Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json)
Hash identifier: /2EC4HuZuBB3twr+aBEyOk1FOohbQZi2LUuTN9w9jH8=
Subject key identifier: B5:00:A4:6E:06:EC:5B:44:DA:4A:75:C3:39:0E:9C:77:27:88:94:4B
Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Certificate serial: 0197B70EA377E107C4ED006B3276B1EF13FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 15:01:19 +0000
Manifest this update: Sat 28 Jun 2025 15:01:19 +0000
Manifest next update: Sun 29 Jun 2025 15:01:19 +0000
Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: sFvBaqWosQ4PcOaaAvSoS5E8GZ/t3KNYIBJnhltiAR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:a3:77:e1:07:c4:ed:00:6b:32:76:b1:ef:13:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Validity
Not Before: Jun 28 15:01:19 2025 GMT
Not After : Jun 29 15:01:19 2025 GMT
Subject: CN=b500a46e06ec5b44da4a75c3390e9c772788944b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9f:95:98:80:23:97:99:cd:1f:82:da:48:68:
5c:4d:10:7a:db:ed:6a:15:f8:2b:3b:43:ca:81:4f:
3b:80:d5:fe:16:5a:7c:a5:26:39:a6:ac:ee:e3:68:
65:f3:80:4b:d5:66:d6:a2:85:b5:bd:d6:80:c8:6c:
0a:df:fd:a8:cf:c5:2e:c8:91:e9:11:c2:25:30:d9:
90:d4:56:ec:f4:69:e3:1c:9d:b2:d9:ae:2b:e1:2d:
61:be:12:32:af:e6:30:6a:26:9d:c6:db:13:59:76:
6b:8e:63:17:f3:f8:30:da:3c:8d:1b:74:5c:d0:96:
79:3e:4a:d9:8a:0a:e0:b1:70:e4:1e:8f:0b:64:a3:
53:36:9a:26:04:2e:b0:a1:17:67:3b:e1:cc:41:17:
79:bb:6c:75:d4:97:d0:e8:23:2b:89:be:3b:b2:e4:
c0:00:2e:c7:31:7a:8d:9a:8d:69:a0:69:80:66:69:
fe:2c:77:49:c6:b7:c0:23:16:2b:c7:ab:b6:60:7c:
e9:08:3a:4a:72:8a:86:e6:58:7b:a6:36:a3:56:5b:
c0:c4:5d:23:22:d3:00:fb:a6:ba:1a:f6:7e:66:53:
c4:1c:a6:45:2f:45:c5:3d:54:58:c1:51:29:9f:c8:
37:00:ce:4a:ce:45:2a:ea:3f:e1:44:b7:f6:01:6a:
10:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:00:A4:6E:06:EC:5B:44:DA:4A:75:C3:39:0E:9C:77:27:88:94:4B
X509v3 Authority Key Identifier:
keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:66:a4:08:95:88:39:cb:7f:08:ce:c0:89:44:c2:8b:9f:0a:
c4:64:c7:3e:65:59:95:64:5a:2b:76:8f:26:88:f7:94:ac:10:
f6:3c:80:55:98:de:ea:02:47:d4:b7:4a:10:21:74:68:d8:26:
35:84:cc:dd:c2:79:e9:e4:a3:ba:32:44:a1:e5:ef:04:46:ab:
52:1e:b2:68:04:08:b4:04:15:4c:c1:5e:2d:6d:a2:d4:27:29:
33:e6:91:10:87:11:a4:d7:3c:05:8f:1a:c3:89:f1:6a:bc:0a:
6e:49:d0:85:b8:84:dd:62:ad:f6:b6:c7:dd:bd:b9:0c:d2:31:
48:ad:e0:13:a1:dd:4c:c6:dd:3e:1a:0a:36:c6:7d:f0:c5:cc:
c5:77:d1:8a:3b:cc:ab:5f:0c:42:7c:ad:8b:a2:f1:75:92:72:
14:0d:a2:39:69:00:a2:3d:45:1a:b1:74:25:5e:86:79:c2:a3:
6f:de:38:72:1d:f6:50:15:69:02:7b:25:e9:2b:19:28:9d:d3:
01:a1:6a:4c:2d:be:b6:74:6b:48:18:7a:00:b3:bf:f5:2f:90:
e1:98:94:3b:d3:12:8d:33:14:e6:e3:7d:e9:0d:72:c3:fc:5f:
fe:7d:aa:9d:d9:06:db:1e:0a:a4:00:ab:eb:03:0b:6f:49:1c:
e0:b6:06:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:26:56 2025 by rpki-client