Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier: tIt2+x9Y2OGuzcaH6LXZxG/HYTFS31hc3rfkG4gzk4M=
Subject key identifier: 83:0B:98:40:FB:27:F5:11:71:4B:88:F2:53:8A:3F:C9:1E:39:2A:FB
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial: 01967FB467FB1C14273248B0AC4360D36E34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number: 0846
Signing time: Tue 29 Apr 2025 04:00:51 +0000
Manifest this update: Tue 29 Apr 2025 04:00:51 +0000
Manifest next update: Wed 30 Apr 2025 04:00:51 +0000
Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: T++WfiQn0td212oeQBQo4YOeCtZXG72S2ee1FMLsdHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:67:fb:1c:14:27:32:48:b0:ac:43:60:d3:6e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Validity
Not Before: Apr 29 04:00:51 2025 GMT
Not After : Apr 30 04:00:51 2025 GMT
Subject: CN=830b9840fb27f511714b88f2538a3fc91e392afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:78:8c:34:f0:13:fe:25:36:b8:2e:a7:9a:
6e:49:2f:e7:c1:a8:fb:00:75:78:de:9f:65:df:dd:
e3:90:45:8d:f9:dc:d7:2c:ae:85:ce:b4:d5:79:10:
74:2d:6d:7d:6b:9f:3b:e6:d7:34:e3:c3:2b:54:a6:
f6:54:a0:0b:7c:eb:af:ea:7e:3a:d5:33:21:39:78:
48:66:52:c9:c5:5d:8c:d2:46:6c:d5:e8:08:92:fb:
20:54:19:5c:67:f8:a7:e4:26:61:cb:9f:71:b4:9c:
13:78:95:7b:42:0c:77:6a:35:af:d2:7b:93:f4:06:
f2:b5:a3:e2:1a:7d:58:4a:c0:75:97:4b:9c:a5:f9:
f3:fe:f6:32:23:eb:a2:6a:d6:80:d5:f7:01:14:cd:
ec:a3:f1:9f:66:ed:ce:48:9d:1b:0d:a4:62:78:c6:
03:cf:59:5f:1b:6e:32:37:46:cc:8f:aa:f0:96:57:
0b:59:1b:3b:62:ca:d2:0e:ef:43:26:1a:51:85:d8:
ed:ec:14:89:41:bc:eb:4d:11:8a:14:23:4f:e6:f6:
5b:32:c3:50:4b:3c:78:a9:5b:75:68:c3:ed:bc:b1:
43:cc:53:87:3e:5d:49:c7:2d:3c:d5:56:25:74:88:
b6:ba:0b:57:ae:c0:d6:97:e8:09:39:7e:da:87:5a:
84:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0B:98:40:FB:27:F5:11:71:4B:88:F2:53:8A:3F:C9:1E:39:2A:FB
X509v3 Authority Key Identifier:
keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:39:12:70:06:d4:fb:2f:5a:83:08:8b:bd:04:3d:aa:26:28:
34:ea:2b:37:cc:7a:0a:e3:cd:c3:c8:12:5c:e1:8b:97:b5:a2:
c3:b4:3f:e6:1c:60:bc:8b:4a:bf:d7:20:12:ce:64:60:6a:6c:
06:64:d9:15:41:73:dc:75:17:5f:a4:69:8f:59:a3:84:db:e4:
43:16:95:12:65:67:29:f3:2d:a2:b8:53:df:11:40:18:a3:6c:
54:80:9e:a1:bc:13:a1:13:52:98:66:2c:f7:8c:eb:33:76:ea:
7b:31:5b:e8:cc:d5:5d:5d:0b:37:06:d6:22:90:48:dd:88:fc:
63:9c:db:65:ca:7d:bc:56:80:f1:19:d8:56:4c:03:4a:f8:9b:
c7:45:18:00:39:62:8a:33:cc:40:fd:9c:c8:4b:c9:6d:41:67:
03:b0:23:46:7a:48:03:55:50:f7:68:fd:dc:2b:3e:2d:c8:3c:
8b:88:71:48:14:f2:36:fa:73:d6:26:b4:bf:cd:9c:6f:20:20:
79:75:78:d1:86:f8:55:f7:c5:13:37:10:d6:30:f3:03:15:93:
06:bb:b5:6f:c8:e2:fb:b9:45:de:64:f4:14:2f:71:24:ad:01:
1c:eb:ee:00:21:02:87:c1:f7:3e:15:86:2c:a5:2a:7e:82:94:
97:4d:0d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:09:23 2025 by rpki-client