Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json)
Hash identifier: pBl9CgUven6O6u4SGf/koQR0L2dIR2T3FwMQSmRF348=
Subject key identifier: D1:81:F1:AA:B9:CC:AB:56:04:1E:30:A8:D7:DC:04:70:D8:FD:4A:ED
Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Certificate serial: 019679B1F510E4850CCD90528E47E6C4E857
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
Manifest number: 0345
Signing time: Mon 28 Apr 2025 00:00:27 +0000
Manifest this update: Mon 28 Apr 2025 00:00:27 +0000
Manifest next update: Tue 29 Apr 2025 00:00:27 +0000
Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: D6K3IwpJXN81WP5ZbXitOWOitIDccN6E5oaJ7AKla9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:b1:f5:10:e4:85:0c:cd:90:52:8e:47:e6:c4:e8:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Validity
Not Before: Apr 28 00:00:27 2025 GMT
Not After : Apr 29 00:00:27 2025 GMT
Subject: CN=d181f1aab9ccab56041e30a8d7dc0470d8fd4aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:98:8f:ef:71:09:e4:46:79:32:63:7e:3e:95:
db:66:a4:3d:69:49:9b:f1:bc:b6:af:f3:53:16:e3:
3b:ad:db:ed:ee:9a:25:7a:05:c4:57:9a:3a:11:1f:
12:cf:54:26:b8:48:1d:cf:55:fb:30:c4:41:1e:99:
44:25:09:bd:8c:40:28:9a:13:ef:64:88:e1:17:34:
c6:e2:12:11:45:89:bd:de:23:fe:31:d7:36:f9:04:
34:9d:10:39:a2:76:67:72:85:1f:7b:e1:e1:a9:17:
b3:af:f2:93:e2:e7:5f:5d:f3:99:e8:7c:da:53:1f:
6b:80:1f:d8:6f:d4:89:ed:0a:45:66:3d:93:2e:44:
0c:c8:c2:46:ee:2a:0d:11:fc:f4:71:7a:e3:b3:56:
54:0b:b4:22:0f:76:c2:80:71:ee:0a:10:d6:8d:59:
da:71:3f:86:2b:9a:c0:80:22:76:3a:7a:73:e3:d9:
0a:7c:cf:46:78:bc:1f:54:23:e4:cf:ee:a0:72:6a:
e6:5d:06:89:49:02:22:ca:e2:ce:e2:ff:46:56:8c:
8b:41:4b:78:4c:2a:dc:2d:d6:31:2b:05:50:45:4a:
a6:f7:f8:ed:cf:ac:c9:b5:2d:f9:09:36:39:8a:a4:
86:7a:c9:a1:34:1d:c9:97:8f:37:3e:dd:2b:0d:92:
57:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:81:F1:AA:B9:CC:AB:56:04:1E:30:A8:D7:DC:04:70:D8:FD:4A:ED
X509v3 Authority Key Identifier:
keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:6b:6e:1d:68:58:75:b1:50:55:1f:7a:2a:92:28:21:3a:1c:
26:f0:e8:a3:2d:56:b0:70:65:77:98:c9:b5:35:95:69:87:d0:
0d:7e:87:0a:81:03:6a:b4:51:7a:ea:5e:a0:97:b3:3a:f6:d7:
9b:aa:f9:e0:d1:d4:68:1c:85:b0:3c:85:e8:92:18:e9:25:1c:
f2:39:53:8d:a4:0f:ce:38:4c:da:c9:30:d5:b3:de:a8:11:7e:
12:56:ea:d8:bd:6b:3f:83:9e:d1:8e:2a:6c:62:49:a0:4c:95:
97:38:6c:78:a3:34:a2:6d:2b:88:f1:4c:fd:03:32:ab:69:6a:
6d:36:42:bc:d3:10:9b:fb:ab:cf:94:99:d7:b2:82:29:07:9b:
c3:75:c4:b4:70:58:66:1f:5a:7e:c6:61:65:cc:ba:44:26:55:
ca:e4:23:17:29:78:b5:d9:77:7c:90:75:82:1c:a0:16:aa:81:
a1:72:77:a8:a4:37:57:db:58:f2:fc:1e:66:4a:e5:0e:d0:96:
0d:c7:7a:83:4b:93:d9:2c:4d:12:6a:bf:33:94:9f:7b:a0:fd:
a3:9f:67:02:77:db:43:6b:3b:ce:aa:32:82:37:b7:3d:29:9f:
c5:26:df:75:aa:49:77:ee:37:2c:4e:a4:cd:4a:2e:3a:d6:5f:
f2:5c:3c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:53:24 2025 by rpki-client