Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
File: H0qus-K3pD3wHzHVGiDvIlXOr-M.mft (raw, json)
Hash identifier: mZTzBbZ9MOTbWDEurbc0fns93VfvRzBHQRNHeUpysbM=
Subject key identifier: 35:31:BE:EC:75:1C:E8:02:63:9E:8F:15:42:A6:F9:C7:AA:EF:D6:A8
Authority key identifier: 1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
Certificate issuer: /CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Certificate serial: 019773097BDD9D2E1EBAF743FC2B5AF49BA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
Manifest number: 0433
Signing time: Sun 15 Jun 2025 10:01:30 +0000
Manifest this update: Sun 15 Jun 2025 10:01:30 +0000
Manifest next update: Mon 16 Jun 2025 10:01:30 +0000
Files and hashes: 1: H0qus-K3pD3wHzHVGiDvIlXOr-M.crl (hash: vpmFGnOaat3HFSHx3HAVVen27jjaMuK82vDJDXeSmgU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:7b:dd:9d:2e:1e:ba:f7:43:fc:2b:5a:f4:9b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Validity
Not Before: Jun 15 10:01:30 2025 GMT
Not After : Jun 16 10:01:30 2025 GMT
Subject: CN=3531beec751ce802639e8f1542a6f9c7aaefd6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:1f:23:22:64:3c:7d:1d:5f:4f:d7:62:bb:
22:3d:5e:d4:15:70:04:48:3a:6a:0e:a8:92:5c:8f:
e2:8a:51:45:dc:18:f3:75:b7:8c:0a:52:8b:c6:9f:
d1:d0:0e:e5:1d:a4:30:17:d8:9d:4f:25:bd:96:ed:
c7:e0:58:4c:37:ed:dd:77:1c:90:a1:0d:46:c6:37:
5e:a9:fe:d4:67:70:d3:7c:1a:6b:cb:05:82:7f:19:
99:01:d4:a1:f8:e0:94:6e:82:e5:0d:da:a1:63:af:
19:30:53:5e:f0:1d:b5:60:68:8d:bc:82:c4:7a:af:
79:27:92:8d:d6:70:f4:4a:17:4f:23:56:66:32:1c:
a7:e0:62:09:d1:5a:d5:bf:77:48:63:35:57:e3:ad:
01:ae:f2:91:33:3b:62:c7:e0:a3:ad:ae:4a:70:60:
24:7b:8c:c4:45:79:22:28:07:15:8e:66:dc:de:ef:
24:cb:28:ea:43:ae:36:36:ee:36:28:d3:c6:ec:e4:
5c:4c:64:e4:8a:33:0a:9f:4d:39:8f:3a:d8:2d:5e:
3f:64:8a:8b:24:ba:3c:f0:94:a1:b0:31:32:2b:6e:
dc:21:f9:df:e7:76:6a:9f:cf:c5:24:57:70:8c:74:
3c:2d:39:4d:83:4a:5e:13:65:aa:9d:d9:6d:5f:8d:
d4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:31:BE:EC:75:1C:E8:02:63:9E:8F:15:42:A6:F9:C7:AA:EF:D6:A8
X509v3 Authority Key Identifier:
keyid:1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:2b:84:83:79:f2:32:46:2f:c6:40:cc:e6:99:78:2c:5c:61:
1a:ee:96:ce:30:26:79:41:7e:89:a8:d7:16:3c:3c:4d:f1:c9:
30:39:8a:a8:f2:ad:62:64:1e:9c:88:53:9d:a1:82:77:d6:91:
1a:fc:15:ae:86:2e:7e:9d:e6:41:fa:b3:d7:9f:f1:39:6b:ce:
30:eb:9b:e7:39:db:2c:ff:24:64:bd:95:ac:f6:da:df:25:7b:
e3:48:11:34:73:0f:e8:5b:6a:6d:19:50:a9:ec:f4:3b:e3:d4:
ce:49:82:24:61:c5:6a:b9:ed:51:fb:df:ab:70:32:92:1d:f9:
63:37:62:03:9b:45:34:de:02:40:fb:de:ee:e4:b3:75:6e:20:
72:b2:06:40:93:a8:1d:82:8c:1c:8a:a5:cf:ab:50:2c:12:8f:
65:75:e3:1a:fd:fb:e5:95:9d:ee:25:91:fc:81:a9:12:55:64:
7e:af:e0:39:51:67:45:36:37:3d:89:a1:2a:5e:97:b3:7d:3d:
d1:95:8c:eb:ea:ce:ed:ad:cd:f3:87:bc:ce:a9:b5:cb:26:b3:
8b:bf:d4:4c:f1:24:19:18:63:97:bb:06:4f:ef:9e:54:dc:61:
32:49:9a:a5:5b:f7:7a:09:6b:6d:ee:36:2b:98:c1:e5:e7:33:
dd:e1:fb:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:10:09 2025 by rpki-client