Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json)
Hash identifier: 8ric8W7mN1mKXmRXP+KfplCB+LDv94s7+4ICwYQhzbQ=
Subject key identifier: 81:C9:96:BC:58:C3:42:1C:06:AF:BF:65:38:E2:E3:03:50:F3:00:8E
Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Certificate serial: 01967A56EB7D3EC58CCFBAF7CB695F3331E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
Manifest number: 150F
Signing time: Mon 28 Apr 2025 03:00:38 +0000
Manifest this update: Mon 28 Apr 2025 03:00:38 +0000
Manifest next update: Tue 29 Apr 2025 03:00:38 +0000
Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: RprdhEWplU4aZ3PnvwsQ3y8uY+XT4b6+Gx9i4gDeDls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:56:eb:7d:3e:c5:8c:cf:ba:f7:cb:69:5f:33:31:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Validity
Not Before: Apr 28 03:00:38 2025 GMT
Not After : Apr 29 03:00:38 2025 GMT
Subject: CN=81c996bc58c3421c06afbf6538e2e30350f3008e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:8d:72:82:e0:c8:3e:bf:54:2b:81:63:41:
46:f1:83:57:93:ce:ea:ee:1c:ee:0b:1e:19:66:6c:
6b:80:4c:72:35:64:b1:0f:b1:eb:bb:76:7d:05:51:
5e:06:45:c8:47:be:fb:c2:23:fa:71:73:c1:0f:f7:
34:32:7b:11:86:a5:24:8a:cd:ac:af:7a:5e:84:3b:
b4:77:9f:ba:8e:22:60:06:6b:a6:ec:6e:5c:ca:5b:
cc:9c:59:60:1e:bb:4c:d1:2d:80:64:37:c8:27:d7:
da:06:d8:43:4c:3b:8e:6b:e1:29:87:93:2f:ac:b3:
9d:74:de:33:8c:27:b7:d1:15:d1:90:50:c6:06:f9:
db:c6:e2:a0:9a:fb:ac:a0:6f:03:67:8b:b0:59:a3:
e4:6c:26:de:67:d2:89:0a:14:6f:44:8b:62:88:50:
47:05:bb:d4:74:fa:24:9b:b4:dc:1e:da:3f:b7:ea:
68:39:3a:03:ec:a6:0a:df:40:6b:a5:5e:a8:e9:64:
6f:7e:20:c1:24:25:2c:00:aa:01:f6:b9:38:2b:1e:
02:ff:fa:b5:2d:62:f2:1a:1a:9c:42:f9:1f:3d:dd:
82:30:22:ee:5a:1e:cf:41:32:cc:08:4c:c1:1a:bb:
6b:d3:69:d0:d2:15:fc:0e:a5:19:43:bf:3f:45:7b:
86:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:C9:96:BC:58:C3:42:1C:06:AF:BF:65:38:E2:E3:03:50:F3:00:8E
X509v3 Authority Key Identifier:
keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:07:b5:14:5d:72:ef:37:91:c1:f5:d5:35:fc:ce:a2:ab:3a:
90:4e:62:b8:5d:19:d0:97:39:da:eb:00:c3:4c:4f:04:ce:b4:
c6:e1:65:8e:70:42:76:59:31:49:76:0a:f1:1d:b8:d9:65:24:
a4:c4:d2:e2:93:47:4c:63:37:e3:5c:ff:f3:36:72:15:b9:c3:
34:1d:38:d8:4d:cf:93:f9:bc:f3:00:56:4e:82:56:a6:38:b5:
f3:50:e1:77:bc:bf:e4:de:d5:c0:74:fe:db:a3:aa:1a:34:16:
93:74:14:06:35:30:44:07:0d:5c:7b:40:d7:62:4c:67:08:13:
3a:a3:a7:2d:93:f6:26:21:10:d0:53:ea:98:ee:97:bb:65:4b:
2b:7c:f2:b0:e2:d3:7c:e7:5d:21:ef:a0:d6:3e:09:3b:c5:df:
3c:4c:c5:bd:28:c0:a2:8b:8e:ff:b3:94:eb:04:7f:45:34:98:
68:c3:d2:74:29:b8:ae:1d:fb:19:d3:fa:19:8e:f5:6d:dd:a5:
7e:c0:d1:bc:e6:be:7d:78:fc:98:62:a7:c4:08:08:cc:b8:0d:
dc:a8:1a:1f:cd:f2:db:8c:d9:ea:b7:42:99:6c:4d:46:f4:b5:
b6:00:e5:b8:2e:d5:93:f3:ed:54:ee:c4:50:65:11:92:62:2e:
cd:81:33:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:20:56 2025 by rpki-client