Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: Kwg7+TU4nf8zPPRNETOuUu2qSGeH6ChqNmMPv1SZCQA=
Subject key identifier: 0E:0C:FB:30:C1:3F:00:F3:1E:6D:EB:A1:E9:51:C5:54:B4:86:47:40
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 019680590246082A9C80FB051D0BF4C83895
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 1261
Signing time: Tue 29 Apr 2025 07:00:39 +0000
Manifest this update: Tue 29 Apr 2025 07:00:39 +0000
Manifest next update: Wed 30 Apr 2025 07:00:39 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: cdNp/a0YGbj6Ib+hdYNr9x5RX9jD1e1JJFPMl9pMrZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:59:02:46:08:2a:9c:80:fb:05:1d:0b:f4:c8:38:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Apr 29 07:00:39 2025 GMT
Not After : Apr 30 07:00:39 2025 GMT
Subject: CN=0e0cfb30c13f00f31e6deba1e951c554b4864740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6b:a3:ce:f6:7a:02:df:c8:c9:3a:8b:82:ed:
95:55:64:e0:41:77:83:5b:a3:dd:26:ef:e9:cd:6f:
a3:1c:4b:04:89:34:35:6f:57:46:1b:ad:87:77:47:
2a:fe:d5:0f:e4:e4:41:64:cf:fa:a7:b0:36:05:8d:
88:24:ad:ee:85:48:fd:bc:4b:30:6b:3e:ea:29:c0:
f6:a1:39:56:ef:30:32:88:88:b3:34:ab:ca:0c:52:
e2:71:c6:e6:bb:e9:da:68:9d:16:c0:a9:75:14:29:
74:9c:d4:d9:23:ec:72:a0:4c:a5:d6:df:5d:5f:41:
79:e0:4a:5f:40:02:6c:47:c4:c7:e9:ea:72:6f:11:
01:46:f0:f2:a0:c7:31:e0:36:a3:f9:05:1c:e5:8e:
81:42:1a:a5:56:ff:d4:cd:83:fc:ef:35:1f:0a:29:
66:ee:45:6b:77:de:d1:bb:2b:1a:5b:94:c3:15:53:
f7:54:e7:57:b2:aa:4e:1f:25:6d:6e:20:d8:22:d8:
50:74:2d:50:83:e3:9b:34:84:33:74:a5:4e:ec:d3:
3e:9f:74:48:f8:c0:1b:2c:2f:80:46:2b:93:0a:c9:
17:50:06:33:7d:c3:5b:93:a9:8c:84:8f:bf:75:5b:
3b:b9:f8:0f:1b:af:91:d8:3e:a7:a4:2a:45:e7:51:
82:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0C:FB:30:C1:3F:00:F3:1E:6D:EB:A1:E9:51:C5:54:B4:86:47:40
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:c0:08:23:40:97:53:4f:31:fc:54:73:96:ae:33:62:70:ea:
e1:35:f6:26:06:61:d3:13:d3:e6:53:1a:7d:61:eb:d2:b0:34:
ad:f9:48:38:92:f4:1d:6c:3d:85:8c:2c:bf:d2:10:87:af:ea:
c3:c3:95:2b:d3:eb:15:2c:c9:87:5b:2c:27:ee:a8:79:7e:b9:
93:58:87:60:c9:62:6e:e1:59:a0:49:a3:b8:56:ee:f6:50:cd:
0c:03:47:a5:3f:de:53:b7:fd:f3:8e:ce:03:2a:92:95:81:29:
8a:93:85:9b:a1:84:e0:dd:d9:79:f5:7d:fb:30:7b:ee:49:c0:
2f:1a:62:61:8c:f6:ef:37:30:44:84:bc:62:f6:d2:6c:4e:b7:
ee:8a:d8:25:b5:1c:07:c8:bd:20:77:dd:92:ad:3a:ed:1c:d5:
e4:7b:ba:2f:27:1c:29:20:f2:bf:98:26:3e:0f:b8:49:59:f1:
3c:dc:b5:66:fd:1c:2c:6f:03:a6:90:32:df:e8:f7:0d:f2:87:
1b:7b:e2:aa:89:e9:ca:ab:28:0b:6a:af:cc:4f:be:30:5d:b5:
ef:69:81:82:7e:e5:b3:df:72:34:ba:2e:51:7a:12:d7:b1:04:
5c:2f:d1:51:30:63:f9:d2:c1:30:de:ec:a9:cd:ae:9b:88:04:
b4:ad:60:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:30:58 2025 by rpki-client