Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
File: HR3nlQkjqWQxniwzg0m9Emh75K4.mft (raw, json)
Hash identifier: bz5GOjL6SV3pxuNdZDtGQWYlzMYihcTA4Cuv18FSWes=
Subject key identifier: BB:10:C4:67:3D:77:75:BE:19:70:42:C0:8C:55:20:6B:92:9F:01:6A
Authority key identifier: 1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE
Certificate issuer: /CN=1d1de7950923a964319e2c338349bd12687be4ae
Certificate serial: 0196895C5EEE0D59340844CAFD2A99E048D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
Manifest number: 098F
Signing time: Thu 01 May 2025 01:00:54 +0000
Manifest this update: Thu 01 May 2025 01:00:54 +0000
Manifest next update: Fri 02 May 2025 01:00:54 +0000
Files and hashes: 1: HR3nlQkjqWQxniwzg0m9Emh75K4.crl (hash: YZTDwF9iJD3MymDvfBnqPb0xym3S9CatVYPs1C0f6tA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5c:5e:ee:0d:59:34:08:44:ca:fd:2a:99:e0:48:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1de7950923a964319e2c338349bd12687be4ae
Validity
Not Before: May 1 01:00:54 2025 GMT
Not After : May 2 01:00:54 2025 GMT
Subject: CN=bb10c4673d7775be197042c08c55206b929f016a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:50:82:b1:ce:d1:ed:74:cf:8f:b2:c7:91:
f1:e6:2a:fd:a2:4f:e3:cd:50:2d:72:72:63:85:ce:
cc:ce:eb:a3:6b:8f:0a:57:41:1d:76:5f:bf:99:58:
85:54:5f:f6:d7:92:51:16:ba:6a:3d:db:fc:01:c2:
4e:e7:91:fe:30:92:83:f3:8b:2f:93:8f:3f:fe:f9:
57:ca:db:3f:fb:7c:a4:03:38:15:d0:15:40:57:22:
96:03:a7:81:ea:9f:c2:eb:56:77:13:d9:59:f8:e9:
69:35:2f:60:7e:10:13:ab:50:6d:57:b9:0d:51:09:
0b:de:6c:40:10:a1:02:82:08:db:82:8e:20:b0:09:
99:d5:09:ca:10:93:87:6e:1a:95:e6:65:fb:3d:16:
4c:a5:61:76:b8:d7:c0:37:a4:45:10:ac:19:aa:e2:
8a:46:9d:0f:ef:eb:27:29:05:8f:cd:48:f5:46:24:
b5:f4:98:28:a8:69:4f:78:4d:39:22:c7:57:78:8a:
36:83:18:3b:7e:d0:74:63:cf:59:e8:ea:62:40:d7:
62:4d:dd:10:4f:d9:1c:65:c5:3b:ff:6b:ea:99:67:
a2:47:c9:45:49:d2:41:b6:9b:71:cd:c4:9f:47:96:
09:8d:0e:0f:5d:2c:d2:92:47:d5:f8:85:b9:67:d4:
78:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:10:C4:67:3D:77:75:BE:19:70:42:C0:8C:55:20:6B:92:9F:01:6A
X509v3 Authority Key Identifier:
keyid:1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:0e:0d:2f:8b:49:33:9c:ac:3f:c0:75:d9:6c:1f:5b:6a:e3:
ee:cd:47:ec:ae:6e:61:19:2d:5f:c4:de:c8:33:af:bd:fe:f4:
62:3e:b8:16:7a:90:f0:55:a7:29:85:9b:c6:35:69:ba:60:66:
c7:14:3c:bf:82:84:a7:15:c3:c7:e1:8b:55:4d:c0:80:e7:92:
66:3e:7b:ec:ad:fa:a3:a4:1c:1a:03:8b:57:1b:7a:82:24:65:
2e:0b:20:ac:92:67:f5:fb:7c:5b:55:57:22:79:55:7e:b9:8a:
2a:50:7a:97:ce:e8:ed:79:0d:21:b4:e6:79:91:00:21:6a:b0:
a2:9d:dc:88:88:39:1f:b4:13:ad:98:8a:89:3f:71:1c:ee:7f:
d5:cf:10:59:b5:f9:95:d8:ac:9e:a6:dc:ef:5c:c3:67:85:41:
99:8b:7f:01:f0:9c:00:e0:f3:4f:7a:d6:de:f5:e1:65:73:d8:
b5:b5:de:26:cd:a3:3f:c0:23:f6:88:85:8a:fa:55:6e:0e:48:
05:69:b7:86:d8:40:d1:53:11:09:28:5a:af:f8:c1:e5:c5:36:
3e:92:66:57:bb:9a:71:b3:fb:5f:38:ff:b7:80:55:b4:f1:56:
81:62:d8:76:f1:54:a4:1b:e5:64:f2:01:ac:00:97:1f:d2:64:
dc:c5:ae:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:10:11 2025 by rpki-client