Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
File: HPoACq4LHA_NOZiRS7dt_HLoc1g.mft (raw, json)
Hash identifier: uSI+B1y1f5PF1Ir+dfySkEJ5JyEeXcEUplMFKg+78dQ=
Subject key identifier: 21:B4:24:E4:53:6B:C6:BB:04:E0:0F:2D:3A:70:BF:F1:BA:35:88:35
Authority key identifier: 1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
Certificate issuer: /CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Certificate serial: 0196B89163C735426AD06CEB6DAB68101635
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
Manifest number: 0208
Signing time: Sat 10 May 2025 05:00:57 +0000
Manifest this update: Sat 10 May 2025 05:00:57 +0000
Manifest next update: Sun 11 May 2025 05:00:57 +0000
Files and hashes: 1: HPoACq4LHA_NOZiRS7dt_HLoc1g.crl (hash: c0n+nGYZnHB94itmOgGXfWEfMf09w4bl3cpROL9b5aQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:91:63:c7:35:42:6a:d0:6c:eb:6d:ab:68:10:16:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Validity
Not Before: May 10 05:00:57 2025 GMT
Not After : May 11 05:00:57 2025 GMT
Subject: CN=21b424e4536bc6bb04e00f2d3a70bff1ba358835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8c:1f:d7:a2:39:22:22:cb:9c:82:bb:56:aa:
04:c3:4e:fc:63:af:be:30:22:67:c0:84:7e:b9:b9:
da:11:fb:dd:9e:6b:03:a0:73:bb:bf:48:c5:b0:1b:
fd:2e:d8:b8:0c:25:be:a1:5d:17:19:55:83:80:27:
b2:bf:48:38:a3:f5:79:e4:c8:b4:56:57:01:8d:fd:
d8:14:d9:63:f4:fe:69:2f:f4:8e:cc:fe:da:90:f5:
8f:0f:7f:16:b6:d7:ac:c6:7b:75:bc:5c:94:66:3d:
c6:45:89:1a:76:96:bc:2f:e9:01:57:ca:db:61:ee:
ba:f1:54:4d:9d:cb:61:34:d0:a0:84:64:83:7b:82:
8f:65:33:bb:73:dd:06:e7:b0:1a:59:0f:6c:c2:e3:
c3:66:02:c5:37:02:ac:75:65:41:bc:f4:ed:cf:d9:
e6:97:91:a9:6e:8a:0a:fd:14:3f:88:86:9d:cc:85:
0e:55:25:86:2c:c7:e2:da:e0:7b:5a:4c:2d:53:7b:
22:33:fa:82:a5:a4:d1:00:90:63:d1:a3:c3:e2:d5:
b9:cf:45:07:72:5a:90:20:2b:60:fe:85:9f:4f:ae:
29:eb:45:70:5d:57:46:a6:f7:ea:e0:cb:72:f7:d9:
1a:74:5c:83:ab:bc:d1:94:ec:72:db:31:af:5c:f7:
87:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B4:24:E4:53:6B:C6:BB:04:E0:0F:2D:3A:70:BF:F1:BA:35:88:35
X509v3 Authority Key Identifier:
keyid:1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:77:31:30:08:ea:c7:98:d9:b0:bd:1b:79:58:4b:90:f2:fd:
3f:d5:1d:df:3d:e2:91:e6:10:5d:d5:28:9e:79:8a:bf:c1:29:
61:d7:e4:8d:fb:15:f5:11:20:cf:75:ed:9e:87:23:5f:d1:bc:
09:55:3d:d3:0a:36:6c:ac:80:45:42:0d:8c:4a:85:48:53:69:
34:75:62:82:f0:74:70:b9:c1:ef:48:2c:dd:23:2b:ae:e2:23:
bc:90:55:49:86:f9:b4:8f:71:75:43:32:3a:57:a7:d4:f8:9a:
31:b5:ec:85:30:dc:53:7c:64:b2:58:06:7f:02:33:2c:3e:54:
9e:66:48:b5:d9:be:63:69:68:42:d7:97:cb:1b:6b:2c:66:0f:
9b:01:90:f6:40:ea:64:46:e0:b8:2d:a3:6a:18:e7:10:7c:13:
d2:47:d1:19:e0:86:24:07:db:dd:78:4e:82:54:3e:23:55:f7:
85:38:d5:f8:b1:a6:68:73:41:dc:af:54:08:eb:d1:7b:5a:c9:
95:81:ff:61:1d:d0:19:a7:e3:6c:e3:66:c6:a1:07:a6:2f:9f:
dd:9c:e1:a1:03:e9:ae:77:8f:36:89:d4:8f:33:73:ce:35:9a:
1b:59:34:ac:07:01:05:be:98:25:51:69:77:b1:6b:11:9a:ed:
93:e0:6f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 15:00:45 2025 by rpki-client