Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
File: rHI58-_bN5H1vlVSmbXYFpfz0BI.mft (raw, json)
Hash identifier: JR3qNXtOce2CW2RkejkGFvQd3CngHK8Y/Nsi7eldd8I=
Subject key identifier: D3:49:9B:F0:6F:75:21:67:B8:6B:53:30:89:9A:DE:1D:1A:1B:8E:2C
Authority key identifier: AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12
Certificate issuer: /CN=ac7239f3efdb3791f5be555299b5d81697f3d012
Certificate serial: 0196CF4F7348B11BBAFC1B45549DF6E984B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
Manifest number: 10F9
Signing time: Wed 14 May 2025 15:00:12 +0000
Manifest this update: Wed 14 May 2025 15:00:12 +0000
Manifest next update: Thu 15 May 2025 15:00:12 +0000
Files and hashes: 1: rHI58-_bN5H1vlVSmbXYFpfz0BI.crl (hash: O9Wab+jStXu+99w8lZ8GT8YkQg260Z7AjlVbEtxLjz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 15:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:4f:73:48:b1:1b:ba:fc:1b:45:54:9d:f6:e9:84:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7239f3efdb3791f5be555299b5d81697f3d012
Validity
Not Before: May 14 15:00:12 2025 GMT
Not After : May 15 15:00:12 2025 GMT
Subject: CN=d3499bf06f752167b86b5330899ade1d1a1b8e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:47:8f:8a:b1:60:4c:26:e9:ac:1a:7e:53:
5c:94:b5:24:26:0f:b2:85:98:d3:4a:8b:99:c6:65:
73:6c:b2:91:84:1a:5c:38:a1:df:df:aa:a7:fb:9b:
6d:9e:5b:6e:01:52:00:2f:4f:a2:eb:fd:ff:c8:a4:
06:47:d0:15:b5:53:75:bc:45:8b:0a:3a:f5:ba:39:
93:ca:e8:2e:f0:61:3d:d8:60:fb:26:d5:c5:d6:aa:
25:66:be:50:eb:59:5f:36:62:ce:33:7c:17:ea:79:
e2:72:5c:a6:44:53:a2:62:73:a9:41:1d:ae:a0:da:
73:c9:77:30:e9:ff:24:24:c2:ec:c5:f3:4f:1c:3a:
7f:17:2a:7d:8c:8c:f9:de:d9:9e:b6:68:b6:a9:43:
fe:45:b4:55:65:9e:e3:6d:7b:4f:70:dd:7d:1f:a4:
17:d1:a6:66:cb:1c:02:1a:bf:61:11:5c:1a:f7:03:
76:1d:18:85:9d:d2:25:3f:37:4a:50:50:2c:61:af:
39:74:cb:91:4e:21:35:07:e0:2d:a3:cf:94:09:8b:
31:a5:3f:14:dd:e1:59:1f:cc:3d:df:24:21:f4:ea:
46:8f:bb:5a:87:0c:50:2e:49:21:15:9b:cf:07:45:
16:18:69:f0:c4:66:4c:f7:43:7d:26:35:bf:cd:91:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:49:9B:F0:6F:75:21:67:B8:6B:53:30:89:9A:DE:1D:1A:1B:8E:2C
X509v3 Authority Key Identifier:
keyid:AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:16:c6:72:70:2a:25:39:68:96:61:2c:65:42:69:1e:99:d0:
ed:63:7c:aa:50:f1:04:43:7a:e2:5e:55:d7:9f:de:ae:e0:fe:
19:b5:03:3d:86:76:57:83:72:1a:cc:f9:a1:0f:21:56:62:6b:
8f:48:c2:13:17:25:ce:a3:19:76:f1:df:20:aa:08:62:89:4f:
f8:30:72:5d:dc:c5:0b:f3:15:68:fa:02:58:af:64:19:44:07:
d7:12:15:3b:06:65:68:ec:fb:ed:cd:19:54:1d:ce:06:ee:76:
fc:2d:7e:9d:d2:e6:86:8f:2a:76:fb:9c:14:e4:d1:1c:64:0e:
b7:bc:12:c9:df:23:84:ca:5f:7e:e9:4a:c9:40:71:4e:0c:ef:
19:7d:43:0a:ea:ba:aa:88:fc:96:1d:f9:a3:4f:58:3f:1e:5a:
d6:03:c8:b9:7a:f7:77:82:6d:fe:fc:d5:65:45:73:01:65:bc:
12:9b:1f:8d:9b:a2:91:c0:89:a4:44:e6:09:1e:af:5f:45:45:
0e:64:a0:58:8e:7c:dc:8b:32:a9:d6:63:5a:4f:6b:af:c2:78:
87:3d:b1:bb:15:2e:b1:29:42:d0:2b:13:46:a1:17:3c:28:22:
05:f6:22:d9:f3:0f:b6:20:17:7a:82:55:9d:27:f8:d9:5b:40:
d1:62:ad:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 01:05:29 2025 by rpki-client