Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier: dwXdf7rUR0Kh1ZKLVZ06KYqNzNO/31TbGSpWu9rUbJA=
Subject key identifier: 9E:3D:23:F8:38:F7:A5:9F:15:7E:C0:32:AB:72:68:E8:73:2F:9E:F4
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial: 01967868A6C3470E4DCE973A46E2D25E2494
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number: 150C
Signing time: Sun 27 Apr 2025 18:00:46 +0000
Manifest this update: Sun 27 Apr 2025 18:00:46 +0000
Manifest next update: Mon 28 Apr 2025 18:00:46 +0000
Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: SPcPgr+T4jqLbsCUIwaIB0etvkIJN+aVSxaO/o+yoLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 18:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:a6:c3:47:0e:4d:ce:97:3a:46:e2:d2:5e:24:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
Validity
Not Before: Apr 27 18:00:46 2025 GMT
Not After : Apr 28 18:00:46 2025 GMT
Subject: CN=9e3d23f838f7a59f157ec032ab7268e8732f9ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:da:b3:b1:93:a4:fe:43:2b:15:93:71:dc:4d:
67:c9:3e:78:e8:95:17:6c:48:5f:75:24:3d:c7:3f:
b7:5a:b7:7e:4c:15:84:33:4a:68:82:12:c8:f7:49:
83:82:68:b9:80:c1:a7:a2:4c:a1:c4:b0:e3:c6:20:
5b:59:64:ca:83:68:14:dd:96:35:09:01:a3:d0:d2:
0a:b0:af:9e:08:90:9c:de:13:6e:07:39:ed:51:72:
eb:18:8b:c5:08:a4:a1:56:f1:78:64:1c:d5:13:a1:
f4:4c:30:9a:02:f5:31:9b:ca:36:36:dc:5e:8c:55:
6d:b9:d7:86:1f:fe:e9:03:51:53:5b:60:08:80:95:
a0:09:a6:50:88:be:6d:b4:c0:e2:36:88:7d:cb:92:
f6:b2:d3:61:4b:b3:37:51:64:dd:78:a5:cf:82:d4:
41:b5:c7:2f:e7:b2:45:5e:e1:79:f7:fe:f0:25:e4:
20:46:ea:0f:03:bf:0b:18:19:da:28:dc:e1:08:26:
79:7a:9c:d3:71:7b:43:42:9e:4b:b2:37:63:e4:14:
16:92:90:09:40:af:3c:41:7d:b8:8e:17:74:e4:42:
d3:54:46:7b:cf:16:ef:4b:16:60:f1:44:c0:32:f9:
e1:79:f5:cb:f2:89:2b:a3:48:81:eb:6e:3f:5c:7f:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:3D:23:F8:38:F7:A5:9F:15:7E:C0:32:AB:72:68:E8:73:2F:9E:F4
X509v3 Authority Key Identifier:
keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:6d:d8:c2:18:14:f3:87:c2:e6:ab:91:14:b3:69:d3:f2:b1:
df:51:cf:2d:1c:1e:af:f9:9d:ba:94:7c:45:75:24:86:da:65:
0f:90:0f:a9:9c:d8:97:83:f0:c9:6a:af:07:19:bf:3b:96:d5:
b9:97:6a:cf:c9:4d:59:5a:89:e4:ba:34:60:31:41:6e:49:ef:
ba:49:10:f7:f4:c8:46:77:35:a2:e6:17:cb:f1:9c:04:72:bf:
b5:7c:2d:73:1f:d9:bf:35:2d:7f:3d:a1:c8:e3:6d:bd:fe:b8:
c6:be:69:b9:3c:25:f0:19:56:cb:a0:7f:a8:13:de:48:13:09:
5c:3d:21:1c:a3:99:f3:91:dc:b8:ea:91:6f:21:db:c2:14:fd:
ac:68:d7:60:7b:9a:c6:be:e8:e2:27:25:60:82:1b:d7:0b:0a:
fd:c3:ea:a4:23:03:7d:74:fd:7b:44:20:41:fa:79:2e:48:4f:
3e:10:23:d3:93:73:03:d3:f8:9c:33:ad:73:ed:ac:fd:48:10:
cb:54:5c:8e:d4:ab:b0:b4:db:4c:01:9d:74:af:ab:64:97:f2:
ad:27:48:17:cc:00:4f:8a:cf:3a:a2:0c:3d:c4:3d:54:e8:de:
df:69:b2:25:81:87:69:61:1f:4f:21:a8:3a:2b:c1:bc:ec:54:
a9:0a:03:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:59:02 2025 by rpki-client