Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json)
Hash identifier: Wx5fIG4eExheVIxRaKgfLn7yzPnnZ0Mox9tJcT/YNBk=
Subject key identifier: 33:0E:73:44:A5:11:14:B5:C3:F7:F5:38:AC:C7:B2:BD:DF:8C:7C:03
Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Certificate serial: 019769CE61A9A3E101B97AE5468B65E82D54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
Manifest number: 158B
Signing time: Fri 13 Jun 2025 15:00:22 +0000
Manifest this update: Fri 13 Jun 2025 15:00:22 +0000
Manifest next update: Sat 14 Jun 2025 15:00:22 +0000
Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: /L2yF6BJO3LAs+ZQxMHU5gD20wecZbg0PNRKVr3PVKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:61:a9:a3:e1:01:b9:7a:e5:46:8b:65:e8:2d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Validity
Not Before: Jun 13 15:00:22 2025 GMT
Not After : Jun 14 15:00:22 2025 GMT
Subject: CN=330e7344a51114b5c3f7f538acc7b2bddf8c7c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b7:97:b6:48:f1:69:b0:16:ec:26:17:22:95:
54:79:d0:2d:7f:68:de:d8:08:53:57:ec:81:d0:f2:
2c:fb:88:b8:47:32:47:9f:18:59:5f:97:32:b9:86:
ee:cd:53:da:be:05:af:1b:f6:b2:00:47:64:fb:77:
e2:f4:19:14:1f:88:5a:a9:09:ec:85:b9:d7:ca:91:
03:9a:cb:47:8b:e0:ac:65:14:91:ce:89:a4:ad:12:
e3:d4:90:37:0a:43:ee:6b:92:e2:0a:d3:b3:50:f5:
cf:4a:a0:ca:d9:08:23:c3:bc:8f:9f:53:45:04:3a:
d2:0b:43:b8:e9:e4:79:50:47:f9:ce:61:c4:ed:98:
47:b6:b1:b2:e5:56:63:5e:f2:d2:70:46:5a:a4:25:
95:2b:4b:89:8c:6b:28:ab:14:cb:51:3c:b0:e7:df:
a4:60:ab:d0:be:88:3e:e3:ae:87:06:d7:0c:14:a0:
a5:32:74:60:c6:01:de:d5:c2:c1:a6:82:b8:09:86:
2a:b2:ad:bc:d9:ee:75:1b:1d:4e:b1:1d:67:69:13:
ab:8b:62:ce:42:76:a9:f1:46:49:2c:a0:e6:70:ac:
63:c6:85:07:78:41:9e:57:c8:b9:78:29:68:b2:c2:
d0:98:b2:1b:cc:8d:37:33:e2:8b:83:5b:be:18:fd:
ef:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0E:73:44:A5:11:14:B5:C3:F7:F5:38:AC:C7:B2:BD:DF:8C:7C:03
X509v3 Authority Key Identifier:
keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:b7:1c:19:1d:15:46:78:87:ea:2e:0d:c0:58:81:47:32:6b:
59:bf:2e:40:eb:15:17:97:db:27:6c:2d:ac:04:10:ae:2f:de:
33:08:0d:77:c3:b5:91:bf:a2:e6:68:f1:28:e6:75:a4:05:54:
ee:76:5e:21:0d:38:c5:e2:40:c9:0c:04:f5:06:54:43:76:b5:
dc:e9:5e:cb:ed:f0:9e:89:86:97:a2:09:ea:d0:b1:75:5c:54:
09:1b:9b:4e:85:ca:18:83:96:fe:77:01:8d:dd:ec:93:b9:d9:
20:2b:71:43:67:a8:72:98:99:9c:2d:2b:d6:16:56:af:6d:1b:
53:a0:05:d3:8d:02:df:c4:7d:d2:cf:ca:ef:de:74:1d:c1:b9:
a6:26:22:21:17:3f:88:31:f7:a1:a5:26:85:8c:b9:b4:d4:b6:
15:86:85:44:ac:9a:92:c0:3d:c1:53:f7:8d:dd:63:20:16:ac:
05:af:7b:d5:43:dd:78:2c:a9:e9:0e:86:71:fe:48:23:3b:4d:
b2:76:4c:62:d9:83:9b:1a:db:eb:71:f8:92:98:c2:ff:fe:d5:
c3:1b:3a:b1:30:00:e1:37:35:67:b4:38:42:c4:6e:46:48:a4:
97:08:8a:4c:18:cb:cd:ce:d4:1a:fe:66:f9:39:6d:09:a3:69:
0a:90:f7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:58:22 2025 by rpki-client