Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: klTQ6SQjS3cBU8DzcU2GCZjdyWCen03aCUHOCuELrNU=
Subject key identifier: 86:E2:AC:60:73:6C:8D:2A:BC:F5:90:14:ED:72:DD:B9:D6:FD:3A:93
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 0196C728C11A8529BA9F393F87ECFAF2902C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 011A
Signing time: Tue 13 May 2025 01:00:58 +0000
Manifest this update: Tue 13 May 2025 01:00:58 +0000
Manifest next update: Wed 14 May 2025 01:00:58 +0000
Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: 9XmSLAoNQy/AIWDeJZIaZgY+IxPIakkN7yVW0SBddcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 01:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:c1:1a:85:29:ba:9f:39:3f:87:ec:fa:f2:90:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: May 13 01:00:58 2025 GMT
Not After : May 14 01:00:58 2025 GMT
Subject: CN=86e2ac60736c8d2abcf59014ed72ddb9d6fd3a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:56:40:dc:1a:76:30:3e:1b:d5:85:53:e8:71:
37:13:8c:70:58:74:2c:7f:13:d3:f6:7a:37:9b:34:
3c:97:0d:7a:51:83:c2:0a:97:d6:be:33:36:1a:fd:
48:26:4c:5e:d4:b1:26:cf:15:1b:0f:fc:c5:bd:74:
f1:94:3f:4d:8d:3e:2e:08:25:81:db:17:c2:18:36:
6d:1a:82:52:d4:e0:e1:b4:06:c8:4d:bd:a9:3b:9a:
f5:08:4a:25:47:10:11:bb:8d:77:90:0c:c9:7d:c0:
fc:c8:36:2c:a5:8a:44:16:9b:aa:0b:4f:2e:eb:e4:
a8:e2:0d:91:5b:44:f0:25:9f:73:06:4f:0d:32:9d:
66:e9:65:a5:1b:36:87:de:b3:4f:e5:9f:8b:79:a6:
71:e9:e3:0a:50:08:83:70:b7:2a:e8:47:29:33:d8:
11:2f:b5:8b:ac:be:33:a8:de:30:41:6c:3a:28:3c:
57:be:df:37:99:86:8a:6d:21:cd:48:04:ca:24:e6:
01:08:d0:73:83:5c:6d:76:e8:e3:0c:c4:90:55:c3:
d5:fa:17:58:c2:e0:4d:8f:a0:1c:59:30:fc:e6:5d:
0b:5d:6c:1b:07:4c:be:87:33:f1:f2:15:f2:c8:dc:
d2:7c:13:a5:52:21:63:c8:1c:ea:5c:c4:c3:05:b7:
55:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E2:AC:60:73:6C:8D:2A:BC:F5:90:14:ED:72:DD:B9:D6:FD:3A:93
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:c3:39:b4:fd:08:32:bc:a4:54:ac:1e:31:4e:be:2d:a1:bd:
c5:53:50:a4:e5:4f:4a:14:23:67:27:b1:fa:7f:61:9b:34:06:
f7:91:af:f8:e7:97:08:f9:f1:ab:f0:d7:bd:8c:fb:c4:b2:c0:
c7:f1:69:71:75:56:11:b6:88:49:57:9f:35:25:dc:64:07:e5:
87:47:7e:6c:37:e4:8d:42:0f:87:26:c6:c7:95:40:9c:06:b1:
c8:64:c0:c8:c1:20:ba:b2:00:71:c4:7e:67:0e:4b:64:c6:21:
be:6c:0b:1c:31:cd:d1:35:f5:aa:36:28:bd:34:ae:e8:d5:d8:
cd:9b:3d:67:bb:0f:79:75:a3:47:06:9c:90:8b:72:60:0e:80:
3b:6f:6a:71:88:0c:69:ee:06:37:29:b8:a7:e1:e5:95:a0:cc:
76:99:72:5b:4e:e9:56:1c:cb:a9:ea:33:ac:83:3d:98:06:2e:
7a:49:c9:5c:a4:f5:56:24:ea:ed:20:04:cf:b4:71:dd:7d:f4:
82:95:ca:1a:0b:a9:24:47:df:3e:22:1f:37:73:ce:85:37:ba:
a2:6d:23:0d:a9:15:b4:fe:dc:48:1b:ca:48:f2:c8:1a:29:41:
ba:34:c3:a0:d5:aa:8f:74:cf:a7:4b:e2:75:ce:02:fb:bf:79:
61:b4:81:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 11:47:09 2025 by rpki-client