Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
File: HzkK-DPX1CaQQsJJvPSWSFcglbY.mft (raw, json)
Hash identifier: xyrDLFNxj7Atd+WHw6Gn6D997J6qmNFxaFcxKHDnyKA=
Subject key identifier: 0A:42:D7:24:80:F2:1B:A8:28:67:B9:78:DB:A1:24:F4:53:ED:05:87
Authority key identifier: 1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
Certificate issuer: /CN=1f390af833d7d4269042c249bcf49648572095b6
Certificate serial: 01967FB4184ADE9E1E9616EC94F9F6FD46C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
Manifest number: 0FB3
Signing time: Tue 29 Apr 2025 04:00:31 +0000
Manifest this update: Tue 29 Apr 2025 04:00:31 +0000
Manifest next update: Wed 30 Apr 2025 04:00:31 +0000
Files and hashes: 1: HzkK-DPX1CaQQsJJvPSWSFcglbY.crl (hash: CuyAbt/9fcdhx9zMNSbW06ZdkCt/lek0GtuwOki0r4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:18:4a:de:9e:1e:96:16:ec:94:f9:f6:fd:46:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f390af833d7d4269042c249bcf49648572095b6
Validity
Not Before: Apr 29 04:00:31 2025 GMT
Not After : Apr 30 04:00:31 2025 GMT
Subject: CN=0a42d72480f21ba82867b978dba124f453ed0587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:fe:12:bb:22:11:40:24:97:b2:42:7d:f6:
42:05:5c:85:84:f9:85:ec:7f:a1:7d:70:72:91:82:
9b:52:e7:79:ce:d7:35:28:e4:1b:2a:9f:2b:89:50:
fc:df:94:cb:d4:55:f7:e6:52:34:fb:f7:34:92:b3:
73:26:b5:0a:53:8d:79:52:b0:8c:b9:ed:80:66:43:
cf:9a:1f:16:6c:55:ba:9e:dc:33:e8:63:b2:8d:aa:
f7:49:32:50:a7:08:be:a4:c5:91:dc:02:0f:68:68:
e8:5e:f4:26:e7:a3:a8:2c:a8:6b:f6:e6:49:40:ec:
a6:6e:0f:7b:4f:6a:e6:7d:83:cb:bd:50:0b:84:86:
0c:5f:b8:4d:ff:87:5f:7c:01:68:3c:53:21:2c:e5:
6d:1e:00:65:46:e5:3a:27:88:f9:e6:1a:ad:6d:8f:
7c:2a:d0:2f:3a:54:41:a0:21:0e:32:41:7d:11:c4:
63:d6:6f:a4:b0:67:cc:c3:fe:3e:09:fa:30:bc:fc:
73:ed:dc:0d:4b:06:77:82:35:5c:1d:4a:5a:89:c4:
95:52:8d:5b:67:c1:77:29:6b:ad:be:7a:37:79:50:
16:6a:9d:ca:9e:9a:77:5c:f6:ce:4c:4c:e1:c2:85:
61:b5:a6:c1:ff:84:7b:2a:6f:58:04:b5:0b:ac:0f:
a1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:42:D7:24:80:F2:1B:A8:28:67:B9:78:DB:A1:24:F4:53:ED:05:87
X509v3 Authority Key Identifier:
keyid:1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:7a:c3:5b:83:7f:c2:08:15:35:6a:5a:1f:80:cb:b1:7c:db:
2d:3b:0f:98:4a:a9:2b:6b:d8:34:a5:a0:89:dc:8f:c8:82:82:
07:dd:42:8c:88:20:25:ce:90:bd:6d:01:c7:d6:ce:5b:dd:b9:
5b:20:6a:ff:83:b5:7d:ec:f4:9f:e6:ec:76:49:6d:e6:1e:1b:
c8:0b:c6:e6:3a:6e:86:fb:66:ee:ed:e7:52:f8:5c:62:e2:44:
f2:c0:da:06:d3:71:98:ab:ca:b9:d4:6e:8b:ba:33:3a:5c:10:
e1:fb:23:9b:d6:0c:d2:2e:ff:87:84:0e:83:1c:2e:8a:0b:d7:
4f:33:72:72:b0:45:c3:a7:57:77:4f:13:bb:ed:1c:2e:35:9d:
8d:95:5e:a9:2d:7f:01:0b:cd:24:12:44:48:f7:c8:3d:90:53:
42:98:2a:42:22:68:50:1c:f8:0d:3f:b2:b5:9f:80:65:5a:fc:
07:c3:32:82:04:3e:25:f0:07:a1:a6:be:58:48:07:ec:a9:fe:
c3:63:a1:a3:bb:85:b8:cd:bd:8f:0f:62:d0:89:bd:6d:42:ad:
eb:fa:17:d7:ca:f8:65:95:d4:78:0a:26:aa:db:d4:d7:7c:4d:
71:44:92:0a:66:d6:9a:51:1e:9d:bd:5c:34:8a:7e:dc:6b:c0:
e5:ba:ea:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:54:54 2025 by rpki-client