75:
d0:06:43:4d:e3:a0:37:c2:85:32:c8:c9:d6:34:4b:8c:e6:af:
38:58:60:62:a3:00:4c:6f:6b:7a:2e:e9:25:79:90:4d:17:b0:
e9:1c:2b:fb:04:11:09:8b:42:3c:90:ef:35:a0:de:64:1d:4f:
ab:74:a3:81:00:d3:84:67:da:11:aa:2b:e3:aa:36:ab:f6:f1:
11:29:cd:83:c0:36:f3:7c:1d:16:4f:db:13:d4:17:50:e0:6e:
7f:dc:a3:b4:40:e1:0f:c2:5a:3d:b0:82:e4:54:c8:04:ba:88:
f4:ec:04:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:36:49 2025 by rpki-client