Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
File: Hn19JBnxEYqsXJktKt_2l7A-mns.mft (raw, json)
Hash identifier: 62bpZBidYS5EvDRd1EqrCRdB+9kdbHl01YjuhNX9xQM=
Subject key identifier: 3B:3B:41:6F:05:E4:8D:13:59:7B:36:85:48:09:C1:BD:0A:E4:7A:2B
Authority key identifier: 1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B
Certificate issuer: /CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b
Certificate serial: 0197B5FBCE4136D3A7E53B8813B7ABFDF97B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
Manifest number: 078D
Signing time: Sat 28 Jun 2025 10:01:07 +0000
Manifest this update: Sat 28 Jun 2025 10:01:07 +0000
Manifest next update: Sun 29 Jun 2025 10:01:07 +0000
Files and hashes: 1: Hn19JBnxEYqsXJktKt_2l7A-mns.crl (hash: cKEYIeKOw72xEa/+KfkbGWSbuLspZAVlZkrR+Txae50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:ce:41:36:d3:a7:e5:3b:88:13:b7:ab:fd:f9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b
Validity
Not Before: Jun 28 10:01:07 2025 GMT
Not After : Jun 29 10:01:07 2025 GMT
Subject: CN=3b3b416f05e48d13597b36854809c1bd0ae47a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:22:be:32:5c:88:e5:1a:64:41:2c:99:44:75:
1c:7b:62:c9:4b:0d:39:67:60:fe:5d:50:8c:45:f2:
ac:01:ac:b3:04:b8:4e:37:34:a8:73:5d:09:6d:c9:
a3:40:fd:8d:8e:2c:80:11:91:47:74:00:ab:b3:b8:
ea:47:cc:88:92:1f:e0:e7:f7:75:7c:f0:5c:2a:2b:
88:74:96:a4:0e:d3:13:f0:a6:ae:0b:cc:7e:ce:20:
2c:67:ab:b9:12:ce:c2:d9:82:4a:a1:52:4c:35:c7:
b1:ac:fc:4c:99:4d:37:cb:7a:cc:10:57:f1:94:9d:
bb:f5:5b:b4:17:4a:e0:43:15:28:65:53:51:70:97:
9d:c5:7b:cb:96:8f:b1:9e:75:f5:71:4b:bd:a4:5e:
af:92:46:d0:fa:6d:5a:bd:64:ca:55:9a:69:44:7c:
cf:36:9e:03:25:9b:fd:e8:34:34:02:28:e9:06:5a:
51:b5:95:78:f9:80:48:aa:f4:90:22:4e:ab:f1:2a:
09:70:c1:58:01:2e:b6:40:c1:b4:ef:6b:61:04:98:
c2:d5:30:01:66:fc:a4:2d:0a:66:6f:05:d5:6e:3f:
3b:65:17:b0:4b:7c:98:97:ed:fc:2c:11:02:61:92:
aa:f3:cb:e6:84:93:bd:bb:6f:9e:a2:09:f3:3e:0e:
03:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3B:41:6F:05:E4:8D:13:59:7B:36:85:48:09:C1:BD:0A:E4:7A:2B
X509v3 Authority Key Identifier:
keyid:1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:50:17:c8:c9:ba:ae:c0:1c:eb:c3:42:9b:11:ea:ef:04:31:
90:4f:2a:17:d0:fb:c1:91:4a:1a:d2:83:dc:83:54:db:e6:7e:
bd:24:c6:cd:ea:1b:17:ee:b2:6f:e1:5c:96:ed:da:e8:c3:b2:
f5:48:b7:3e:80:94:5d:52:bf:a2:f4:dd:9c:c2:50:f4:02:57:
6e:18:c7:04:fc:17:22:34:b1:53:6b:cb:93:28:16:bb:41:bf:
f4:69:d5:df:a1:9d:82:99:2b:64:3c:31:c6:85:3c:fb:ad:d4:
d3:c5:a2:41:3b:2b:ea:44:ec:dc:ce:84:39:43:aa:87:a9:82:
0a:87:89:49:6a:d8:a8:d1:8d:2a:fb:7c:6a:78:ce:1d:b2:51:
b6:a2:b7:d1:7e:03:09:3c:19:25:ee:2d:14:b5:0f:d9:1f:38:
39:78:9f:17:cc:f9:8a:ac:bb:73:a7:8b:3d:8f:10:57:80:21:
b5:0d:fd:72:32:a2:2e:dc:ee:c7:b2:3f:f7:f7:9b:fc:97:26:
c5:5b:9d:c7:fa:aa:ed:f4:8e:e8:48:e9:9b:33:62:b2:bb:4c:
85:2c:a9:0b:43:6b:18:3c:17:b3:4a:52:fc:94:1c:c3:3f:2b:
d8:d1:fa:d2:41:42:1e:2f:8b:4b:b3:54:cd:76:2a:92:34:53:
9a:a5:b0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:06:39 2025 by rpki-client