Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
File: HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json)
Hash identifier: 1TlNUrWJXmiQy/Zze9cPASFVwjpA5w7WmPzV1ByVht0=
Subject key identifier: A4:A8:84:72:1A:38:49:84:EC:91:7C:C4:19:B8:41:9C:67:94:A0:6D
Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
Certificate issuer: /CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Certificate serial: 019678685189F3E03E4AF7CDAA54283B9960
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
Manifest number: 150A
Signing time: Sun 27 Apr 2025 18:00:24 +0000
Manifest this update: Sun 27 Apr 2025 18:00:24 +0000
Manifest next update: Mon 28 Apr 2025 18:00:24 +0000
Files and hashes: 1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: aAksF21VXeBVGf6tgd9F9k9xR1zv2lj7qwmsA5Bp26M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:51:89:f3:e0:3e:4a:f7:cd:aa:54:28:3b:99:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Validity
Not Before: Apr 27 18:00:24 2025 GMT
Not After : Apr 28 18:00:24 2025 GMT
Subject: CN=a4a884721a384984ec917cc419b8419c6794a06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b3:04:98:73:07:43:07:d8:00:a2:e3:b5:ae:
e9:c7:4b:1d:ac:d0:6c:52:6d:78:2e:62:2a:fd:b6:
a4:13:52:28:86:e9:51:92:70:58:51:67:c9:fe:b0:
8b:08:34:8d:a8:bb:86:1f:0e:42:73:cb:c4:16:61:
54:46:dd:c3:bc:b2:ca:3c:4b:6d:c2:09:3e:fb:f9:
88:a1:c1:0a:c2:17:c2:45:a4:1f:8e:61:96:82:8a:
ac:1d:78:13:01:05:66:72:e0:fd:54:49:19:9e:c6:
d3:b7:be:60:65:0a:c2:32:27:84:02:af:3a:46:53:
c8:43:58:cb:6b:20:93:ad:07:3f:bd:c8:2d:81:ab:
a8:af:d6:31:4c:08:f4:f7:01:c4:64:b3:8d:9d:bc:
5b:0d:68:6d:cc:1b:d7:69:76:71:cb:3e:18:cc:d1:
b3:a9:1a:1e:66:34:1d:95:52:9a:d5:87:e8:93:f4:
c2:92:75:ee:ba:2d:36:36:56:09:05:a6:05:e9:9b:
a0:a1:20:8b:2e:5b:25:f4:88:e8:ac:15:e2:4f:aa:
05:14:86:65:d3:74:76:04:de:45:3d:29:7e:f7:44:
76:07:71:f6:09:41:2d:d6:c6:49:44:c2:9f:4d:a1:
a8:6a:fd:35:ab:fe:ad:51:b5:3b:e2:a4:43:f5:f4:
0d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A8:84:72:1A:38:49:84:EC:91:7C:C4:19:B8:41:9C:67:94:A0:6D
X509v3 Authority Key Identifier:
keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:21:93:00:46:da:6b:fe:81:a0:ad:65:7a:f6:d9:60:a2:cb:
aa:c5:2f:87:9b:31:26:6f:a5:ed:18:bd:59:13:92:a9:0a:5b:
50:7a:d6:9f:56:7b:c0:70:d8:33:97:62:e6:cb:97:6c:12:47:
c2:3f:98:7f:2b:f2:bc:c8:a0:3e:6f:fe:18:d3:b7:f4:31:47:
77:64:6e:f3:73:78:b1:fa:4f:da:df:47:e8:dc:b5:41:2e:ab:
0a:64:b9:b7:0d:c9:b8:cd:b2:41:58:cd:aa:47:4d:57:6c:d6:
eb:3c:ad:cd:24:a0:90:54:48:b4:00:ac:6c:41:0b:6f:ce:2d:
29:cd:27:55:c0:0a:bf:0b:2c:1e:9b:f8:b8:5a:0f:02:e8:8c:
ad:9f:dd:29:0f:18:58:d9:3b:f9:ce:81:4c:92:75:58:34:5c:
eb:0a:53:4f:81:da:fe:d5:50:1e:ac:02:2b:8b:d4:0c:ca:7a:
69:6f:88:d7:72:a8:a1:4e:8a:ba:34:7b:52:5b:cb:46:9c:22:
1f:5c:0d:f4:59:ce:76:02:40:ac:73:17:57:24:69:cc:63:17:
28:d4:07:cf:89:53:a3:a9:50:50:ba:ce:5f:93:95:68:fa:f5:
1b:e4:5e:44:4f:3c:ef:6b:06:7f:ae:53:4b:5e:75:a9:a0:94:
23:8e:1d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 21:32:28 2025 by rpki-client