Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: f7muV6OZ0zsZwdDbnnHNTm/GimhY6YctdzmLKDqyr+s=
Subject key identifier: D1:99:02:3A:F8:CC:57:46:8B:86:13:A0:89:CD:24:1D:6C:15:5B:34
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 0196507F201DF44B452362293125A542458B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 148F
Signing time: Sun 20 Apr 2025 00:00:30 +0000
Manifest this update: Sun 20 Apr 2025 00:00:30 +0000
Manifest next update: Mon 21 Apr 2025 00:00:30 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: NT0D8ZCUOdfNCa6e5WDNUUeZsk8DOkljfujFzWKvLKc=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:20:1d:f4:4b:45:23:62:29:31:25:a5:42:45:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Apr 20 00:00:30 2025 GMT
Not After : Apr 21 00:00:30 2025 GMT
Subject: CN=d199023af8cc57468b8613a089cd241d6c155b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5d:12:83:f4:d0:af:59:c6:ca:f8:96:1e:8f:
4a:f9:4b:4c:3e:f5:06:db:45:39:21:5a:d8:f4:26:
65:13:30:66:45:e9:77:55:d8:76:95:0f:f5:90:90:
fe:5f:6c:06:62:01:ba:85:d3:ff:3f:e7:3b:d8:7b:
b5:60:2c:27:6b:15:da:68:5f:82:64:7c:4c:87:f2:
71:21:13:7b:74:dd:df:9f:36:75:46:ca:f2:87:73:
03:b2:01:ad:31:26:90:3d:af:1c:d2:2a:1b:b5:31:
be:e1:c6:a7:37:f2:93:60:8b:29:6c:e4:8d:75:9b:
cb:b5:a4:3f:5e:81:70:4b:f2:9f:d7:c6:96:35:3b:
45:23:a9:e5:ac:37:33:a8:3b:ad:2b:ba:03:7c:7d:
74:04:22:f2:bd:1a:e6:5a:fa:8f:20:bb:3b:ac:13:
3e:5e:cb:99:ca:33:2e:53:7a:22:40:bb:fd:c5:db:
21:d3:b7:db:8d:70:fd:cc:21:4c:5c:94:81:01:0f:
5c:64:4a:f0:89:a3:44:7b:70:66:23:df:fd:51:1c:
e0:82:1d:0e:c3:3a:eb:12:e4:f3:fd:47:f4:97:5d:
c4:d3:0e:c0:4f:cd:91:61:9e:bf:71:4c:b5:6a:bb:
1b:f2:72:83:79:11:69:35:cb:55:70:94:32:5c:42:
59:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:99:02:3A:F8:CC:57:46:8B:86:13:A0:89:CD:24:1D:6C:15:5B:34
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:53:5d:74:96:7c:52:77:a2:22:72:ec:78:4a:43:12:0f:41:
5b:fd:97:67:a7:f4:75:22:f8:b9:dd:9f:b1:bb:56:93:f8:ef:
fe:a4:35:2e:82:b3:b9:c0:eb:64:3b:18:6a:5e:38:b6:20:ff:
df:3b:6d:e8:56:b3:8d:88:7b:79:af:cc:17:e7:e1:e3:8a:58:
be:9f:11:4e:95:a5:ee:4f:04:42:6a:83:4c:16:58:fd:d6:91:
d1:f0:1b:5b:3d:bd:17:af:5e:85:5e:2f:97:0f:bb:92:e7:34:
fb:2e:8a:8b:e7:f9:41:da:8d:76:78:0d:13:e8:27:43:79:71:
21:e7:4e:0c:af:49:ea:1f:62:d1:bb:84:48:51:48:8d:16:03:
58:70:45:0b:fa:fc:31:70:6d:19:ba:af:2d:75:40:60:4f:be:
6b:51:61:c2:81:42:69:72:6b:f3:7e:e6:16:30:85:ee:d3:16:
10:24:94:65:cd:4f:b1:ce:07:13:be:29:67:eb:ed:b7:27:78:
98:d8:08:a0:e7:f1:53:8f:5f:65:3f:4e:2e:a4:45:8e:e8:12:
e0:93:bf:44:a5:ed:c6:51:53:ec:4a:2e:20:f7:71:54:d5:7c:
01:a6:25:bf:f8:55:53:19:83:82:7b:6f:37:5b:32:85:cb:ec:
94:f9:49:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:57:32 2025 by rpki-client