Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier: TfEKyw7nmLgQ1Xp3DbbjlIRrhYX5MahmRdH8I5cGq5I=
Subject key identifier: 2D:54:B3:6E:8E:34:23:9D:D0:52:3E:85:AF:05:43:25:3C:E2:4D:57
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial: 0197B6A192D928DE89A37AB3A1A930B8C385
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number: 08E7
Signing time: Sat 28 Jun 2025 13:02:11 +0000
Manifest this update: Sat 28 Jun 2025 13:02:11 +0000
Manifest next update: Sun 29 Jun 2025 13:02:11 +0000
Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: Qk00kWQg1vKWhroWc23D0gL1CKqzyz5scSo2tBwYE00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:92:d9:28:de:89:a3:7a:b3:a1:a9:30:b8:c3:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Validity
Not Before: Jun 28 13:02:11 2025 GMT
Not After : Jun 29 13:02:11 2025 GMT
Subject: CN=2d54b36e8e34239dd0523e85af0543253ce24d57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9e:d1:fa:7c:44:08:85:85:41:28:23:a9:16:
13:af:7b:04:ca:ef:0f:92:f4:51:87:b6:6f:f4:b5:
c4:b5:d5:26:3b:8a:c3:33:9c:a2:2c:cd:e1:f8:6b:
5f:2f:b5:9e:6c:d8:30:9e:a1:30:8c:3b:84:ee:12:
d9:b1:fb:ae:c4:4a:12:d7:7d:6c:fe:49:32:2d:68:
86:c1:41:67:e9:51:c7:19:9a:6d:5b:b2:62:6a:9e:
89:68:94:c8:01:70:e9:32:f3:6f:10:3c:61:10:a8:
7c:e4:fc:00:89:cb:4d:b7:6b:7b:d0:98:4f:25:53:
59:a6:ae:5f:29:61:ce:f4:db:1a:10:2d:a1:9c:df:
a1:42:0c:18:1c:47:de:5d:ab:fc:49:4c:c2:19:93:
ae:ca:4b:20:ba:c8:17:de:3e:35:a9:87:35:be:3a:
c1:e1:71:fe:47:64:51:d2:d2:39:4a:4a:a5:ef:54:
81:bb:40:80:cb:1b:49:80:33:c7:e7:0b:10:49:03:
e0:1f:1b:e7:d1:cb:5b:da:74:98:d3:96:4f:a7:df:
6b:42:d0:4b:f2:50:bb:3b:f9:46:d6:38:af:d0:4a:
30:bc:10:37:d7:c3:08:c4:0f:87:46:29:15:df:e0:
ab:6a:38:4d:23:0f:85:ab:5d:af:e9:e1:0a:1d:ea:
6a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:54:B3:6E:8E:34:23:9D:D0:52:3E:85:AF:05:43:25:3C:E2:4D:57
X509v3 Authority Key Identifier:
keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:d6:d0:aa:21:82:00:e3:aa:05:26:3d:55:6d:ed:2d:fb:47:
89:20:28:14:63:d2:97:79:5b:bf:fd:6c:6f:42:e1:88:05:9e:
bd:78:e5:91:32:58:a6:47:0c:8f:27:80:4a:31:37:d3:ce:b0:
ea:8a:66:83:06:b6:b8:a9:c0:00:bf:90:41:3a:e8:70:be:95:
47:d2:d0:c2:12:d2:9a:86:eb:2c:85:a5:60:22:a7:dc:f0:1c:
23:85:bd:76:26:40:f2:97:27:91:f8:53:56:25:02:c5:cc:34:
3b:8a:3a:c5:25:62:1f:78:26:2a:21:09:17:32:e7:11:08:80:
cf:15:a5:77:75:ff:09:fe:f6:5b:db:78:6d:30:c5:7d:2a:91:
69:49:fa:ab:6d:d6:35:74:f0:3c:2d:2d:d2:d2:3c:b6:e9:b5:
43:db:5f:5f:65:d2:b8:48:2b:f9:da:9f:16:79:63:fa:10:e6:
49:67:66:21:e2:d4:56:e0:6c:b9:b5:35:fa:f3:94:2a:68:b5:
07:75:28:00:99:a1:c7:48:c8:33:38:da:54:f8:51:bc:72:86:
bb:15:5b:c9:d5:35:3c:4f:8b:9a:7d:bf:58:d6:8e:64:4a:1d:
4f:4c:07:27:d6:6e:2b:c3:70:a0:41:58:3b:55:1e:81:61:2c:
7b:01:e6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:24 2025 by rpki-client