Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: aUh5oXTVhvv30KcwVQXR64FF5VvT+NtQNIFSTbJer4U=
Subject key identifier: C2:DD:11:76:02:88:CF:1C:64:BA:DE:29:24:4D:4C:77:23:43:8E:63
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 01967643327D81C8EF594C3F52BF94100DAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 0626
Signing time: Sun 27 Apr 2025 08:00:37 +0000
Manifest this update: Sun 27 Apr 2025 08:00:37 +0000
Manifest next update: Mon 28 Apr 2025 08:00:37 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: +2uey2yhJ3LKVuvYXw5YA5oAButm4eMc40kTbE470xY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:32:7d:81:c8:ef:59:4c:3f:52:bf:94:10:0d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Apr 27 08:00:37 2025 GMT
Not After : Apr 28 08:00:37 2025 GMT
Subject: CN=c2dd11760288cf1c64bade29244d4c7723438e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:41:81:46:3a:6c:49:26:1c:ed:18:55:e1:94:
da:b4:ae:ed:f6:39:ab:b5:62:50:e2:10:9b:d2:33:
6a:02:0c:c9:c1:79:22:6e:0f:d1:a0:22:51:6c:5d:
af:a1:e1:93:4c:b7:18:c9:e9:f2:fd:4c:0c:c9:55:
64:90:ab:28:5c:8a:99:18:19:35:4f:0f:35:85:98:
9d:29:fe:5a:2c:72:c7:31:52:ed:ee:71:e6:29:33:
d3:9b:9f:12:a2:b0:34:81:22:57:d5:01:dc:27:97:
08:ac:38:67:fe:53:84:1b:b5:4a:21:66:94:1b:40:
28:cf:8f:5e:20:13:e5:f8:5d:a4:a3:7f:73:49:a1:
59:fa:3c:65:91:9e:01:26:28:0d:2a:94:d7:ce:30:
ce:5f:1c:43:e6:91:dc:78:e1:28:80:e6:80:01:76:
9e:82:f6:7f:58:9e:5c:2e:27:cb:6e:dd:80:0d:28:
eb:ee:4f:53:a6:90:a4:ee:bb:fc:1a:85:0f:21:7c:
6b:39:2d:21:59:6d:e4:82:b5:c4:34:3c:99:b0:fd:
b2:78:f5:a4:5b:24:59:2f:ca:83:a6:a9:44:f4:c5:
43:b3:90:cd:93:68:a1:b7:bb:28:41:7b:5a:4a:f0:
68:02:e5:6d:f8:37:0f:06:22:10:08:b1:13:b4:9d:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DD:11:76:02:88:CF:1C:64:BA:DE:29:24:4D:4C:77:23:43:8E:63
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:7f:f2:e8:48:64:e0:37:d8:46:ab:d0:f8:85:34:38:75:a5:
d0:de:31:f6:7b:2d:96:9e:7e:7c:0d:5b:75:ff:c1:a4:3a:09:
a3:5c:a5:cd:16:35:b0:06:4a:b1:6c:8d:7f:b6:71:ec:b5:1d:
07:4c:b5:a1:29:99:bd:21:e4:39:04:37:7b:72:f8:c9:a0:89:
34:31:04:47:be:e8:87:0c:6b:d3:08:71:8f:fe:74:b9:b6:1c:
02:9f:74:55:48:43:c1:06:66:d0:6c:b4:1f:0d:70:28:2e:86:
76:c2:dc:3e:1a:31:6c:59:5f:9e:d4:e7:ac:81:e3:8f:21:7a:
09:7b:ff:1b:bd:1a:6f:78:24:8a:30:94:60:97:00:72:f6:ed:
9d:2a:b8:17:cc:53:4b:5d:fb:b5:67:d6:60:a6:5a:da:f4:99:
7d:77:33:fb:95:33:f5:07:bc:07:c0:e6:fd:21:77:dc:74:48:
11:a9:f2:ae:b6:a1:f3:49:f2:fc:93:be:d9:b1:c6:91:0c:79:
74:5a:f7:0f:46:81:69:6a:80:95:07:66:c0:a1:0d:78:78:df:
81:58:6f:10:b1:8a:50:eb:1b:64:cb:5d:d6:71:d8:48:0f:f0:
3f:5c:36:ec:70:ee:d5:f9:27:7a:53:e1:d2:96:c3:93:9a:8e:
1a:11:cb:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:11:20 2025 by rpki-client