Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
File: hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft (raw, json)
Hash identifier: J9yC5BJit5Cl8cD+pCjjzlCLLMnXNkKs9DILQoX0mYg=
Subject key identifier: 5B:07:35:0A:3A:A9:D9:2A:46:54:FC:9D:98:E2:D9:45:86:5A:32:2A
Authority key identifier: 86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
Certificate issuer: /CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Certificate serial: 01969C7543A4CF10CE0CB5B50C2A07B19CED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
Manifest number: 0913
Signing time: Sun 04 May 2025 18:00:52 +0000
Manifest this update: Sun 04 May 2025 18:00:52 +0000
Manifest next update: Mon 05 May 2025 18:00:52 +0000
Files and hashes: 1: hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl (hash: WBJR1PLhCV0zRz6xKRKRHUGlDPkSX+egnLppNI+Mopc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 18:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:75:43:a4:cf:10:ce:0c:b5:b5:0c:2a:07:b1:9c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Validity
Not Before: May 4 18:00:52 2025 GMT
Not After : May 5 18:00:52 2025 GMT
Subject: CN=5b07350a3aa9d92a4654fc9d98e2d945865a322a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:83:4e:f5:47:02:c1:54:55:89:4a:98:7b:90:
8c:44:ec:0f:2d:1a:cd:6d:44:44:b3:62:4f:90:61:
c9:03:24:55:64:85:9f:1c:c6:2c:3b:af:f7:52:2a:
91:25:b8:80:76:6f:2c:14:0b:82:a1:04:9e:2b:36:
b4:c8:53:86:17:60:99:17:86:7a:07:4f:4d:44:bc:
8e:34:52:74:12:cd:74:63:5e:f9:98:ac:50:b0:e9:
2e:29:82:1a:15:8a:29:af:05:fb:3f:91:d8:b2:f9:
63:e5:21:58:83:c2:1f:45:e5:c3:eb:e4:4c:aa:24:
2e:69:b2:2d:89:3b:c1:23:64:db:53:1f:53:44:ea:
d0:a7:54:8f:0d:02:0e:9f:0b:27:ee:1f:0a:f1:47:
e0:33:7a:f0:ea:08:8e:a5:8e:96:48:10:80:18:71:
34:1a:a8:76:3a:64:05:33:98:5d:1c:be:ca:b2:2d:
c8:9b:2d:78:d0:e5:9f:7b:e4:a6:47:11:ed:ca:3f:
ae:e5:20:e9:5d:b0:c6:dc:fc:a3:8c:4f:23:ec:b7:
c8:ca:5b:32:ed:90:2e:c8:73:f6:0c:87:06:42:26:
b7:6e:08:7b:ca:3d:3f:24:57:8a:ed:33:76:70:2d:
ef:f7:cf:0c:c1:ca:53:ce:28:cb:fa:ba:72:73:3b:
ad:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:07:35:0A:3A:A9:D9:2A:46:54:FC:9D:98:E2:D9:45:86:5A:32:2A
X509v3 Authority Key Identifier:
keyid:86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:02:d6:c9:a8:d1:50:ec:2e:6f:1f:16:08:7a:8f:fd:88:83:
73:33:b3:4f:62:31:48:8f:6d:45:09:7d:55:53:68:3e:ab:76:
5b:00:78:70:24:75:98:5c:17:4d:70:2a:56:b3:78:73:c6:69:
db:29:45:16:66:1e:59:d3:88:9b:b4:25:1b:43:5a:d3:ac:06:
a0:4a:a8:21:09:71:49:49:24:7e:0c:b9:7b:6c:17:af:c4:e4:
f2:f9:27:8c:2c:e7:e1:ff:fe:f4:29:16:bd:8c:f9:06:03:13:
64:c8:f1:09:54:b1:d4:93:f7:31:44:30:f2:54:02:95:b2:d6:
36:81:4c:a0:a2:7e:70:7b:39:60:be:af:0f:52:4a:7b:b0:6b:
b4:ca:33:df:b2:af:5a:74:f3:3e:b8:b1:01:05:3d:cf:2a:8b:
f3:fc:fa:ee:59:1f:06:ee:79:78:fc:46:bc:d2:f5:98:fb:8f:
ba:cc:18:5c:ff:68:a0:a9:17:02:49:a4:e5:a3:44:5a:46:c3:
66:5a:99:8b:8c:d4:7a:3a:09:6f:c5:4d:f6:17:89:54:08:15:
f3:5a:d7:bc:ba:e0:df:6b:3e:2e:b4:7a:a2:f1:e8:f2:73:c6:
69:a8:ac:cd:86:85:62:63:87:aa:b6:1c:cf:dd:77:02:1c:6b:
b7:53:8b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 03:53:37 2025 by rpki-client