Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
File: HhkRubtcij4eK4pRFl-KcaCSxo0.mft (raw, json)
Hash identifier: 9RONUl9cKBTpRjPsLvvCddZdLhOGB0d/6szzMoal4qA=
Subject key identifier: 87:50:1B:C0:8C:BE:04:2C:1C:14:88:A3:75:ED:75:E8:74:05:54:A3
Authority key identifier: 1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
Certificate issuer: /CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Certificate serial: 0196A1D25E5D2820DED59D311E78CD749D82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
Manifest number: 10DE
Signing time: Mon 05 May 2025 19:00:40 +0000
Manifest this update: Mon 05 May 2025 19:00:40 +0000
Manifest next update: Tue 06 May 2025 19:00:40 +0000
Files and hashes: 1: HhkRubtcij4eK4pRFl-KcaCSxo0.crl (hash: xXqpntTwfR+Cw/5O8FMfiMEbU+8uIIUnMo4llK1LnjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:d2:5e:5d:28:20:de:d5:9d:31:1e:78:cd:74:9d:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Validity
Not Before: May 5 19:00:40 2025 GMT
Not After : May 6 19:00:40 2025 GMT
Subject: CN=87501bc08cbe042c1c1488a375ed75e8740554a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:20:3e:5a:4f:de:0b:01:51:c6:76:cb:31:a4:
19:60:1c:a2:f5:c9:01:e8:cb:a2:aa:8a:06:53:2d:
dc:22:d0:b7:3f:a4:42:a8:4c:ac:fd:50:20:ea:cb:
8c:f6:73:fa:ab:77:0d:f5:fd:6a:ca:ad:20:0d:5b:
2e:64:70:25:4b:12:92:87:ff:57:cc:51:37:16:56:
d9:37:65:27:2f:cd:bc:25:14:8d:40:d3:b7:b5:b9:
ef:ba:0f:66:45:dd:85:64:7e:cb:f6:74:25:39:eb:
7b:ba:75:c5:67:28:fc:f5:11:e1:39:af:79:97:b2:
19:53:9a:c0:85:e8:c8:74:40:38:ae:a9:7e:94:a5:
d0:a4:3d:51:b8:fc:91:79:7c:f3:6b:2a:67:fe:67:
0c:07:6d:f0:75:84:a4:93:8e:3b:c5:02:f0:c2:09:
79:9a:c4:5c:bc:5c:d8:9a:cc:d6:5b:bb:af:13:00:
75:8e:e9:a2:0f:2f:8a:45:08:f6:7e:1d:a1:58:f1:
e2:9c:de:28:38:e3:89:6f:8b:fe:a3:4e:1d:8a:57:
a3:89:9e:e4:9f:b2:31:b3:4a:1d:d4:ea:35:99:85:
0c:e7:cb:40:f4:b3:f2:f3:8c:82:9c:89:8b:38:23:
f3:b7:f6:f5:df:e4:ab:ea:21:30:56:3f:26:71:34:
ff:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:50:1B:C0:8C:BE:04:2C:1C:14:88:A3:75:ED:75:E8:74:05:54:A3
X509v3 Authority Key Identifier:
keyid:1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:e6:68:7a:1f:3f:98:e0:16:3a:bc:ae:00:a8:3d:58:3d:18:
78:6f:6c:51:8c:9f:94:1d:d1:d8:5c:c3:52:65:1b:ee:d6:8a:
cf:61:bc:f2:b6:31:d8:4a:91:eb:b5:64:48:b4:0b:7e:78:1f:
db:c7:0e:4a:ed:d3:aa:08:b1:e8:4e:51:b9:3e:9d:cb:cc:d3:
36:e1:93:20:f7:c2:3b:60:ed:fa:04:e7:ed:62:22:86:b4:f4:
3f:db:94:34:61:5f:c6:b0:35:ba:74:e4:5d:b5:b3:49:b8:15:
d0:f6:49:a7:75:9b:6a:0c:6a:ed:6b:8c:76:94:75:c3:56:67:
25:40:b5:1c:c7:2e:5f:61:44:78:d9:b8:f2:b5:0d:49:7d:83:
4e:b6:dd:63:f9:05:a0:4f:f7:af:a2:8a:0c:a2:a6:fe:68:47:
f3:6e:01:02:83:1b:2c:ad:ef:d9:28:96:eb:de:a4:20:28:ca:
10:8c:8e:4f:e5:78:28:74:d7:95:e8:f3:70:26:ac:4c:e2:90:
f2:51:20:f7:d1:d1:d2:da:7e:1c:27:0b:32:d6:96:2d:35:e6:
4b:69:d6:99:0a:24:66:90:c1:f5:19:75:77:89:c9:e5:9d:12:
47:5c:c0:25:33:44:6a:ce:9b:00:35:51:8b:ba:c7:d8:d3:6b:
e8:aa:85:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 01:39:24 2025 by rpki-client