Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
File: HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft (raw, json)
Hash identifier: s2WaumLU9SHbKjANLM3JgEsCiYMzn+GlxjbEegYx2Ro=
Subject key identifier: A3:EE:A4:B7:69:A1:BD:82:47:98:23:9C:DD:EE:EF:2E:C2:E6:68:2A
Authority key identifier: 1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
Certificate issuer: /CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Certificate serial: 01967DC6500085163DF3324BA19014AB6970
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
Manifest number: 146D
Signing time: Mon 28 Apr 2025 19:01:10 +0000
Manifest this update: Mon 28 Apr 2025 19:01:10 +0000
Manifest next update: Tue 29 Apr 2025 19:01:10 +0000
Files and hashes: 1: HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl (hash: PXN6hNXHpxaSV+NmPcPcyFMWc+N656rfbe6aOs8r3VY=)
2: bDOy4M4R57nj8_Sff5gfBKz-LP0.roa (hash: vm1SQ0etoIa7LbOonRtmj5Ah0LoPLSlL7NdxQSQ76i0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c6:50:00:85:16:3d:f3:32:4b:a1:90:14:ab:69:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Validity
Not Before: Apr 28 19:01:10 2025 GMT
Not After : Apr 29 19:01:10 2025 GMT
Subject: CN=a3eea4b769a1bd824798239cddeeef2ec2e6682a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1f:06:d6:37:d5:ab:df:89:86:3d:35:42:4f:
0b:3f:d8:a0:a9:be:20:12:f8:23:ef:ac:8b:6e:80:
e0:98:e8:e2:74:be:bb:66:42:d0:bb:93:2e:87:78:
16:5e:6a:71:05:2e:dd:11:96:1f:45:d0:00:09:97:
e7:e7:c5:3f:2c:b9:4b:89:91:df:30:62:cd:cf:5c:
98:60:dc:5f:c5:d9:11:a1:e8:82:d2:ed:b4:9d:dd:
2e:51:38:e1:e7:20:2f:12:32:d3:a4:9a:fd:a7:58:
db:ed:13:73:1d:03:e7:2d:10:91:d8:ac:62:cd:df:
54:65:fd:9a:66:93:8c:0e:c9:36:be:d4:70:e3:8a:
e6:6f:fa:bb:31:b2:10:76:ce:62:97:84:23:af:97:
e3:0d:a6:f6:ae:04:f0:69:f0:c4:cd:de:48:35:86:
0c:77:77:45:c6:48:be:bc:b3:45:7c:5f:f4:2b:11:
7c:4b:ec:7c:d4:79:58:97:ec:d6:de:81:2e:29:56:
11:a5:c9:fd:72:2b:61:50:c3:e2:eb:0f:c6:69:70:
a5:21:dc:17:c1:09:84:4c:89:86:19:f7:9a:ba:44:
0f:41:12:a8:8f:68:b8:46:9a:87:cd:39:0e:9b:00:
d8:72:71:4d:1b:72:7a:23:2f:d3:60:46:d3:49:77:
46:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EE:A4:B7:69:A1:BD:82:47:98:23:9C:DD:EE:EF:2E:C2:E6:68:2A
X509v3 Authority Key Identifier:
keyid:1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:60:ad:2f:ad:c3:8a:52:06:8e:a2:47:9f:ac:30:31:b8:84:
ef:2d:d3:e0:ee:66:a2:64:48:63:54:9f:e9:55:66:b0:36:2b:
82:5f:d5:33:eb:91:29:c8:5e:0b:c6:10:79:33:7a:40:70:84:
a6:f2:4b:37:09:12:f3:ac:4b:f8:c5:2b:03:3d:49:d1:f2:bc:
5c:cb:ad:8b:db:d7:22:7a:38:79:3a:38:63:7b:47:c2:d4:45:
e2:96:bb:18:d7:24:56:d2:2d:d3:48:d2:05:91:f4:0d:ea:ab:
10:82:25:a3:05:1d:fa:30:8b:9a:d3:37:07:05:21:6a:82:7b:
4a:a5:10:e0:d1:aa:83:2e:d9:b5:cf:ca:1e:c1:74:62:3a:84:
fc:d9:5b:c1:26:be:95:8c:c5:bf:ad:ca:ff:1a:37:8e:01:ff:
ee:49:75:ea:73:aa:a8:bb:59:13:36:39:1d:4c:88:41:a4:3c:
a3:a1:04:7b:5d:86:d6:ce:5c:b3:77:69:21:5f:6a:c7:16:2c:
8e:54:00:d7:6c:f1:fc:d7:ec:5e:63:1c:0b:74:a8:47:ba:1f:
ca:9f:42:10:34:d4:48:9a:de:89:90:78:25:4c:c0:f3:24:f6:
93:24:a7:aa:3b:95:b4:e0:cc:0e:ec:66:ae:4c:dc:1a:2d:6c:
2a:0b:ea:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:29:28 2025 by rpki-client