Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
File: Hekyc87VkolMnTVRSLsfrMEPcqI.mft (raw, json)
Hash identifier: UHVnyre+cv6jPWl/7izYgLc29x6zzJIeql1DjYc3F2A=
Subject key identifier: 56:00:98:D3:8B:86:5F:41:7D:22:DD:15:98:B4:F1:4B:94:41:03:A9
Authority key identifier: 1D:E9:32:73:CE:D5:92:89:4C:9D:35:51:48:BB:1F:AC:C1:0F:72:A2
Certificate issuer: /CN=1de93273ced592894c9d355148bb1facc10f72a2
Certificate serial: 019752352D8AC422C2386EC4CEB9DA76E40F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hekyc87VkolMnTVRSLsfrMEPcqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
Manifest number: 1163
Signing time: Mon 09 Jun 2025 01:01:46 +0000
Manifest this update: Mon 09 Jun 2025 01:01:46 +0000
Manifest next update: Tue 10 Jun 2025 01:01:46 +0000
Files and hashes: 1: Hekyc87VkolMnTVRSLsfrMEPcqI.crl (hash: 6LhAgmhiDdef19FtXeq9JqxmvGeitiCyl6qMIZWzMvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hekyc87VkolMnTVRSLsfrMEPcqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:35:2d:8a:c4:22:c2:38:6e:c4:ce:b9:da:76:e4:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de93273ced592894c9d355148bb1facc10f72a2
Validity
Not Before: Jun 9 01:01:46 2025 GMT
Not After : Jun 10 01:01:46 2025 GMT
Subject: CN=560098d38b865f417d22dd1598b4f14b944103a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:ea:cd:fa:3d:23:29:e5:65:86:b5:63:37:
d2:b3:02:b6:57:20:01:e5:8c:76:9d:e9:1e:bf:8a:
88:e6:7d:ec:f8:a9:48:cf:36:0c:02:f8:15:82:76:
ed:db:b2:cf:d6:1e:8e:d6:f2:37:73:77:9d:68:86:
f2:ba:13:af:60:f9:c5:3f:fe:31:61:15:42:a6:1d:
55:6b:c7:ac:e8:30:ad:f6:09:ab:a6:13:f2:da:fc:
63:72:da:ae:e2:43:1c:9a:2f:5f:c6:b1:54:f2:f9:
20:30:d9:6a:8b:14:0d:ed:36:f3:cf:2c:0d:4f:9b:
53:7f:48:23:61:db:bf:9b:46:bf:97:57:b4:73:b2:
13:87:43:cd:a0:bb:da:af:a5:fa:0e:36:44:d6:d2:
0b:af:15:8a:60:52:88:df:16:fa:26:5a:e9:2e:1b:
af:d4:4e:d1:b5:92:20:82:43:e9:5e:b0:3b:f4:4f:
18:52:3d:48:90:3c:15:30:80:22:44:b3:bc:a8:c1:
bd:5e:77:82:1a:45:a7:b7:e9:cb:c0:e5:3a:92:b6:
e0:25:4e:a4:f4:32:a2:1f:a5:6d:0b:a2:05:bb:e5:
14:62:49:24:35:80:45:5b:93:b0:b9:ee:be:45:8e:
2e:b6:ab:a2:29:44:a7:c2:55:ae:69:d4:cb:7e:d4:
02:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:00:98:D3:8B:86:5F:41:7D:22:DD:15:98:B4:F1:4B:94:41:03:A9
X509v3 Authority Key Identifier:
keyid:1D:E9:32:73:CE:D5:92:89:4C:9D:35:51:48:BB:1F:AC:C1:0F:72:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hekyc87VkolMnTVRSLsfrMEPcqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3fd53b-e153-4c3a-8058-18ad589cecd0/1/Hekyc87VkolMnTVRSLsfrMEPcqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:fa:86:ee:f0:4b:63:b9:09:00:83:d2:73:69:c6:9b:ed:3e:
b5:9b:b1:24:3f:e8:49:1a:bd:fb:9f:ab:d5:56:11:05:48:d3:
e5:48:2a:29:4f:48:18:12:41:49:d8:af:02:ef:01:fe:b9:0d:
20:fe:a7:d7:73:71:36:69:11:ca:b2:3b:d1:2d:65:f7:b1:78:
52:e6:c1:d6:2a:85:dd:4d:b3:79:ed:a7:6d:e1:82:86:7c:dc:
c7:55:6d:53:de:76:a0:5a:a1:1c:d4:2c:06:48:3b:9c:c0:ee:
10:79:eb:2e:21:ab:64:f6:c0:30:49:ca:83:06:7d:df:58:42:
cd:a7:29:ca:d7:33:91:41:cb:45:40:7c:08:63:d2:48:79:d3:
3d:ba:d0:18:94:04:f2:55:2f:f1:ed:79:f7:7c:7f:2f:cd:86:
d4:1d:8f:71:0a:e5:6b:03:25:d7:c0:8f:75:5b:ff:ea:3a:21:
a0:86:a6:8d:b9:0f:1f:92:e1:d5:e5:f3:1a:51:92:36:12:46:
88:d3:2c:1e:1f:81:c0:a7:be:94:41:86:b7:22:5f:2d:b9:79:
45:76:47:77:b8:eb:56:40:d9:83:6b:c5:49:18:6d:17:20:f7:
dd:aa:f4:b1:b1:be:c0:27:68:15:e0:35:9d:35:9b:fb:13:c0:
5a:18:76:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:26:26 2025 by rpki-client