Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: Qlq9McGO3cApIEoNUiOV80DzxYiglaf5n5q69mUvOhI=
Subject key identifier: B7:F8:5D:AC:98:46:B4:33:C6:AA:03:37:F1:8E:45:EF:59:A7:5D:09
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 01967831B9382F9575462EADAD206F17F9B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0BF5
Signing time: Sun 27 Apr 2025 17:00:46 +0000
Manifest this update: Sun 27 Apr 2025 17:00:46 +0000
Manifest next update: Mon 28 Apr 2025 17:00:46 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: xW08hCczT5bE2Gzc9BZ4RYFRiS6anZ14c2JF/ncBiOQ=)
2: ackszuiJCTUVf3NL6BGlMWZR6mU.roa (hash: eS/ev9znkjBG3HaRk+tKGqjX3/CUPsNsHqj4Rs2K9+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:b9:38:2f:95:75:46:2e:ad:ad:20:6f:17:f9:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: Apr 27 17:00:46 2025 GMT
Not After : Apr 28 17:00:46 2025 GMT
Subject: CN=b7f85dac9846b433c6aa0337f18e45ef59a75d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:df:a8:9b:3e:d5:85:c3:7e:61:84:05:48:7f:
2f:e9:d4:c4:f7:ba:10:5d:12:4f:8d:d9:14:a2:d2:
f8:83:56:9f:2b:80:db:82:8a:6c:cf:1c:ea:ce:de:
7e:43:c3:4e:e7:a8:25:65:d8:88:5b:6f:e5:b5:81:
5b:5d:b6:04:a5:09:5b:f4:f1:d6:87:fc:ae:0b:fc:
d9:c2:31:44:ef:c7:5c:54:99:fd:77:00:ce:3a:86:
e9:50:50:9c:f2:e3:46:2f:29:d2:1c:27:9a:a2:16:
87:ab:42:4a:e2:c0:06:e1:3c:c2:5f:e2:2a:0a:df:
13:f1:e2:5d:03:cb:83:60:66:ca:a3:b8:c4:a0:9d:
38:27:19:89:d7:e6:50:ae:d9:76:a0:23:2e:7b:f6:
1f:a1:19:0e:ff:e8:7c:2e:36:7f:ff:ca:bd:a7:93:
c8:0c:24:ae:be:5e:51:f2:21:0d:ab:c2:42:fb:53:
e2:90:af:b2:8d:8b:ae:05:ae:7a:1f:94:47:ef:f8:
f5:c7:63:06:f9:89:96:d4:9e:f2:3d:29:02:68:cc:
da:0c:45:4d:5d:9d:4b:1c:8d:18:96:36:a0:45:97:
f6:99:86:f0:36:aa:2d:c0:d0:6e:e7:5a:2d:c2:be:
58:a3:07:68:e2:48:98:3b:d1:ec:f9:5a:96:a6:cd:
19:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F8:5D:AC:98:46:B4:33:C6:AA:03:37:F1:8E:45:EF:59:A7:5D:09
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:88:9e:bf:bf:8a:fd:92:f1:18:bf:a1:5b:b6:7c:a5:b7:0b:
6f:1c:10:b0:fd:15:97:1a:8f:71:dc:e3:78:02:3a:bc:65:52:
c8:b3:77:76:f0:fb:0a:65:e6:1a:a5:6a:ec:e2:35:21:b8:74:
4c:29:67:db:1c:62:e6:16:11:31:1a:10:6c:d9:4b:6b:b3:01:
9f:9b:8f:8a:dd:4a:92:11:76:66:86:78:89:61:42:fa:cf:ca:
89:27:b0:0d:21:6f:f9:5d:b1:de:86:f1:23:ab:5a:a2:72:5b:
12:5b:9a:16:c7:bb:5d:19:4a:c1:46:d9:d6:5e:f2:4a:7f:fa:
d5:0c:0a:c1:ac:12:d3:60:c9:bc:a0:58:98:d7:62:f8:96:92:
86:33:ca:ac:a5:b9:58:30:57:9d:3f:78:6c:ce:42:77:6b:8d:
ea:b9:20:40:7a:84:aa:9f:f1:cf:73:ae:3c:f7:ff:e1:62:de:
c7:2f:46:7e:2a:dc:7c:15:a8:e3:9e:d6:8e:75:5d:95:ad:69:
c2:68:d0:4f:f2:cf:2f:40:fb:ba:9a:85:d6:17:bf:86:40:42:
35:2a:5d:b1:ca:d9:60:b0:72:76:f1:de:dd:8d:56:6e:97:a0:
5c:e1:c2:01:b0:f0:10:0d:f2:a1:f8:6e:6f:29:8e:0d:dd:f0:
49:24:7b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:53:06 2025 by rpki-client