Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: VBCOhlt2tBJZOv7Gca1WWwRoEQahNBhSD4c3iGymyEA=
Subject key identifier: A9:E7:BD:FD:1C:96:34:77:47:27:9E:89:68:C6:58:41:42:F3:7F:60
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 0196C382A03606954E803CFF89B6BC07651E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0C1C
Signing time: Mon 12 May 2025 08:00:39 +0000
Manifest this update: Mon 12 May 2025 08:00:39 +0000
Manifest next update: Tue 13 May 2025 08:00:39 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: 21A5LB2MZOb0DRpAXabUI4C3IuCoX8dMs5f4mvHRIKg=)
2: ackszuiJCTUVf3NL6BGlMWZR6mU.roa (hash: eS/ev9znkjBG3HaRk+tKGqjX3/CUPsNsHqj4Rs2K9+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:a0:36:06:95:4e:80:3c:ff:89:b6:bc:07:65:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: May 12 08:00:39 2025 GMT
Not After : May 13 08:00:39 2025 GMT
Subject: CN=a9e7bdfd1c96347747279e8968c6584142f37f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:0b:b3:dc:c1:29:ce:f6:3b:c0:51:a9:ab:
d0:3d:b4:51:12:07:09:37:f2:96:8f:d5:52:7b:ed:
92:be:62:60:eb:74:16:04:de:37:38:0a:98:5f:1a:
b0:96:67:d9:41:6c:20:d9:c7:7b:c1:46:37:91:03:
ef:6c:19:ed:fc:4f:dc:0a:be:bb:ad:18:f0:0a:f7:
9a:08:8c:b4:6a:b2:ce:af:8b:51:02:c5:9d:4e:c3:
32:4b:16:00:b5:33:c3:d5:b6:c2:48:b8:13:54:7e:
dc:8a:84:68:71:45:4b:83:51:1b:03:84:db:b1:57:
a5:c4:b4:4e:97:75:b3:f5:48:71:f2:01:a6:3c:e3:
be:bc:2d:c3:af:95:43:63:ba:6d:2d:20:5d:73:af:
46:a3:59:59:2e:b4:95:b2:b0:13:f0:1a:f0:24:e1:
e3:e2:1d:27:1c:72:3e:20:03:f8:c2:85:e6:fd:fc:
55:93:e2:6c:3d:51:e3:07:d2:71:ce:7f:aa:f2:94:
03:34:da:17:8d:8e:65:76:36:2a:5c:fc:5e:fa:43:
5f:db:be:5b:02:ed:db:ce:e5:e5:f7:f9:92:10:93:
07:ef:b4:fb:5a:cc:3b:8b:5a:48:a5:dd:80:27:32:
8c:16:03:98:49:b9:22:c9:02:8a:40:c1:02:3a:20:
51:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E7:BD:FD:1C:96:34:77:47:27:9E:89:68:C6:58:41:42:F3:7F:60
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:fc:06:11:d9:2f:66:d1:a5:b9:11:5f:75:ef:fa:3c:47:29:
6e:b6:f9:5c:8f:f4:bc:95:ed:1c:89:8a:6d:1c:05:65:1e:9a:
84:b3:a6:1c:69:93:c3:a2:62:65:15:bc:fb:cb:d7:a2:0b:7d:
bd:60:59:eb:2d:c4:80:6d:5d:14:0e:99:d2:b2:ba:f6:5f:01:
51:ae:50:3c:fb:80:85:39:70:da:48:f2:28:c0:01:af:f9:69:
6e:27:0b:f7:e2:76:45:8b:c2:43:77:81:4b:2d:ce:44:55:73:
70:42:e1:2c:c7:59:90:e7:cb:41:c0:fd:56:76:6a:22:e6:e8:
4f:a2:d1:aa:05:32:69:d2:4e:04:02:00:65:25:9a:67:11:9d:
33:5a:5c:f2:1d:2c:21:e8:21:d1:9b:5a:74:78:ff:86:02:fa:
2a:07:6a:59:62:9e:f2:5f:4a:a4:60:eb:34:a7:ae:e2:d2:d2:
a8:38:f8:93:38:99:a6:18:30:42:96:2b:ea:b7:49:cb:7b:95:
b0:18:1d:85:bd:cf:9c:25:94:67:84:34:86:9d:95:b7:d4:87:
d0:e4:3d:51:3f:da:98:27:b7:82:72:5c:11:ae:56:a0:5f:97:
83:85:06:46:d8:63:6c:e9:c4:64:22:d8:d7:14:9e:92:bb:5d:
4f:36:f0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:08:48 2025 by rpki-client