Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier: Z/wXdam/RW4znL1dvINNf5N1WWiejrgrQPqzSL7N1i4=
Subject key identifier: BD:04:20:85:C0:AE:FC:1A:16:D9:4D:40:1D:EF:8D:0B:33:DD:4E:11
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial: 019510FDBFF8D3BBE18E8B53F51D5279658A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number: 03CC
Signing time: Sun 16 Feb 2025 23:00:20 +0000
Manifest this update: Sun 16 Feb 2025 23:00:20 +0000
Manifest next update: Mon 17 Feb 2025 23:00:20 +0000
Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: NLhm4SA+5Gg8EO82FmwhYLuxVLQbjxlecAEjkMI9un8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:bf:f8:d3:bb:e1:8e:8b:53:f5:1d:52:79:65:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
Validity
Not Before: Feb 16 23:00:20 2025 GMT
Not After : Feb 17 23:00:20 2025 GMT
Subject: CN=bd042085c0aefc1a16d94d401def8d0b33dd4e11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8c:b1:4d:19:bf:b2:36:4b:a3:09:16:d3:7c:
80:fa:cc:e1:3c:88:aa:df:4c:b4:c1:63:07:75:6a:
4c:fc:ad:3f:62:08:1b:15:25:98:78:bc:f9:57:b0:
ae:56:e7:bb:c6:2c:57:9a:b0:63:b1:8b:7e:7f:c3:
a2:70:f8:32:1f:9d:1e:b8:7c:2b:98:6f:cd:85:ad:
a6:f8:da:d2:48:f7:6b:07:ed:76:3a:ee:e0:5d:af:
ed:f2:6b:e9:ee:7d:af:e5:f5:44:9c:96:87:4d:b6:
99:8d:42:cf:9f:64:43:6f:ee:8e:6a:fb:52:46:2d:
61:49:1e:7e:30:ad:0f:09:e9:97:01:f9:2c:97:1c:
a7:49:61:8a:93:09:34:0d:47:69:c5:ee:d0:2f:92:
37:eb:87:53:79:86:44:a3:89:22:8b:12:2c:af:27:
78:1d:40:5e:ac:ac:3c:69:b3:59:e8:56:e6:3c:9a:
6c:4f:89:ab:3d:6a:58:e2:61:43:c9:bd:7b:81:87:
2d:1c:7d:7b:78:3f:09:5b:03:2a:7a:30:7c:f0:7f:
5f:13:be:af:cf:60:56:e0:81:e7:83:5e:f5:36:78:
85:bb:7f:0d:af:d8:4c:de:17:2c:22:d9:0c:e5:f0:
c6:38:f7:56:c3:d8:41:b2:7e:f4:91:63:b9:e5:aa:
a9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:04:20:85:C0:AE:FC:1A:16:D9:4D:40:1D:EF:8D:0B:33:DD:4E:11
X509v3 Authority Key Identifier:
keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:13:22:b2:01:0c:5c:29:f0:fb:dc:45:1f:3f:c8:ca:93:66:
22:d9:d6:6c:ad:82:17:2f:34:a5:32:ec:70:14:13:35:6f:f7:
b6:29:ee:83:cd:12:5c:0b:e1:72:63:0d:c0:17:9e:5d:cb:f1:
9d:ab:d4:e4:59:78:7a:3f:24:48:17:bd:47:96:8f:c4:e4:e8:
e6:22:db:6e:10:61:4a:ca:2f:74:12:c9:6b:77:28:07:de:76:
07:bf:57:e4:e8:51:1d:10:60:ad:11:a0:a5:5f:1d:ad:83:eb:
c6:60:de:ba:85:bd:02:4c:e4:26:10:05:a1:e3:0e:9c:29:a5:
d6:f5:56:fa:ba:88:ea:82:77:bc:2b:74:c2:bd:4f:7e:31:28:
cd:38:01:31:5f:5a:91:76:15:f4:fd:00:2e:39:cf:a9:54:1e:
3b:56:03:d6:b7:d6:81:5e:3d:6a:4b:9d:2e:15:df:f4:de:04:
41:98:23:1a:b3:88:84:45:75:2e:bd:ce:88:eb:bd:71:9d:46:
27:ce:f1:8e:81:4c:cb:ea:95:1b:5e:f2:b5:8e:8e:21:09:d1:
99:cb:5d:5f:9b:45:c0:54:b6:07:a3:57:d1:cb:6f:42:5f:ac:
41:f2:b8:6b:91:79:d9:19:31:9b:70:2d:af:6a:8c:d6:ce:07:
57:0a:23:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQ/b/407vhjotT9R1SeWWKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjRmMWNhYWZiMzIwOGViODI3YTA3ODI2NDE3YmNiOTQ5
MzQxMmYwHhcNMjUwMjE2MjMwMDIwWhcNMjUwMjE3MjMwMDIwWjAzMTEwLwYDVQQD
EyhiZDA0MjA4NWMwYWVmYzFhMTZkOTRkNDAxZGVmOGQwYjMzZGQ0ZTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjIyxTRm/sjZLowkW03yA+szhPIiq
30y0wWMHdWpM/K0/YggbFSWYeLz5V7CuVue7xixXmrBjsYt+f8OicPgyH50euHwr
mG/Nha2m+NrSSPdrB+12Ou7gXa/t8mvp7n2v5fVEnJaHTbaZjULPn2RDb+6OavtS
Ri1hSR5+MK0PCemXAfkslxynSWGKkwk0DUdpxe7QL5I364dTeYZEo4kiixIsryd4
HUBerKw8abNZ6FbmPJpsT4mrPWpY4mFDyb17gYctHH17eD8JWwMqejB88H9fE76v
z2BW4IHng171NniFu38Nr9hM3hcsItkM5fDGOPdWw9hBsn70kWO55aqpcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL0EIIXArvwaFtlNQB3vjQsz3U4RMB8GA1UdIwQY
MBaAFBwk8cqvsyCOuCegeCZBe8uUk0EvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQt
N2RjZmZmYWUyNzhjLzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQtN2RjZmZmYWUyNzhj
LzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHxMisgEM
XCnw+9xFHz/IypNmItnWbK2CFy80pTLscBQTNW/3tinug80SXAvhcmMNwBeeXcvx
navU5Fl4ej8kSBe9R5aPxOTo5iLbbhBhSsovdBLJa3coB952B79X5OhRHRBgrRGg
pV8drYPrxmDeuoW9AkzkJhAFoeMOnCml1vVW+rqI6oJ3vCt0wr1PfjEozTgBMV9a
kXYV9P0ALjnPqVQeO1YD1rfWgV49akudLhXf9N4EQZgjGrOIhEV1Lr3OiOu9cZ1G
J87xjoFMy+qVG17ytY6OIQnRmctdX5tFwFS2B6NX0ctvQl+sQfK4a5F52Rkxm3At
r2qM1s4HVwojmQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:47 2025 by rpki-client