Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: gVAuSmdomuwe4i4EM/i8rYp8gu7cjDlhpC2AfXHtYhU=
Subject key identifier: 55:9A:44:58:D0:84:2C:A9:EC:12:E1:DC:CC:29:C3:85:29:6F:C1:E9
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 01968992E62E908BE43E0F4549AC49ADB814
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 151B
Signing time: Thu 01 May 2025 02:00:27 +0000
Manifest this update: Thu 01 May 2025 02:00:27 +0000
Manifest next update: Fri 02 May 2025 02:00:27 +0000
Files and hashes: 1: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: TCf2SZVyWY4o1GBfz4PWe77WjQuyoZvN5QlLrAxZueU=)
2: xSS92RJP_9kDYA2uBQZz6tpYK1I.roa (hash: rR5n4U9xDx2H85hw0wOs3NY+BK3tAcVO4QlJE3rUQXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 02:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:92:e6:2e:90:8b:e4:3e:0f:45:49:ac:49:ad:b8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: May 1 02:00:27 2025 GMT
Not After : May 2 02:00:27 2025 GMT
Subject: CN=559a4458d0842ca9ec12e1dccc29c385296fc1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0d:c4:74:44:4c:1d:6f:76:45:4b:9d:2d:b3:
94:a0:7a:65:db:8e:0b:aa:d6:1b:40:47:c5:b1:77:
f0:67:4b:d0:96:36:10:03:0b:82:df:d2:0f:70:a5:
36:ac:be:6a:10:59:05:5b:74:52:01:92:16:74:ba:
ef:93:e4:37:9a:ce:aa:34:0f:be:5f:11:d4:4c:52:
b4:89:d6:4f:75:1e:ff:55:5a:39:46:c3:7f:c3:50:
08:3a:12:e4:01:f7:6f:b0:2d:bc:2a:81:50:04:a8:
65:dc:92:dd:30:0f:8c:dd:25:44:3e:54:16:7a:85:
cb:50:c7:50:ff:06:0b:69:20:29:05:bf:fc:80:99:
df:89:2e:0c:24:0a:a0:33:1c:0e:20:84:f2:53:19:
cb:96:fc:f3:28:e9:0c:6c:fd:6e:72:e0:47:6f:1e:
66:fe:c0:d0:16:0e:c0:cd:79:e4:1e:81:c4:c1:84:
4a:4e:fa:a0:0e:07:c4:ba:6a:34:1a:4b:25:ca:5e:
20:3e:db:da:fd:f9:54:fa:1a:8b:5a:f0:62:ed:d0:
9d:7b:03:d0:63:f6:23:d0:11:79:77:9b:f7:a9:0d:
28:85:d0:34:d3:4a:52:ce:a0:f5:8f:c7:f0:d4:a3:
13:c3:36:26:68:d2:1a:7b:e3:8e:88:eb:db:4b:b9:
5c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9A:44:58:D0:84:2C:A9:EC:12:E1:DC:CC:29:C3:85:29:6F:C1:E9
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d6:82:32:d4:da:0b:ed:5e:e3:64:24:e6:df:53:67:f3:2f:
01:98:00:79:12:f8:9f:2d:45:27:45:3f:c0:f4:dc:cc:e0:91:
b2:e2:c4:1e:95:ea:17:61:78:2c:be:29:ec:50:02:fd:e3:e0:
91:2a:40:83:38:ba:0c:28:b8:43:cd:cc:cc:6a:21:1a:07:cb:
0b:41:c7:eb:1b:51:21:aa:7c:a2:0c:c8:3a:a0:46:8e:16:33:
46:5c:86:40:29:c3:a5:39:ad:fd:21:f9:26:1d:70:eb:cb:ee:
05:2d:59:e7:84:2b:15:43:56:52:8e:2c:ea:d9:ce:f7:a4:50:
db:3e:59:43:8e:20:ab:19:23:7b:99:4e:9f:d5:54:40:c7:0c:
c8:15:17:97:f1:0b:12:66:13:c4:c0:d8:88:40:6f:0d:65:62:
a4:2a:45:80:e4:33:6e:96:e4:1b:3f:51:7f:ef:91:2d:e6:da:
28:48:ab:b1:0f:5b:30:bd:97:a4:66:18:02:f0:c5:5c:b0:13:
22:68:63:2f:37:6e:15:fd:63:b1:93:c2:56:70:c7:37:16:72:
bc:b6:30:81:ad:67:ac:d0:04:e4:2b:29:e3:33:01:7d:ec:1f:
c8:43:59:c4:d4:bf:86:a7:a1:41:a3:87:2e:02:0c:a2:b6:12:
1a:a6:e0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 09:34:05 2025 by rpki-client