Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: ZQpNxs1jHDOItdzzXagWF8uM9HDRUczjxiYVqNiBEHY=
Subject key identifier: 11:85:52:9A:28:B4:D0:9C:66:68:88:39:98:C1:C3:3D:5B:26:3B:95
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 0196BF6F4BC03D509A4103E9F3972B3A0F66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 084D
Signing time: Sun 11 May 2025 13:01:04 +0000
Manifest this update: Sun 11 May 2025 13:01:04 +0000
Manifest next update: Mon 12 May 2025 13:01:04 +0000
Files and hashes: 1: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: MeBEMTdlDYzmX9U8IvrBOFj9WXkOOBBAggHEQQNAu2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:4b:c0:3d:50:9a:41:03:e9:f3:97:2b:3a:0f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: May 11 13:01:04 2025 GMT
Not After : May 12 13:01:04 2025 GMT
Subject: CN=1185529a28b4d09c6668883998c1c33d5b263b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:93:b9:7a:2f:c5:f7:c1:dd:a5:5e:76:ee:b3:
8c:37:c9:3b:86:64:87:c5:02:ec:06:84:3c:61:e9:
2a:45:35:58:b6:2c:a7:45:72:30:0d:9a:6d:5a:f0:
f5:68:d3:f6:05:ef:89:6e:51:6a:43:d8:a2:00:1c:
f2:e0:51:92:06:79:93:9f:ff:f5:24:f8:1b:4c:fe:
51:e6:66:c3:a7:5f:cf:d3:d4:b2:b1:c6:eb:1e:db:
14:27:98:42:b0:ad:2f:7c:8d:6e:5c:e9:d3:03:d2:
fb:78:84:3c:6a:e4:d3:d0:d3:11:ca:12:00:19:8d:
a6:65:81:ee:8a:7c:be:3f:a9:ed:e9:ed:99:a2:51:
9f:47:1d:44:13:ef:3c:86:2f:50:c2:06:b5:3d:3e:
98:9c:24:5e:16:f0:34:3c:b7:bd:a5:a8:ca:87:17:
d8:7a:cc:d1:4b:22:0e:3d:4e:6e:96:f1:57:f5:e7:
b7:70:f0:13:29:37:78:be:aa:c7:f0:24:d9:b7:8e:
80:72:d6:63:ee:df:8f:58:81:10:ed:e5:ea:58:f2:
88:2b:60:28:a7:d8:36:6c:a7:0c:65:44:86:b6:dc:
87:e4:67:86:a6:05:ef:d3:02:09:af:eb:46:e6:33:
8c:3a:06:7f:ac:b9:2b:44:64:69:75:78:a4:18:ca:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:85:52:9A:28:B4:D0:9C:66:68:88:39:98:C1:C3:3D:5B:26:3B:95
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:89:06:17:4b:e8:e4:53:4d:4d:2d:05:6c:f1:8d:f4:81:96:
7d:c9:1a:b9:00:b3:03:54:2e:20:a0:2e:cb:b5:95:26:c7:2b:
e9:ac:f1:8c:5d:18:f5:66:28:1e:6b:18:fd:ea:14:a0:84:72:
9b:5f:42:fe:99:34:f6:55:64:76:e9:1e:8c:0f:28:45:7e:63:
83:20:4c:9e:fc:f0:58:31:7d:69:d7:6e:37:af:09:01:b0:d4:
5c:e0:fb:86:c5:6f:6d:ca:78:fd:32:27:d2:82:25:79:ea:da:
4c:93:0d:f5:0e:65:19:8d:5e:37:a9:e9:46:54:da:02:94:59:
23:72:67:f9:03:d8:19:74:cc:9e:95:af:86:1e:8d:57:0f:da:
88:8b:dc:b3:8c:b4:af:bf:1c:28:1e:7e:ea:3c:28:90:e8:09:
24:5f:f8:b2:ae:6e:21:59:18:24:b1:a7:13:25:85:dc:e2:7d:
53:6b:53:f1:5a:d3:d2:4f:b3:2f:c9:90:f6:e5:dd:28:07:48:
ef:2e:31:31:2a:5c:ba:e4:27:92:c7:15:75:ba:e9:5c:36:cd:
9e:aa:5d:2d:cc:ba:02:be:9d:aa:62:d1:95:9f:2b:4e:5f:23:
f7:97:22:32:70:96:d0:4f:06:98:ff:65:40:65:52:93:de:4f:
71:e7:94:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:43:23 2025 by rpki-client