Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json)
Hash identifier: eZZjhNSo1JKvYm7nRVLMuVgaMABvkO9nqSsdOkasLtQ=
Subject key identifier: 32:72:1D:FF:FE:94:83:0E:CA:4F:2C:71:4C:13:16:30:FD:12:29:93
Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Certificate serial: 0196BD49A5B663C78CAAC7BD6759B6A8F874
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
Manifest number: 0368
Signing time: Sun 11 May 2025 03:00:42 +0000
Manifest this update: Sun 11 May 2025 03:00:42 +0000
Manifest next update: Mon 12 May 2025 03:00:42 +0000
Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: 6t8OolD9oXo8DNR25s8k5qQvM0b4M+DapLC4DxMjTqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:a5:b6:63:c7:8c:aa:c7:bd:67:59:b6:a8:f8:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Validity
Not Before: May 11 03:00:42 2025 GMT
Not After : May 12 03:00:42 2025 GMT
Subject: CN=32721dfffe94830eca4f2c714c131630fd122993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:16:b2:85:a8:f6:2c:2f:79:94:d9:12:c7:35:
ac:3b:40:3b:3e:69:7d:91:06:9a:21:24:6c:b7:a3:
5a:4c:e4:14:f7:e9:55:d4:8b:55:d3:d2:68:8e:73:
df:4a:2b:04:5c:25:e4:d1:bb:0a:a9:dc:83:09:32:
11:ee:b0:b0:80:10:e6:0a:03:c5:8e:5d:1b:28:c7:
b3:31:7b:79:d1:f4:2f:4d:a3:cd:bc:c1:b0:ad:bf:
13:fa:8b:59:2e:0b:4e:e0:8d:3d:bb:3e:90:b8:de:
6a:55:4a:41:a2:53:db:66:4f:98:b4:51:63:74:14:
2f:88:22:54:e9:95:7b:8e:f8:36:82:2a:25:86:02:
49:32:65:d4:1a:90:35:9d:90:16:ee:05:78:45:71:
55:eb:7a:1a:57:00:65:20:25:20:21:ae:6d:c9:b4:
63:be:86:0a:ae:a6:cd:4f:53:0d:50:24:df:5f:8a:
3b:18:94:12:bf:dc:db:2f:1a:71:cd:59:65:29:2a:
5c:c8:5f:20:41:c5:79:bf:f5:a7:37:44:e8:32:8d:
27:b3:d2:f7:4c:80:7c:4c:c2:e2:df:09:82:38:e5:
be:07:27:2c:15:61:63:0f:bc:3a:38:16:55:7b:37:
d0:04:0e:39:89:45:ed:8b:01:31:a2:e3:91:61:80:
92:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:72:1D:FF:FE:94:83:0E:CA:4F:2C:71:4C:13:16:30:FD:12:29:93
X509v3 Authority Key Identifier:
keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:df:ba:85:8e:97:c6:73:95:b7:5d:a6:bc:e3:da:f4:a3:96:
a6:6d:a6:35:7f:43:2b:71:be:40:c5:ac:ba:ae:55:bc:88:3f:
9d:4d:6f:eb:6a:85:da:71:a4:78:f1:ad:8c:ab:46:4b:22:be:
f4:c0:3c:d6:96:22:40:21:33:9a:f2:36:0f:20:6c:b3:8a:8b:
b9:b7:cb:88:45:cc:f1:a0:6b:17:3f:0c:14:f5:81:55:95:e0:
3e:28:cb:18:a5:56:f6:a7:6e:47:0e:41:0e:19:79:15:8f:1d:
ad:06:71:ed:cf:f7:e4:ff:5b:5d:82:67:7a:0a:06:8b:81:67:
d1:75:88:09:df:9f:8b:5a:63:1a:4a:9a:25:c5:de:8f:37:97:
2d:32:5e:7f:eb:bd:16:83:92:6d:a1:c1:df:09:7f:91:4c:b0:
96:64:00:a9:71:91:39:99:7d:cc:aa:dc:f3:a7:30:d3:36:c8:
a7:2d:20:f2:92:3a:bd:7e:58:35:3a:17:e9:17:22:98:e6:8c:
75:74:3e:8f:a2:ab:b5:32:87:48:ab:69:d3:99:76:a0:bf:77:
aa:6a:f4:aa:2b:be:4e:00:48:6c:58:8b:e8:5d:7f:ee:1c:24:
cd:fd:d0:4e:ae:06:99:36:eb:a6:fb:f1:50:5f:c7:0d:2b:24:
7a:38:69:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:26:45 2025 by rpki-client