Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
File: HLjjf1E93Cn_15HDjJZjI2nKVFE.mft (raw, json)
Hash identifier: s8mGS+VYh+rgJ3cSAygsLqZrv7Ifkl0VJ+51QueLBvA=
Subject key identifier: B3:74:9D:9F:BD:93:21:3C:A7:A8:94:39:39:B4:2C:44:26:DC:4B:DB
Authority key identifier: 1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
Certificate issuer: /CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Certificate serial: 019748C2DF41BC427FCA1CB92CF7DE3FFBAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
Manifest number: 1129
Signing time: Sat 07 Jun 2025 05:00:20 +0000
Manifest this update: Sat 07 Jun 2025 05:00:20 +0000
Manifest next update: Sun 08 Jun 2025 05:00:20 +0000
Files and hashes: 1: HLjjf1E93Cn_15HDjJZjI2nKVFE.crl (hash: 4eVQ1ED0cn+2qBs2vsqw+jaJqYQIcutA57o4KlOVSNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:df:41:bc:42:7f:ca:1c:b9:2c:f7:de:3f:fb:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Validity
Not Before: Jun 7 05:00:20 2025 GMT
Not After : Jun 8 05:00:20 2025 GMT
Subject: CN=b3749d9fbd93213ca7a8943939b42c4426dc4bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6e:13:fc:2b:d9:cc:04:42:8d:e6:d8:e0:c7:
ac:30:f5:48:45:e7:6a:73:5d:7b:d2:c4:84:50:52:
20:ac:1d:c8:dc:e2:ff:70:40:c1:a5:0a:63:53:49:
15:8e:e3:8d:66:ef:cf:9d:0a:18:4c:b2:1c:49:4a:
bd:74:05:24:03:bd:bb:5b:5f:16:ad:cb:3f:ed:27:
5f:d5:75:14:59:a5:90:5e:cf:fd:e6:61:2b:a4:aa:
be:34:e4:b0:cd:a2:e2:40:cd:e4:fb:7a:41:ed:53:
97:44:4a:f2:63:a3:1e:59:87:55:1b:49:48:6b:34:
84:45:57:78:05:e9:b0:d8:e7:10:16:b0:9a:77:2f:
e4:7a:79:4e:6e:1c:9f:d2:da:ad:e6:4b:53:61:26:
f4:89:b2:7c:78:fa:a3:7c:c5:d5:74:90:c3:3c:2e:
f4:f4:67:e6:66:1b:30:2f:0c:7e:a8:aa:ad:ed:f0:
f2:0e:96:c5:db:3e:75:e6:ee:e1:eb:27:70:a3:05:
00:85:60:da:a4:0e:d1:8e:2c:35:c4:b5:92:7b:08:
83:ad:c3:f5:c4:cf:0e:b2:4c:9d:a1:06:cd:1f:86:
29:48:80:66:6a:12:1e:35:dd:28:40:40:e9:1a:45:
b1:d5:f6:a0:ca:73:27:d5:00:ae:97:65:6f:f7:2f:
7a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:74:9D:9F:BD:93:21:3C:A7:A8:94:39:39:B4:2C:44:26:DC:4B:DB
X509v3 Authority Key Identifier:
keyid:1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:8a:b2:a4:68:e9:b4:aa:4d:3c:cf:da:45:23:89:2c:b1:88:
0c:13:74:26:0a:35:15:3c:15:34:7b:15:2c:1a:f3:b7:b2:dd:
51:ae:0a:a8:67:f6:36:41:1e:8a:fc:d5:ea:fe:7d:c8:08:37:
92:f8:4b:6e:82:95:7b:28:5b:40:84:07:f7:05:69:14:5b:3d:
6e:2b:e0:36:d1:c7:a0:82:7e:87:d7:4c:29:b0:4a:86:09:03:
ba:b7:bf:e9:d9:45:95:6a:89:cc:d2:11:09:c9:89:a4:ea:6e:
58:00:6e:ca:f5:6a:6f:6b:72:d7:5c:7f:2e:4e:f0:01:1a:2a:
7b:1c:74:c3:ed:2f:7a:a4:49:42:ea:d8:d6:2b:ba:33:1a:ed:
dc:bd:28:ea:c0:ab:05:5c:3b:c8:30:ee:06:a3:e4:75:ac:0b:
b4:4d:c6:fe:dd:69:ee:9d:c5:eb:f0:6e:dd:54:d5:8d:81:ab:
47:86:da:7c:f5:57:ba:b0:6c:d3:e6:92:d7:5e:32:c3:47:c4:
fa:f3:19:91:55:56:87:36:01:47:c9:c5:99:1c:45:b5:99:60:
a0:f9:77:9f:66:39:12:a3:2f:da:2e:05:f3:f9:4c:c8:fc:a6:
2e:33:a4:d9:37:ce:3c:56:8e:af:f4:76:57:9d:cc:78:f7:80:
79:df:52:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:15:01 2025 by rpki-client