Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: ejymd2yvTIb/U8iCRSOoMSnacJoAWMipV98lauVGt+k=
Subject key identifier: 77:AC:C6:56:EC:A4:45:34:65:C2:C9:74:80:1F:00:CD:49:C5:05:AA
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019678D6ADE5E606612CC87D22511827AD79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0122
Signing time: Sun 27 Apr 2025 20:00:57 +0000
Manifest this update: Sun 27 Apr 2025 20:00:57 +0000
Manifest next update: Mon 28 Apr 2025 20:00:57 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: 1WmGjSnUfkJ2Ev0HjNeD4Kk+ZE105OruVNFFJzG93G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:ad:e5:e6:06:61:2c:c8:7d:22:51:18:27:ad:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Apr 27 20:00:57 2025 GMT
Not After : Apr 28 20:00:57 2025 GMT
Subject: CN=77acc656eca4453465c2c974801f00cd49c505aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d8:f0:6b:c4:69:b2:ae:31:e6:a3:20:98:77:
cf:04:de:ce:40:82:ac:22:eb:d4:ff:18:86:05:33:
25:1d:ea:16:76:f8:b3:4d:6f:12:b5:fc:6b:2d:bb:
6f:c2:cd:df:c5:9b:92:7a:19:29:d9:75:50:5f:4c:
b8:c1:1c:b1:a3:21:9f:f2:8c:0a:23:e4:78:81:2a:
95:7a:a1:d7:e2:14:61:68:e6:f9:50:78:16:71:8d:
1f:06:4b:52:bb:2b:a5:2a:45:2e:25:19:9f:af:46:
4a:0e:10:b2:c9:b6:d3:af:61:fb:e2:26:dd:88:c1:
b2:e3:2f:11:17:76:49:96:f2:bb:fd:a6:a8:4c:ad:
96:36:b8:e9:5a:17:d3:b8:2d:9a:fc:9d:00:d3:c7:
2c:6f:8d:ea:75:55:fa:94:e4:f2:0b:51:bc:75:aa:
54:dc:17:b5:37:6f:2f:b4:07:85:9f:36:5d:ac:01:
e1:e5:56:7d:fa:0e:54:09:41:17:93:86:75:8e:af:
ab:4d:86:9f:d2:31:3f:63:e4:9e:38:33:84:6c:dd:
d4:d8:3e:1d:52:ca:1d:d5:64:72:82:75:92:21:74:
4f:b3:17:ef:2f:00:b8:0e:a1:62:c1:34:63:3e:ee:
8b:1c:7e:0d:b4:1b:a1:35:da:27:af:fe:2c:9b:77:
d9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AC:C6:56:EC:A4:45:34:65:C2:C9:74:80:1F:00:CD:49:C5:05:AA
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:81:41:e0:f0:a8:6b:54:ed:14:8d:d3:51:4d:e6:96:44:f2:
a5:02:2d:8b:63:e9:34:07:15:cb:ba:98:aa:81:fa:24:b3:03:
e5:63:b0:19:5c:49:03:27:62:d3:01:7d:f3:e7:9e:58:ea:51:
94:2e:32:61:e2:a8:1c:e9:2d:4b:fa:71:1a:d4:73:5d:7a:7e:
79:4b:a1:58:ff:2a:a1:db:cd:a8:04:9f:ab:c7:aa:9e:9c:c4:
a0:e7:5f:be:72:8d:13:84:69:5b:0f:80:6c:b7:0b:71:fb:c0:
1b:be:17:9a:c7:ef:f4:a8:6e:75:e4:64:a7:2e:db:50:43:73:
61:1d:08:60:49:b8:aa:d1:a5:ab:f5:bb:c2:17:05:2d:20:69:
a1:02:77:6c:90:2a:41:95:a6:a5:df:53:23:b4:94:77:3e:a5:
3d:aa:cc:dd:9a:78:98:17:b2:12:61:42:45:86:f2:13:05:b0:
08:45:34:47:52:6b:72:f0:93:f2:4b:84:9a:ee:ae:f6:1f:5c:
98:11:08:1e:cc:d9:72:71:ff:f0:2b:06:99:5b:a5:ca:0f:3c:
bd:aa:f2:f4:f8:c9:cb:5b:1b:7b:37:c0:7e:22:63:d8:cb:d2:
11:f1:93:9c:c6:f2:74:16:20:c4:eb:43:5c:e5:82:69:ba:ed:
1e:64:02:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:10:56 2025 by rpki-client