Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
File: HbaQYGGZpdSGeJxD2__QwGW93OY.mft (raw, json)
Hash identifier: kqR5dP7rNMlsq99+OSnOPXiejOpfwqHrq+k/fia9c18=
Subject key identifier: F9:0F:AB:8B:C6:95:24:BA:22:DE:0C:2C:87:A8:1F:74:DD:52:EE:96
Authority key identifier: 1D:B6:90:60:61:99:A5:D4:86:78:9C:43:DB:FF:D0:C0:65:BD:DC:E6
Certificate issuer: /CN=1db690606199a5d486789c43dbffd0c065bddce6
Certificate serial: 01967943EADEC24C5C982EB500F7548707BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
Manifest number: 0346
Signing time: Sun 27 Apr 2025 22:00:16 +0000
Manifest this update: Sun 27 Apr 2025 22:00:16 +0000
Manifest next update: Mon 28 Apr 2025 22:00:16 +0000
Files and hashes: 1: HbaQYGGZpdSGeJxD2__QwGW93OY.crl (hash: uC+ghQP7YQNE1wiHQtgGWkBtc89NnbBfYXw3C43xnlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 22:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:43:ea:de:c2:4c:5c:98:2e:b5:00:f7:54:87:07:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db690606199a5d486789c43dbffd0c065bddce6
Validity
Not Before: Apr 27 22:00:16 2025 GMT
Not After : Apr 28 22:00:16 2025 GMT
Subject: CN=f90fab8bc69524ba22de0c2c87a81f74dd52ee96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:05:14:b6:6a:65:c0:ff:6a:0a:ff:c8:55:f1:
72:a9:2c:b5:5d:0a:7b:6f:9a:c0:18:a1:b3:71:33:
0c:b7:ff:5b:6b:00:d6:5c:0a:5e:8c:67:27:29:f7:
38:ad:87:3e:f2:f3:ef:4c:74:5a:09:cb:90:c4:7c:
82:17:59:85:6d:cc:c0:f0:55:4e:d0:13:cd:e3:bb:
38:de:ca:4b:08:17:d8:be:a5:29:b6:12:ce:52:46:
e2:74:48:12:88:a9:09:83:56:29:12:6c:6f:6a:a1:
3d:42:61:4e:12:43:30:8e:75:85:db:ec:11:e2:8f:
23:21:7a:80:56:c4:6d:1c:9f:bb:09:6a:7b:4b:60:
ab:e7:d8:f3:4e:38:fe:e5:e3:b5:4e:f4:12:29:8f:
f6:cb:7f:f0:9b:a6:ce:5b:c1:af:f4:03:88:e4:ba:
03:ab:9c:bb:c4:8d:d8:d9:2a:c0:f6:7c:e5:1b:10:
e2:b3:93:ae:31:ee:3d:b9:86:b1:f2:0c:70:24:cc:
8e:88:84:3f:2e:83:03:c7:51:c0:2b:b8:f7:6b:32:
aa:fa:61:4a:7d:32:9c:6f:75:86:30:b7:2b:f6:2f:
99:d3:e8:2f:5d:f1:e3:ba:8b:0c:aa:03:59:3e:1e:
61:59:76:14:bb:2c:a2:7b:17:cb:41:3b:87:f6:08:
6f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0F:AB:8B:C6:95:24:BA:22:DE:0C:2C:87:A8:1F:74:DD:52:EE:96
X509v3 Authority Key Identifier:
keyid:1D:B6:90:60:61:99:A5:D4:86:78:9C:43:DB:FF:D0:C0:65:BD:DC:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:38:bd:d0:3b:7d:f7:7c:c6:9f:46:ba:69:bd:ae:09:00:3d:
09:cb:67:42:d8:87:d3:98:fd:bd:53:94:54:49:da:df:c9:c7:
88:b8:f1:5f:b9:f6:36:61:cc:e3:d1:60:45:9c:59:12:85:9e:
e3:17:3d:7e:9d:c2:a3:41:9c:ab:f0:8d:15:99:f5:fd:4d:f5:
d6:c0:57:cb:6f:3b:4b:42:64:4d:bc:fa:4e:e4:ca:77:9c:8a:
83:b2:0c:9d:72:95:24:d1:b2:87:d6:97:49:c0:d5:9d:99:19:
ef:f0:0f:3a:9e:00:29:55:4b:6d:b3:8d:84:a7:f5:dc:aa:45:
07:08:87:05:07:26:d6:8b:62:aa:8d:c6:3f:96:64:27:d2:96:
57:23:b9:47:52:d1:9e:a9:0a:37:a0:6f:c9:7b:8c:00:c3:ec:
27:3a:17:bf:5f:4f:dd:c7:f0:82:79:2e:f5:30:b6:0a:29:81:
be:4e:a4:9d:d0:da:c5:f8:73:de:85:77:a5:88:40:54:37:53:
5d:98:8c:4a:fd:36:03:8f:49:0d:96:7a:04:27:6c:ea:8e:d1:
05:c3:66:f5:2d:3a:c8:da:89:b3:22:34:51:3e:fb:5f:54:ee:
8d:5d:a7:5d:84:35:7e:e8:ce:85:8f:1a:01:ae:ed:bf:2d:70:
d2:84:05:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:26:47 2025 by rpki-client