Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
File: hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft (raw, json)
Hash identifier: +MVJaSwH1f5asXVEXVpOCGlwT95vuixetHDxWvZGR98=
Subject key identifier: 9C:7D:AF:EC:65:2A:9A:98:1A:75:B3:05:CD:C2:06:72:F5:AA:1F:C9
Authority key identifier: 85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
Certificate issuer: /CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Certificate serial: 01968F284318A7B4260DAB9840E8284A0AC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
Manifest number: 1518
Signing time: Fri 02 May 2025 04:01:42 +0000
Manifest this update: Fri 02 May 2025 04:01:42 +0000
Manifest next update: Sat 03 May 2025 04:01:42 +0000
Files and hashes: 1: hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl (hash: HK991i/JIw02JYzMxxYyqijFB7dfm+cpaFBWybz6eT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:28:43:18:a7:b4:26:0d:ab:98:40:e8:28:4a:0a:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Validity
Not Before: May 2 04:01:42 2025 GMT
Not After : May 3 04:01:42 2025 GMT
Subject: CN=9c7dafec652a9a981a75b305cdc20672f5aa1fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ec:96:17:9b:10:0d:d6:02:f5:30:38:c3:49:
6f:45:da:d8:0f:e9:e2:30:a4:d8:ca:78:fa:27:30:
bf:91:d6:47:97:de:70:eb:2e:e3:d8:ce:16:92:8b:
d6:59:f8:97:8f:ee:e5:d4:f3:3d:8d:e7:9a:1a:0a:
49:bc:dd:80:5d:e0:4c:26:b5:44:d0:63:e5:6f:d8:
c2:cc:3d:73:d4:eb:0c:b5:6e:27:08:02:9e:ce:7f:
e6:ec:1d:a6:35:f6:84:bc:90:f8:a7:68:28:7d:c6:
5a:1c:b4:f7:2c:77:8f:8b:53:9a:95:cf:6b:c3:c3:
f6:cf:96:86:b9:7d:6f:f7:37:29:2c:ed:3e:98:ec:
57:37:ea:15:24:03:5d:81:71:89:70:44:71:00:6a:
62:50:fa:d7:75:2c:05:88:4e:25:60:41:cf:95:e7:
89:dc:38:1e:3f:eb:37:b4:21:42:3e:3e:fe:3c:a3:
f9:3f:31:2d:27:4b:c2:df:6e:27:43:a2:b6:f8:f8:
9f:3e:0c:a3:71:04:1f:2d:e7:b3:27:93:5e:58:10:
fe:1a:97:47:05:7b:1c:74:13:98:98:be:80:4f:a6:
11:f3:e0:b0:bc:09:55:66:53:4d:46:0a:b0:b1:c7:
82:0f:45:19:a4:f2:89:11:d3:e3:fc:a7:21:38:f1:
e8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7D:AF:EC:65:2A:9A:98:1A:75:B3:05:CD:C2:06:72:F5:AA:1F:C9
X509v3 Authority Key Identifier:
keyid:85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:3c:4e:3d:42:04:89:0e:66:54:65:d2:24:0f:02:04:c1:b9:
70:fb:af:cf:77:37:8c:7b:66:42:9f:b3:39:43:29:bc:01:eb:
9f:72:68:cf:50:93:96:b2:e3:99:34:b3:d3:61:5c:99:fa:16:
9d:41:a3:a6:41:95:6b:20:a1:4c:a7:3a:5f:09:95:44:54:cb:
d2:2b:78:06:f1:f3:ad:27:2b:46:31:4a:e1:0f:4d:b0:9a:8b:
89:97:3d:07:8e:4b:3b:30:d7:a4:cb:df:78:2b:22:9a:91:a9:
aa:85:7a:9f:5b:cf:36:83:8d:2e:00:42:a0:29:89:1c:1d:ca:
78:47:40:8a:5b:46:d2:a8:43:1a:8f:0b:60:64:88:9c:9c:31:
45:96:8d:59:5a:d8:95:a9:0f:58:04:80:c6:0b:ad:4f:31:32:
e3:22:0d:08:7a:97:34:8b:5d:86:8d:8a:9f:d5:21:43:d8:a7:
a2:5f:5a:c9:da:3a:0d:7c:cc:c3:e1:11:0d:1e:65:13:2a:ab:
ad:cb:4e:c2:b2:ef:61:cf:ea:e3:27:1d:ab:8a:1b:a7:8e:82:
65:cf:d5:e5:57:83:85:df:d0:5c:ad:49:cf:43:4e:70:98:18:
80:50:f0:51:72:50:77:b1:44:f9:f0:39:50:03:cb:0a:63:3b:
a2:df:71:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 09:35:26 2025 by rpki-client