Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
File: hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json)
Hash identifier: q4tsS+bNm+akJ9RwYQW14B/HSI0V+C3nSJl9OU018OE=
Subject key identifier: F2:15:6E:92:B6:0F:CF:9D:1D:6C:26:D9:A3:84:EB:F6:E1:25:F8:D3
Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
Certificate issuer: /CN=85512d19d37946cd4c236f890469635751f5d904
Certificate serial: 01967E33D5C3D12EFA5124BEC470D6D8D75E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
Manifest number: 150E
Signing time: Mon 28 Apr 2025 21:00:48 +0000
Manifest this update: Mon 28 Apr 2025 21:00:48 +0000
Manifest next update: Tue 29 Apr 2025 21:00:48 +0000
Files and hashes: 1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: t/cMZ6IFqazGKPIYbmK3CLatn1g24VLDHkUe+2howRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:33:d5:c3:d1:2e:fa:51:24:be:c4:70:d6:d8:d7:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85512d19d37946cd4c236f890469635751f5d904
Validity
Not Before: Apr 28 21:00:48 2025 GMT
Not After : Apr 29 21:00:48 2025 GMT
Subject: CN=f2156e92b60fcf9d1d6c26d9a384ebf6e125f8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:77:c9:e4:b0:16:95:ce:b9:fc:f8:8f:c2:
7b:56:18:2a:a5:01:6c:b9:cf:42:b1:e1:3f:9b:0c:
e3:25:78:7a:0a:e2:e3:ee:89:31:77:e0:c7:ec:4c:
a4:e3:ff:0b:31:24:5f:fc:88:0b:b6:ec:55:0e:88:
fd:b9:77:f7:4d:26:31:23:ad:81:c3:f4:d6:76:71:
2a:45:56:95:50:9d:33:7e:13:65:df:36:64:87:bf:
fa:f7:9b:37:77:2c:f6:f8:8a:34:01:9c:72:7d:c4:
8d:7b:0b:ad:85:91:55:c5:f0:bc:56:a2:aa:9e:3b:
c5:13:60:c1:ea:71:11:f5:4c:30:14:c1:ab:8f:74:
de:9a:7e:e1:0f:ca:1f:7a:c5:33:02:91:6e:6c:ce:
be:71:4a:90:bc:04:b9:15:4d:0a:11:5a:a6:2c:ec:
bf:d5:6d:0d:3b:09:81:80:1e:25:1b:00:e5:de:d0:
d4:44:e1:8d:4e:3d:1e:7f:46:d4:2f:3e:44:f7:1f:
10:e1:b6:c4:26:f6:0b:97:ea:38:da:91:37:24:03:
0f:8a:9e:62:b5:78:4a:b7:10:83:b3:cf:31:43:e3:
d3:bf:e7:8d:0b:05:ca:5b:33:5a:83:03:7b:93:29:
03:4c:1a:8e:40:d7:b3:fa:2d:f7:1b:f7:45:33:ff:
9a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:15:6E:92:B6:0F:CF:9D:1D:6C:26:D9:A3:84:EB:F6:E1:25:F8:D3
X509v3 Authority Key Identifier:
keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ee:2d:e1:b1:7c:09:13:f2:88:b1:5a:34:c1:5b:66:45:98:
cb:fa:df:53:d0:89:70:ec:f8:12:ed:62:6d:7f:42:34:b3:68:
18:08:f7:da:3a:2d:bd:c5:5d:80:b3:2c:9b:28:1a:ef:1b:25:
a1:08:8b:00:79:3a:8a:46:ea:13:2b:57:9b:5b:06:1d:17:cb:
04:97:1b:d7:62:27:2d:23:31:54:9f:fd:65:e4:3b:f6:0e:57:
6d:6f:8d:5a:27:f6:54:db:cc:c7:65:c2:27:05:76:3f:cb:6f:
36:ad:1a:33:53:38:1b:03:a0:a4:eb:f2:c5:8c:82:28:55:17:
20:12:6a:69:db:68:2a:a1:19:62:3c:35:5c:23:bf:5b:ed:3f:
58:08:e6:12:83:dc:63:fc:59:6f:6f:16:d4:b9:2e:5f:d9:92:
f5:3c:a6:b0:b1:61:79:ee:b9:c6:e1:eb:1e:9a:09:98:32:de:
e7:19:cb:df:bc:b8:38:4b:01:17:67:d9:50:8f:51:2a:2e:5e:
a6:29:87:cb:0b:f0:97:98:27:e9:7b:56:43:61:68:68:a0:09:
bc:1a:21:8c:c4:6e:a2:4a:54:a6:4c:63:d4:2c:29:0d:ac:06:
73:e8:2c:8d:dd:5d:22:41:18:35:de:ba:67:e9:fa:ae:dd:30:
2d:b9:7a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:25:23 2025 by rpki-client