Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
File: hGy8NY5qqP7tbgMmoECJt-XyqYk.mft (raw, json)
Hash identifier: xcgJX6+8Y6DjliU+KYDyErA+jKmQd2GZ/Jm3kZX4/Kc=
Subject key identifier: B3:CF:4F:B0:36:5B:CD:86:28:43:2D:B9:19:C3:C3:40:EA:2E:01:F8
Authority key identifier: 84:6C:BC:35:8E:6A:A8:FE:ED:6E:03:26:A0:40:89:B7:E5:F2:A9:89
Certificate issuer: /CN=846cbc358e6aa8feed6e0326a04089b7e5f2a989
Certificate serial: 0196A842E204B7E68F8C79C681E26BCD51F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
Manifest number: 098A
Signing time: Wed 07 May 2025 01:01:17 +0000
Manifest this update: Wed 07 May 2025 01:01:17 +0000
Manifest next update: Thu 08 May 2025 01:01:17 +0000
Files and hashes: 1: hGy8NY5qqP7tbgMmoECJt-XyqYk.crl (hash: E96/qXCnCwwgkEQJa3B/RA0Xm/mKuFd10uepfDisrug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 01:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:42:e2:04:b7:e6:8f:8c:79:c6:81:e2:6b:cd:51:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846cbc358e6aa8feed6e0326a04089b7e5f2a989
Validity
Not Before: May 7 01:01:17 2025 GMT
Not After : May 8 01:01:17 2025 GMT
Subject: CN=b3cf4fb0365bcd8628432db919c3c340ea2e01f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:88:a5:e0:9f:a5:05:7e:17:95:5d:ed:e2:
ea:ea:f6:37:9e:ba:9a:ee:14:bd:b6:52:60:40:9f:
25:2e:55:85:a7:5f:07:61:54:63:18:e0:26:82:56:
cb:84:7e:8b:d4:6b:3f:48:d1:8c:5b:36:3e:78:2b:
24:ea:8d:31:4c:d8:53:aa:c7:4d:9c:f8:c5:a5:9a:
6a:24:cd:32:72:7c:77:3d:f4:d7:af:16:ac:ea:27:
9a:f9:c5:ef:01:9b:f8:d8:08:9f:ea:3a:d3:72:5e:
aa:89:ab:6e:41:42:b3:10:57:09:04:35:f2:6b:ac:
5e:2f:02:4e:18:22:d0:12:c0:45:65:60:9e:56:6d:
cc:de:b9:e2:5a:8f:da:19:0b:25:e0:9a:5a:56:bc:
a9:c9:c6:1a:64:3d:2d:91:b1:3e:c4:b7:ec:e9:d4:
11:57:c8:59:a5:a6:81:ca:97:77:3c:c9:2e:1b:e3:
aa:f8:6c:30:17:f7:c8:97:0f:8e:54:b2:da:56:c6:
e5:27:e2:ae:e6:67:7d:d0:22:ea:10:e3:e8:52:a9:
d1:0a:3f:f4:dd:f8:d7:b4:40:5c:3a:e8:cc:63:c8:
43:31:ec:f3:cd:88:4a:68:d0:65:14:05:8a:c4:e4:
98:bb:08:5d:a2:6b:0c:99:3d:5a:48:d1:94:92:3e:
1a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CF:4F:B0:36:5B:CD:86:28:43:2D:B9:19:C3:C3:40:EA:2E:01:F8
X509v3 Authority Key Identifier:
keyid:84:6C:BC:35:8E:6A:A8:FE:ED:6E:03:26:A0:40:89:B7:E5:F2:A9:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGy8NY5qqP7tbgMmoECJt-XyqYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/5f3d45-00d0-455a-acc8-3f7d81baf7b7/1/hGy8NY5qqP7tbgMmoECJt-XyqYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:37:27:58:2b:eb:a7:5f:e4:4a:37:6b:ec:55:50:55:17:2f:
ea:5e:94:be:c8:ad:b0:0a:7d:19:0d:6d:79:18:37:b5:54:92:
17:79:74:2f:54:f2:8f:da:97:7b:f4:91:53:0a:7d:60:19:19:
1c:8c:fc:89:b0:81:0b:e2:5e:06:2f:43:4a:22:6e:11:0e:47:
69:e4:47:64:9d:3c:bb:d3:d7:75:09:ca:23:89:24:a0:bd:5c:
79:ae:46:46:e6:36:4f:30:8f:a4:6a:0b:d5:bc:20:7c:68:fc:
43:7c:68:f2:e3:b8:ce:ed:f1:75:89:c2:09:25:ff:f5:f3:f9:
13:7e:ba:75:1d:35:16:2a:d0:95:71:80:a3:41:92:e7:59:15:
22:88:dc:ac:6e:cd:ef:7d:fe:4e:77:8c:30:a5:72:48:67:a3:
b5:0c:db:6e:f0:a4:0c:37:8d:50:e1:7b:d0:b5:98:68:d0:8b:
75:ac:b7:b7:bc:cb:5f:b9:ef:87:00:7b:61:17:41:ef:71:d9:
1e:c2:99:3a:55:34:a4:ba:a0:49:f8:1b:58:26:e0:4b:77:08:
b1:64:15:73:5b:9a:9d:b0:0b:7d:5f:6d:51:63:65:37:61:7e:
4d:23:22:d1:f0:64:1e:35:e1:14:ac:10:06:cb:1e:0d:35:12:
5e:4c:2f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:39:25 2025 by rpki-client