Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
File: HLjjf1E93Cn_15HDjJZjI2nKVFE.mft (raw, json)
Hash identifier: gEZmv3frMT5m1bAJ+EaLk2FshnYu8KeROgPFqETAQmA=
Subject key identifier: BA:6D:E1:88:CB:65:F2:36:3C:F0:3A:F1:49:49:18:3E:FA:60:8B:AD
Authority key identifier: 1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
Certificate issuer: /CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Certificate serial: 01964DB5306F0AB5EE1730900B2F29A061BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
Manifest number: 10A7
Signing time: Sat 19 Apr 2025 11:00:42 +0000
Manifest this update: Sat 19 Apr 2025 11:00:42 +0000
Manifest next update: Sun 20 Apr 2025 11:00:42 +0000
Files and hashes: 1: HLjjf1E93Cn_15HDjJZjI2nKVFE.crl (hash: r8p65nFKzitWIzPpK3s0/URlWO0x9nTpXzKfuI1XCyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b5:30:6f:0a:b5:ee:17:30:90:0b:2f:29:a0:61:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Validity
Not Before: Apr 19 11:00:42 2025 GMT
Not After : Apr 20 11:00:42 2025 GMT
Subject: CN=ba6de188cb65f2363cf03af14949183efa608bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d2:27:db:07:1f:de:95:1d:b0:eb:5a:e4:97:
aa:86:02:07:9c:c2:bc:27:c4:e2:23:15:e5:0d:e3:
4b:00:9c:d4:18:52:5a:e3:ce:05:9d:c7:ef:e1:80:
d1:3b:8f:3a:f0:a7:e6:30:7c:24:de:f8:fe:9c:6c:
58:8d:97:e0:16:19:1c:04:ed:78:27:06:6b:40:c4:
db:4a:84:12:f7:88:24:04:cc:ff:14:aa:4b:57:b2:
9c:dc:7b:73:f6:41:f8:92:ee:ae:b2:d2:d3:bb:b4:
b8:9a:fe:3e:7c:d1:d8:48:a3:7c:18:26:44:76:f6:
69:cc:69:8e:d3:a5:20:9e:78:f2:21:41:c6:a2:6d:
c0:9c:44:e2:2f:34:e7:2a:38:65:33:af:69:20:18:
1e:69:c6:f9:49:a7:d5:17:d9:75:b6:26:c5:73:e1:
8b:2e:22:8e:f4:4f:d3:1a:57:66:c4:8f:16:2f:ad:
e4:19:24:44:07:dd:14:16:ae:2b:71:67:04:3d:88:
27:c4:93:3d:cb:b4:8f:8e:66:3c:41:1a:cf:fc:fd:
09:32:65:3a:66:c5:fe:ae:50:0f:22:c8:b4:22:a8:
d9:61:62:99:ad:5f:5e:26:90:86:b6:16:7f:9e:b5:
20:a4:fe:39:05:49:5c:e1:56:f9:ae:17:ff:38:3b:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6D:E1:88:CB:65:F2:36:3C:F0:3A:F1:49:49:18:3E:FA:60:8B:AD
X509v3 Authority Key Identifier:
keyid:1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:6e:96:99:24:17:2d:3a:39:f3:cf:9c:12:de:2b:4d:41:ce:
90:c1:22:c1:4e:92:3e:8b:62:41:2c:85:27:82:39:49:34:72:
5e:9a:82:c5:63:0b:ca:bd:31:c6:b3:77:f1:82:23:92:45:61:
53:72:5d:0b:5a:41:ad:60:43:a0:5f:b7:4d:17:c1:b8:aa:72:
e3:49:c0:92:03:89:58:e3:70:9b:ea:a6:00:ca:48:e4:6b:95:
ae:a5:4d:53:60:54:07:1f:84:c5:e3:96:dc:d2:00:75:45:9e:
90:9e:7a:ff:35:61:25:b1:c9:c6:a0:f8:9e:24:7e:71:3d:fe:
a0:92:ff:01:b6:74:d3:c9:4a:e0:85:ca:17:24:db:0d:5b:bf:
d6:10:18:14:fd:08:78:1b:8f:b5:db:1e:3b:06:a6:9c:c1:f1:
c8:f6:41:a5:c0:e8:51:89:a3:9b:91:c6:5a:00:7e:7e:0c:c1:
52:e2:ac:39:27:a9:4a:14:9b:40:fa:60:09:3f:74:da:72:b3:
67:96:6a:83:1b:ff:db:7f:35:e2:95:a2:a6:58:1c:1b:04:6d:
2c:eb:29:a5:41:b7:29:78:8b:49:31:c5:35:0c:1c:9e:22:29:
20:86:4c:0c:6e:ef:1c:08:00:e6:c8:3b:e0:ac:3c:3a:16:97:
bc:3a:a6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:01:53 2025 by rpki-client