Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier: mwftfQhEmXiK31W3JAOr7XKH32hO2Cnveqo8oUi5u9Y=
Subject key identifier: 3B:ED:8C:E1:5A:90:FA:87:B4:9D:5D:76:03:8D:6F:1E:94:B3:48:9A
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial: 0196BF6F4888E4B974C050D50B8576DC5F87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number: 0FBD
Signing time: Sun 11 May 2025 13:01:03 +0000
Manifest this update: Sun 11 May 2025 13:01:03 +0000
Manifest next update: Mon 12 May 2025 13:01:03 +0000
Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: jc6wB4uF+2vtsyblh6lRWMncUn3nBuXwQEjHqaq/gYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:48:88:e4:b9:74:c0:50:d5:0b:85:76:dc:5f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Validity
Not Before: May 11 13:01:03 2025 GMT
Not After : May 12 13:01:03 2025 GMT
Subject: CN=3bed8ce15a90fa87b49d5d76038d6f1e94b3489a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:1d:f6:eb:f2:f3:b2:c6:63:62:45:7b:2a:
a8:02:a9:fb:8c:66:31:98:96:3e:fa:24:68:fa:0f:
18:bb:61:30:78:9e:39:3f:d5:1f:fc:41:1d:c2:c8:
b4:03:d9:08:27:19:96:c2:9a:f9:ba:98:27:32:a4:
93:a8:dc:b9:ac:cf:b6:a3:58:14:20:8f:f8:9f:4d:
6a:60:86:52:88:cf:d7:59:74:72:cf:0e:a3:4f:ae:
6c:f0:9b:89:f2:8c:30:16:20:12:67:1c:c8:81:a4:
f0:4e:a2:a4:9a:f1:c7:94:47:38:8c:be:8d:43:06:
87:f5:fd:14:29:86:b6:58:8f:1b:f5:67:66:9e:21:
ec:a7:85:f2:8e:b4:9d:00:e4:cb:bc:71:7e:67:00:
cb:60:a4:68:63:d0:ed:fa:33:be:3a:8e:cc:11:8f:
c2:9c:22:ff:c0:3f:a5:df:60:48:4f:15:14:28:54:
d7:6d:e8:09:e4:9e:93:be:5c:ca:9e:df:ea:d1:4f:
b6:0a:9f:c3:a9:3d:27:d6:71:81:d0:03:fd:48:37:
7b:ae:61:fe:60:a3:22:92:51:3a:ba:aa:57:ec:15:
df:dc:6a:08:d4:c7:dd:5f:9e:51:cb:06:48:38:2d:
b6:9c:de:06:68:cd:68:e2:1b:f8:0a:61:2d:84:28:
9d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:ED:8C:E1:5A:90:FA:87:B4:9D:5D:76:03:8D:6F:1E:94:B3:48:9A
X509v3 Authority Key Identifier:
keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:c3:19:b3:d0:2f:c2:e9:65:94:08:d9:10:70:09:4e:5d:e3:
5a:40:c4:1e:4d:20:58:d2:f6:83:9e:8f:93:ac:1d:9d:a9:a1:
c2:72:6f:2f:57:3d:76:7a:a1:c9:36:c9:19:9c:75:1b:cf:d9:
34:31:38:7b:e3:19:c6:38:c6:07:98:6d:9c:03:27:69:0c:11:
32:3e:d8:08:72:0f:48:f7:1a:a5:8b:8e:c7:e9:65:ee:15:67:
40:4e:59:59:cf:ac:fc:2c:6f:ef:e9:f6:51:07:e3:e3:d0:8e:
17:b7:2c:bb:b4:a1:18:a1:6e:3d:ae:cf:21:c2:18:1b:73:84:
0f:32:8d:ae:58:0e:61:d2:3b:57:3e:24:b4:37:45:aa:b2:28:
cb:d1:1c:f6:d0:dd:84:e7:41:f7:eb:7d:3b:de:df:ec:a4:5b:
98:cc:3a:c4:67:28:af:6c:cd:58:78:17:c4:18:af:76:f2:be:
1e:95:cc:35:04:d4:43:cb:68:0b:e4:43:cf:97:35:88:3e:7a:
d8:a8:41:d5:1f:4b:b9:29:7d:2b:dd:84:3b:c4:93:5f:78:d0:
27:d9:72:41:7a:db:13:1c:6c:39:d7:22:12:82:2a:5d:d1:84:
d3:4b:d8:87:78:a5:64:f0:1c:01:25:40:17:27:c5:cb:53:f7:
66:4b:cf:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:54:18 2025 by rpki-client