Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
File: hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft (raw, json)
Hash identifier: isQ2iiuKpRE8WD1DQqWkrszfESKk6B1mWoLcG93sgkM=
Subject key identifier: E1:7B:FD:65:1D:14:AB:1B:52:C6:66:38:FC:4C:B0:4B:81:25:F1:CA
Authority key identifier: 86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
Certificate issuer: /CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Certificate serial: 01976D06CA99CEBA977E6FB28900D99142B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
Manifest number: 097F
Signing time: Sat 14 Jun 2025 06:00:50 +0000
Manifest this update: Sat 14 Jun 2025 06:00:50 +0000
Manifest next update: Sun 15 Jun 2025 06:00:50 +0000
Files and hashes: 1: hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl (hash: GRLNPZFmZlIt3jgdKscTzJlzi9DqGv1ue0BMtL3jUVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:ca:99:ce:ba:97:7e:6f:b2:89:00:d9:91:42:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Validity
Not Before: Jun 14 06:00:50 2025 GMT
Not After : Jun 15 06:00:50 2025 GMT
Subject: CN=e17bfd651d14ab1b52c66638fc4cb04b8125f1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fa:47:e9:e4:60:74:b8:ee:d2:8c:47:5d:aa:
c1:e5:18:23:5e:da:24:a7:63:df:b9:15:4b:ea:3b:
2c:38:bf:68:59:20:ec:65:43:27:1d:a6:6e:8f:78:
7b:a1:31:2c:8c:20:f4:20:48:01:d3:28:b5:20:23:
59:e5:79:0e:67:e1:b8:59:70:47:ed:7d:7b:b7:36:
c3:b5:d7:13:c7:10:db:67:e8:bf:6d:ef:a3:2b:14:
d4:f4:f9:9e:11:e3:be:46:7f:94:c2:cc:87:8c:5a:
1c:84:00:4c:7d:a8:e4:33:c5:8e:b6:79:f3:69:b1:
1a:3e:6d:88:b1:85:9d:cd:97:58:09:fb:05:5b:5a:
72:73:42:29:d2:01:9a:c6:26:ac:67:df:91:36:a4:
2f:7a:89:a2:dc:3e:12:87:54:5b:e4:45:33:0a:05:
1e:2b:bb:fe:31:8c:b8:b0:da:40:6d:e7:ca:06:9a:
c8:8f:f9:7c:11:8d:99:2a:76:53:88:62:3d:e9:0c:
e0:c0:03:91:22:cb:39:7f:49:26:0d:01:5d:0a:06:
02:90:1d:16:1f:b4:9a:9a:6a:2e:73:39:61:91:81:
77:07:a5:d2:47:5a:8b:fa:cc:f0:8c:e6:98:f3:30:
94:cd:8c:e9:eb:43:36:72:2c:fb:b2:e8:0e:08:8b:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7B:FD:65:1D:14:AB:1B:52:C6:66:38:FC:4C:B0:4B:81:25:F1:CA
X509v3 Authority Key Identifier:
keyid:86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:35:9b:d3:a0:1f:54:3f:f2:3e:e6:88:3d:37:80:2a:5c:76:
ba:c1:25:28:6d:b8:b4:01:b0:05:c4:a1:a8:73:f5:f0:ee:6f:
23:b0:9b:a0:55:ab:dc:c1:7c:7e:eb:d3:bc:84:3b:a7:f9:f6:
1f:cb:8c:13:4e:62:73:f6:83:6a:e7:9e:5c:4d:95:1e:10:89:
38:f4:06:1d:96:1a:63:c2:cf:a0:83:6d:23:05:2b:bd:5b:02:
32:09:14:9e:c8:c6:06:10:ab:24:f0:db:9e:17:bb:21:78:5d:
c5:91:62:41:2b:37:57:4c:f5:2c:83:cd:50:4b:32:0d:da:2a:
28:9d:e1:2f:bf:e5:0c:6d:dd:84:55:ee:17:5b:f1:23:7a:f7:
9d:b2:11:c3:cb:d3:a2:e5:da:45:56:51:40:a2:32:f5:68:d8:
64:f3:2c:f2:f0:7c:66:a9:c1:17:29:92:f5:3e:4d:ae:c1:18:
60:21:9c:66:32:4a:30:ac:c9:f6:a7:85:d2:ed:c8:a3:f4:c3:
69:b5:aa:91:32:ca:79:46:de:28:2c:f9:d8:0f:ef:cd:09:65:
85:20:3c:bc:35:e3:c7:d3:31:53:1c:ae:1f:08:6c:ff:ca:32:
1d:57:75:f8:1a:fb:33:47:e2:e4:88:26:1c:a4:fc:67:59:ff:
78:96:d7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:14:10 2025 by rpki-client