Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft
File: hkCo0qJ0maklfW7UZjoLMNob_jM.mft (raw, json)
Hash identifier: TAUuOOAnIe7pW6Iv4cjfalkKzs7OcG0ayXW9p0dFc0Y=
Subject key identifier: EC:04:C5:A1:59:05:78:1A:B0:BB:20:AC:03:42:CA:CB:FA:31:62:A6
Authority key identifier: 86:40:A8:D2:A2:74:99:A9:25:7D:6E:D4:66:3A:0B:30:DA:1B:FE:33
Certificate issuer: /CN=8640a8d2a27499a9257d6ed4663a0b30da1bfe33
Certificate serial: 01976F9A5A96803C37239138604473EA2DC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkCo0qJ0maklfW7UZjoLMNob_jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft
Manifest number: 0937
Signing time: Sat 14 Jun 2025 18:01:16 +0000
Manifest this update: Sat 14 Jun 2025 18:01:16 +0000
Manifest next update: Sun 15 Jun 2025 18:01:16 +0000
Files and hashes: 1: hkCo0qJ0maklfW7UZjoLMNob_jM.crl (hash: QbDCwRwsti7MyhQoERILMxgj64CoAyg0Ac/OmafWrmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkCo0qJ0maklfW7UZjoLMNob_jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:5a:96:80:3c:37:23:91:38:60:44:73:ea:2d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8640a8d2a27499a9257d6ed4663a0b30da1bfe33
Validity
Not Before: Jun 14 18:01:16 2025 GMT
Not After : Jun 15 18:01:16 2025 GMT
Subject: CN=ec04c5a15905781ab0bb20ac0342cacbfa3162a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:35:cd:42:69:ee:28:0c:b7:0c:85:fb:55:78:
06:08:e4:95:0f:c8:02:93:0e:4c:41:d4:01:81:e6:
cf:96:b5:f9:1e:d4:3d:95:fc:f7:07:0a:93:63:df:
4f:1f:30:cb:9a:a7:c9:f4:f4:8f:3a:38:4b:c1:91:
19:51:6d:20:3c:9a:27:2e:16:70:d7:f6:75:cf:91:
4e:0c:66:61:dc:d8:01:23:c5:e6:8e:47:1d:55:2a:
86:68:a5:76:4e:b3:95:ca:ff:ac:c1:b4:86:61:5e:
3f:3f:c7:9c:72:c8:4c:0f:07:5e:2f:75:df:c0:40:
7a:a3:6b:9c:0b:90:59:64:3c:aa:1e:85:c3:6d:8a:
74:d4:d5:cf:ea:ab:6f:f5:04:bb:2b:7d:b6:22:49:
bc:53:ab:f5:7a:9c:c8:f2:14:42:10:a3:11:20:41:
98:62:74:d5:ff:b4:81:1f:4f:cd:a9:73:77:f0:ab:
5d:67:ec:11:96:2c:ab:11:1b:d9:fb:78:5a:b3:66:
45:2d:f5:49:b9:64:2e:01:3b:9a:a3:3c:eb:49:1c:
51:db:47:a2:17:ff:c2:c8:18:27:f2:06:15:7f:3c:
45:bd:4d:b8:e5:d4:ce:7c:c1:24:0f:45:80:d7:40:
1e:98:04:6b:3a:bc:5b:65:85:d6:aa:32:fd:91:36:
bc:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:04:C5:A1:59:05:78:1A:B0:BB:20:AC:03:42:CA:CB:FA:31:62:A6
X509v3 Authority Key Identifier:
keyid:86:40:A8:D2:A2:74:99:A9:25:7D:6E:D4:66:3A:0B:30:DA:1B:FE:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkCo0qJ0maklfW7UZjoLMNob_jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:af:19:8a:4f:54:c4:fe:8f:7c:04:b7:79:4b:21:93:fe:f4:
e4:99:12:0c:31:5a:53:66:3c:77:f3:e1:eb:9d:d4:67:2e:0e:
28:a4:f5:76:bb:d4:db:14:39:7c:29:d9:cf:df:65:63:cd:88:
a9:96:40:0c:23:37:9c:08:fa:99:6f:63:fa:c8:8e:01:44:29:
68:1a:68:8a:fd:6d:ba:7f:4b:eb:b1:16:ff:57:39:16:79:35:
67:27:3d:ee:70:a2:ba:a1:88:fd:bf:af:92:28:1e:72:c9:e3:
0d:71:fd:ed:f3:18:ab:e7:7a:1b:69:e5:98:6a:1a:a5:22:35:
b6:99:bb:df:43:eb:c8:e3:82:d1:1e:20:02:d5:45:40:f0:00:
c0:37:d6:03:88:d7:29:8f:a9:40:ce:c4:73:0c:1a:21:d6:32:
52:8e:17:c7:b6:b9:e8:05:f8:3b:70:5a:8e:40:6c:83:2e:b7:
65:e8:96:7b:c4:1b:5c:c7:02:c4:8c:87:09:28:f6:29:8f:ac:
73:34:44:a4:0f:b1:e9:50:a2:10:89:6e:28:49:61:0c:b2:42:
19:14:70:bd:1d:07:89:bc:b4:60:df:23:3a:b0:2b:27:a4:7e:
f9:a3:72:60:92:99:03:6e:cb:ec:4e:f8:25:59:4e:ea:01:39:
60:9a:4a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:12:44 2025 by rpki-client