Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: WrSgi/154td62I5yCz75DQpwO/zhg1Do6hJu3RrLaqo=
Subject key identifier: 21:13:97:A2:AF:9F:1B:D0:C6:27:84:50:8A:DD:7F:3E:86:2A:6B:D6
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 0196AA30FFCB0F7A02C7F7BBF2658C7C2326
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 085C
Signing time: Wed 07 May 2025 10:00:59 +0000
Manifest this update: Wed 07 May 2025 10:00:59 +0000
Manifest next update: Thu 08 May 2025 10:00:59 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: GHGiEPQpMzWx/0hQ+aG0sJAM5bXb1TRiMLrIFaecRDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 10:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:30:ff:cb:0f:7a:02:c7:f7:bb:f2:65:8c:7c:23:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: May 7 10:00:59 2025 GMT
Not After : May 8 10:00:59 2025 GMT
Subject: CN=211397a2af9f1bd0c62784508add7f3e862a6bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:51:d8:a4:75:be:b4:80:20:19:a2:84:9b:16:
a3:a8:80:df:e1:85:fd:d9:bc:6a:3a:0d:22:84:19:
21:da:0a:97:64:5d:47:32:ea:48:6e:17:d8:d0:b5:
ba:9e:80:53:33:e4:87:90:88:e6:84:47:a6:0f:2b:
c1:58:21:e3:2a:6c:12:a8:32:6b:d8:6e:fd:fa:77:
e8:fa:a0:a4:8e:a3:4b:6b:52:4c:a4:50:33:74:88:
e9:57:43:8d:c8:2e:c7:9f:63:0d:18:8f:76:fc:4b:
01:f3:34:e0:a7:2e:b6:4d:17:1a:81:98:69:5c:d8:
66:3c:52:f6:90:2f:34:e4:7c:83:b1:8e:bc:72:46:
e3:86:fd:7b:17:15:80:25:04:d8:e4:2b:f0:93:3a:
75:d4:55:dd:64:96:19:78:5f:5f:1e:d5:88:46:78:
a4:d8:08:3f:a1:d0:09:c3:09:1b:85:20:b3:e7:74:
a9:45:6d:85:be:45:5d:53:78:b1:69:6d:31:b5:c9:
00:b4:fb:43:ac:c8:20:47:e1:33:79:a8:ed:6d:f3:
a4:a4:a1:ef:8f:68:f6:e0:4c:fa:1e:5d:ff:a5:78:
36:9d:cd:2a:48:79:02:3f:ff:f8:a0:99:8f:cc:c7:
60:76:c2:d4:58:8a:a3:cb:63:c3:77:17:95:b5:2e:
2f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:13:97:A2:AF:9F:1B:D0:C6:27:84:50:8A:DD:7F:3E:86:2A:6B:D6
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ec:af:2f:c5:51:ce:da:df:c9:53:10:29:5b:41:2d:0a:b3:
cb:11:58:59:12:4f:84:22:96:3a:bd:5f:85:53:5d:60:22:79:
11:fe:1d:fe:9e:75:5c:64:16:d0:69:1a:b5:4e:53:e2:e1:d6:
d8:a6:3c:d9:16:4d:cc:ef:ad:7b:8e:16:16:99:38:4f:57:6d:
28:b7:5b:a3:00:34:1e:ab:50:1b:b5:f1:6e:ca:e4:1f:36:3a:
e4:c9:d2:f7:ff:19:28:7f:ec:7d:43:22:e5:c9:b2:7d:29:45:
13:2b:18:6f:20:e8:b1:4a:b0:28:79:d2:e8:fd:60:14:a4:e5:
43:f1:af:bc:0a:e2:2c:18:eb:b2:b3:45:f3:24:75:09:e8:fb:
b9:fd:35:44:29:63:46:7b:25:9d:79:bf:a1:25:3b:5b:76:83:
d6:2a:fe:7a:66:e0:86:2f:b8:42:e0:f8:c4:b1:5d:15:0a:75:
c2:0d:83:e4:c0:34:39:4e:62:5b:b2:58:54:6f:69:fc:52:cf:
36:b5:7c:1f:c1:a5:25:20:6e:8d:d4:39:28:a9:e0:9c:55:1b:
17:fb:af:3b:4b:e5:97:6b:65:c3:5a:79:ba:90:5f:e2:0b:44:
92:df:50:6f:5d:1d:2f:0b:5b:df:3c:8c:d1:91:f6:60:69:72:
ee:2c:74:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 20:45:14 2025 by rpki-client