Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft
File: hyDPLDSRRvabop66wMiCKIEcovE.mft (raw, json)
Hash identifier: okXZElNpknCtecdHixA0J5HZ/SyrkbYKkD6hZv00KMg=
Subject key identifier: BD:92:F4:2A:3A:5C:9D:E8:61:8F:B2:F9:FD:5E:53:E2:4C:38:21:BA
Authority key identifier: 87:20:CF:2C:34:91:46:F6:9B:A2:9E:BA:C0:C8:82:28:81:1C:A2:F1
Certificate issuer: /CN=8720cf2c349146f69ba29ebac0c88228811ca2f1
Certificate serial: 0196D0D10A9DBF10EBAFAFB9CC2B10E96CA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyDPLDSRRvabop66wMiCKIEcovE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft
Manifest number: 090A
Signing time: Wed 14 May 2025 22:01:22 +0000
Manifest this update: Wed 14 May 2025 22:01:22 +0000
Manifest next update: Thu 15 May 2025 22:01:22 +0000
Files and hashes: 1: hyDPLDSRRvabop66wMiCKIEcovE.crl (hash: cuxP7dspiuL1GIMVhMSWAi7UhYbNXdnhmjCbsKzvPas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyDPLDSRRvabop66wMiCKIEcovE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 17:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:d1:0a:9d:bf:10:eb:af:af:b9:cc:2b:10:e9:6c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8720cf2c349146f69ba29ebac0c88228811ca2f1
Validity
Not Before: May 14 22:01:22 2025 GMT
Not After : May 15 22:01:22 2025 GMT
Subject: CN=bd92f42a3a5c9de8618fb2f9fd5e53e24c3821ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:00:88:48:0e:84:8e:7d:b2:53:eb:56:50:2b:
c8:a3:8f:84:1d:df:5d:85:40:19:61:ad:ee:8f:d6:
a3:d6:1c:14:50:96:c8:3f:50:65:d5:d2:e8:af:61:
85:7d:c4:65:17:95:85:3c:aa:d4:5b:26:02:87:ed:
f3:41:c0:94:f4:c1:10:f0:9b:f9:6f:c9:16:f2:da:
64:cb:53:df:ce:cd:7e:b1:68:c3:30:81:b3:36:83:
ac:34:01:fe:4c:1e:da:ab:f3:f7:6a:88:c8:e0:c5:
49:0f:6e:75:0b:8c:3e:e2:56:3f:db:bb:60:d9:7e:
03:24:75:ac:44:48:c9:03:40:83:d9:ab:1b:2a:ad:
69:8a:c0:6c:0f:a1:7f:6d:cb:14:f7:bb:85:97:a3:
44:5b:a3:f1:a2:f5:3f:c2:a5:d4:99:8c:ce:b7:b4:
29:6f:70:15:ca:9e:cf:13:53:3d:a1:22:8a:22:5a:
fc:c3:47:20:11:bd:4b:18:6d:14:d1:88:b9:22:de:
43:18:39:fe:57:66:8e:32:75:72:e5:9d:9d:0f:24:
be:24:53:46:29:7d:d7:f6:cb:ac:73:84:bc:e9:44:
d6:31:4d:32:10:c6:52:4c:18:fd:89:65:26:5a:68:
f4:fb:d5:99:9f:9f:d0:e8:90:99:19:1e:7d:4a:7c:
98:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:92:F4:2A:3A:5C:9D:E8:61:8F:B2:F9:FD:5E:53:E2:4C:38:21:BA
X509v3 Authority Key Identifier:
keyid:87:20:CF:2C:34:91:46:F6:9B:A2:9E:BA:C0:C8:82:28:81:1C:A2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyDPLDSRRvabop66wMiCKIEcovE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:33:10:6e:7b:fe:96:d6:06:bf:51:13:de:c1:25:3b:a7:ab:
45:81:95:3e:2e:4c:c8:6e:5c:20:fc:10:a5:1d:fa:f7:15:ea:
bf:01:45:f2:37:7b:1f:69:6e:f2:de:c8:28:16:cc:d4:60:c4:
7d:4b:34:8f:06:df:66:8e:1d:7a:dc:17:ef:55:ea:f3:ed:bb:
77:a2:24:93:e1:00:6e:78:95:63:83:f0:40:6c:65:e8:d5:52:
e9:5a:b6:b8:17:ab:55:e5:c0:5c:20:e5:cf:00:4b:c9:94:3a:
c1:37:85:07:33:71:61:33:6f:bf:27:da:32:95:53:ba:07:a5:
c8:9a:a6:cf:d7:bd:1e:10:af:74:3c:d3:01:17:0f:7d:4e:26:
a8:83:ba:96:3f:15:11:13:00:71:85:29:f3:d2:0f:e5:88:11:
d4:95:bc:bc:d7:22:5e:e2:88:fb:45:85:3b:cd:fa:a3:1e:77:
d9:08:58:51:0b:59:4b:62:f9:f2:e2:d5:a9:1c:56:b8:d1:52:
d6:c4:a4:76:ca:6c:45:1c:59:3e:1f:ed:2c:9d:0c:c4:13:3e:
04:74:27:a5:77:55:61:af:46:c4:71:64:72:54:3c:14:8b:ca:
e5:3f:ad:66:a0:fc:1b:79:e1:97:fc:af:c2:7a:a1:0c:29:be:
f3:f2:da:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbQ0QqdvxDrr6+5zCsQ6WykMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjBjZjJjMzQ5MTQ2ZjY5YmEyOWViYWMwYzg4MjI4ODEx
Y2EyZjEwHhcNMjUwNTE0MjIwMTIyWhcNMjUwNTE1MjIwMTIyWjAzMTEwLwYDVQQD
EyhiZDkyZjQyYTNhNWM5ZGU4NjE4ZmIyZjlmZDVlNTNlMjRjMzgyMWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkACISA6Ejn2yU+tWUCvIo4+EHd9d
hUAZYa3uj9aj1hwUUJbIP1Bl1dLor2GFfcRlF5WFPKrUWyYCh+3zQcCU9MEQ8Jv5
b8kW8tpky1Pfzs1+sWjDMIGzNoOsNAH+TB7aq/P3aojI4MVJD251C4w+4lY/27tg
2X4DJHWsREjJA0CD2asbKq1pisBsD6F/bcsU97uFl6NEW6PxovU/wqXUmYzOt7Qp
b3AVyp7PE1M9oSKKIlr8w0cgEb1LGG0U0Yi5It5DGDn+V2aOMnVy5Z2dDyS+JFNG
KX3X9susc4S86UTWMU0yEMZSTBj9iWUmWmj0+9WZn5/Q6JCZGR59SnyYQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL2S9Co6XJ3oYY+y+f1eU+JMOCG6MB8GA1UdIwQY
MBaAFIcgzyw0kUb2m6KeusDIgiiBHKLxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlEUExEU1JSdmFib3A2NndNaUNLSUVjb3ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8zYmJkMzctZDNjYi00MTViLWEzOGEt
ZDQxNTA2N2E4Zjc2LzEvaHlEUExEU1JSdmFib3A2NndNaUNLSUVjb3ZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS8zYmJkMzctZDNjYi00MTViLWEzOGEtZDQxNTA2N2E4Zjc2
LzEvaHlEUExEU1JSdmFib3A2NndNaUNLSUVjb3ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYTMQbnv+
ltYGv1ET3sElO6erRYGVPi5MyG5cIPwQpR369xXqvwFF8jd7H2lu8t7IKBbM1GDE
fUs0jwbfZo4detwX71Xq8+27d6Ikk+EAbniVY4PwQGxl6NVS6Vq2uBerVeXAXCDl
zwBLyZQ6wTeFBzNxYTNvvyfaMpVTugelyJqmz9e9HhCvdDzTARcPfU4mqIO6lj8V
ERMAcYUp89IP5YgR1JW8vNciXuKI+0WFO836ox532QhYUQtZS2L58uLVqRxWuNFS
1sSkdspsRRxZPh/tLJ0MxBM+BHQnpXdVYa9GxHFkclQ8FIvK5T+tZqD8G3nhl/yv
wnqhDCm+8/LasA==
-----END CERTIFICATE-----
Generated at Thu May 15 00:57:25 2025 by rpki-client