Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: 3qAGyzWk0be8C0A3leOPTIABBuad3TJi8Rzwa6AMj8Y=
Subject key identifier: F7:3A:4F:BD:0E:A8:B1:44:B3:B8:75:53:43:99:C1:F1:46:6C:25:EC
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 0196BC6E14E034A23E4B81AFA51674DCC00E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0145
Signing time: Sat 10 May 2025 23:00:52 +0000
Manifest this update: Sat 10 May 2025 23:00:52 +0000
Manifest next update: Sun 11 May 2025 23:00:52 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: 8bRfaCuE0rYYna2gKZ/5Cq00o+/Sr3EVRTzhq3rFu28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:14:e0:34:a2:3e:4b:81:af:a5:16:74:dc:c0:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: May 10 23:00:52 2025 GMT
Not After : May 11 23:00:52 2025 GMT
Subject: CN=f73a4fbd0ea8b144b3b875534399c1f1466c25ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:dd:e4:86:64:93:9a:1a:93:92:4f:b2:cb:85:
cc:ff:9e:ab:eb:b0:4d:cd:e0:e1:67:67:b8:90:24:
af:52:3f:3c:c2:09:d2:51:ff:f3:3e:d2:71:f7:fb:
73:7b:74:a2:13:1c:6b:1f:f0:b2:22:d0:35:31:61:
b2:d0:45:69:83:e7:f4:9f:0e:61:24:bc:91:58:ad:
42:91:a5:56:b8:e3:ec:70:59:82:8f:d1:46:e4:19:
8b:a5:3f:e9:95:b0:1f:db:2c:56:e9:08:df:62:7c:
5a:c9:9f:47:31:15:93:0a:21:c5:21:6f:3f:91:7d:
1f:05:0d:33:f1:90:f5:4b:3f:b3:26:f5:a7:d0:f8:
5f:9f:94:f8:bf:48:58:91:77:44:36:22:90:9c:7a:
54:27:99:79:b4:11:8c:19:1a:79:da:42:a6:e1:23:
8f:51:90:66:1e:cc:9b:42:7e:d0:9e:a3:71:80:a4:
54:0b:da:90:56:e2:db:23:f0:08:e9:4f:f4:09:f4:
b7:45:a2:04:88:c1:0d:37:e6:ad:6d:05:8e:f9:7e:
6b:ab:e9:06:3c:63:9e:0c:8e:70:6d:99:0a:ad:15:
07:ce:2c:79:0c:05:45:6e:55:25:73:d1:c0:6c:41:
26:3c:e5:0e:b5:4a:2a:2f:41:3b:9c:d2:bf:c2:14:
6c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:3A:4F:BD:0E:A8:B1:44:B3:B8:75:53:43:99:C1:F1:46:6C:25:EC
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:0c:51:f2:43:7d:0b:d9:ef:c1:9f:c5:22:30:4a:9b:94:21:
ae:bb:21:39:d8:56:c1:4c:b4:b3:51:62:58:4d:db:5d:b8:37:
c4:39:60:bc:d3:a6:6c:f3:6d:99:ff:0f:3f:46:e1:74:c8:10:
51:ec:22:4d:77:54:86:22:fa:78:8f:62:ab:4f:3b:0e:b2:33:
be:a3:59:c7:c6:6c:39:ce:43:d7:6e:5b:fc:7b:1a:4e:f7:e1:
73:72:a4:cf:8e:5d:b1:a2:a6:ed:e9:10:6e:04:6b:44:5a:60:
75:ef:f5:8a:97:be:f9:7f:a3:c2:bb:e8:5c:4c:79:b1:8f:1c:
70:07:cc:e6:2b:16:1f:f3:a6:51:2b:2e:26:f2:12:50:4b:48:
27:e5:21:1e:65:03:6f:e1:f2:e3:ac:da:f5:d9:68:d3:69:a6:
97:f3:6a:af:d3:04:74:c0:05:07:54:e4:12:57:35:be:5e:07:
cb:7b:b8:aa:84:f8:40:97:68:27:52:e6:da:72:24:78:6b:f9:
41:b7:9e:7e:89:4f:cc:ef:a7:30:02:42:6f:f2:77:6d:a8:1c:
2a:74:f9:d1:cb:20:12:4d:3b:48:66:ae:27:dc:06:0b:15:31:
ee:1e:93:5d:ae:c2:ac:86:7f:69:a7:d9:48:a3:57:d2:ce:26:
05:b0:e0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:21:17 2025 by rpki-client