Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: QO6CiYcuyiKwbLEhKlNJ4PN+e/EyQBOYLqFtvIDHgWM=
Subject key identifier: 70:1E:60:0A:6F:EE:DC:88:69:D5:6F:65:5B:D3:E3:63:77:4D:FA:FC
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 0196A4652F0458EAB1E59B8EC51E1F8E4186
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0B7C
Signing time: Tue 06 May 2025 07:00:16 +0000
Manifest this update: Tue 06 May 2025 07:00:16 +0000
Manifest next update: Wed 07 May 2025 07:00:16 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: JaoLilNDqSFm7QxQhmY8bUOf/K81T6WwV0qCi71S6zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:2f:04:58:ea:b1:e5:9b:8e:c5:1e:1f:8e:41:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: May 6 07:00:16 2025 GMT
Not After : May 7 07:00:16 2025 GMT
Subject: CN=701e600a6feedc8869d56f655bd3e363774dfafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e9:06:9e:57:42:cf:1c:f4:20:cb:5e:e2:83:
75:ef:43:d6:22:1a:7d:3b:d9:52:42:b3:50:26:ec:
bb:95:16:08:e9:76:41:5c:de:cd:cf:20:e4:65:22:
57:35:68:08:0e:7d:07:13:13:f4:26:00:74:c9:0f:
03:06:05:4b:cb:df:b6:61:4f:17:3b:11:fc:58:de:
85:7f:17:8e:bf:4a:cb:f7:fb:7e:2e:5c:35:bb:ca:
92:e6:59:03:31:51:03:a3:96:3f:fd:ae:aa:ac:9f:
42:98:d6:b8:91:0b:37:6e:d4:b6:53:8b:99:c8:20:
3d:ec:0e:cb:e9:f8:5f:2c:99:8e:a2:27:61:df:bc:
ac:8f:2c:2b:44:ec:2c:10:7b:7f:34:7c:da:05:72:
f1:2c:44:c9:e5:f8:87:6c:1f:bc:17:b3:38:e4:0f:
ce:6a:66:b5:11:82:e0:24:d5:65:1d:4c:35:77:10:
af:fd:d7:9c:b5:3d:fb:94:06:dd:7d:fe:83:2b:8c:
ef:8b:b7:d4:ca:cd:3f:2b:5b:43:e4:e1:93:0f:5d:
31:53:f3:2e:a2:0f:13:c2:b9:b3:fc:98:c6:c1:56:
a2:3d:bc:48:59:2c:0e:a0:01:00:ce:09:d5:fb:9a:
a1:1d:e3:96:c4:69:0e:14:8c:c3:28:7b:f9:df:e6:
1b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1E:60:0A:6F:EE:DC:88:69:D5:6F:65:5B:D3:E3:63:77:4D:FA:FC
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:66:af:bc:27:c3:77:ed:e9:a1:64:2b:7a:6c:82:01:e1:3a:
30:a1:d0:41:fe:13:34:a4:44:d3:61:ee:b9:07:4b:40:97:24:
e7:fd:1c:a0:f2:ba:e7:5d:5c:83:e2:68:b2:55:5d:09:d0:f4:
3a:d4:5f:22:a3:b7:95:45:f0:16:0b:af:4f:24:2a:56:cf:cb:
54:9d:4f:62:5f:59:8a:8e:ce:03:0d:5c:7e:a2:78:38:2e:89:
b1:62:24:37:b7:cf:6c:41:2a:6b:9d:6e:25:94:ff:7a:e9:20:
76:84:91:45:14:40:4c:e8:a9:5a:4a:37:c5:d1:bb:6a:d2:b1:
1b:3a:fd:d9:0e:ff:d1:cc:c1:8a:df:c1:d6:04:2e:ff:27:81:
b7:88:7d:26:63:1d:00:85:35:d5:69:65:6b:c5:db:27:79:c8:
db:f6:17:dc:04:ff:e7:56:23:8a:ff:b7:04:7e:8e:4b:9b:0b:
09:b6:4e:95:79:2f:7a:c7:b3:4e:58:3b:17:2d:d2:4f:da:29:
fa:66:27:9c:2d:d1:32:c8:4b:7f:8b:29:60:8b:07:ba:0d:59:
b0:ae:d2:9c:27:ee:97:69:da:83:9c:05:85:b9:69:6e:5d:11:
f6:17:f4:77:21:81:ce:b1:08:9d:36:a1:eb:eb:f7:58:c3:6e:
19:9a:3a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 14:40:53 2025 by rpki-client