Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: sXgvAryOCClYTRtJYzPdjl8oVzGy1u5KFh5NkRECB/4=
Subject key identifier: FE:32:8B:02:38:0E:06:FE:30:13:4C:C5:36:0F:38:11:F7:DE:1F:08
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 019510FDB377017A0599C22860E0970E8194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 1458
Signing time: Sun 16 Feb 2025 23:00:16 +0000
Manifest this update: Sun 16 Feb 2025 23:00:16 +0000
Manifest next update: Mon 17 Feb 2025 23:00:16 +0000
Files and hashes: 1: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: eXmUsTo0CsCFbQSqEaA1GiMBTR/sxNfd14b8dLboDWY=)
2: xSS92RJP_9kDYA2uBQZz6tpYK1I.roa (hash: rR5n4U9xDx2H85hw0wOs3NY+BK3tAcVO4QlJE3rUQXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:b3:77:01:7a:05:99:c2:28:60:e0:97:0e:81:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Feb 16 23:00:16 2025 GMT
Not After : Feb 17 23:00:16 2025 GMT
Subject: CN=fe328b02380e06fe30134cc5360f3811f7de1f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f5:87:53:9e:60:9c:39:38:b3:70:9f:0c:4b:
34:8d:14:d4:84:c3:53:3f:19:fa:c5:ed:c1:1c:d3:
8d:c8:18:e8:d9:7a:b5:69:35:77:99:10:51:58:87:
d1:30:72:65:c1:1b:ea:31:ac:8f:5d:a9:b3:58:b4:
2a:74:a1:f2:91:a6:68:7e:7d:a4:1a:1c:cc:5d:06:
e6:b9:0f:06:c4:e5:e3:75:eb:13:82:2a:6d:1a:00:
4c:70:d8:c2:54:9b:06:a7:bd:72:ed:88:4c:18:81:
16:7e:f4:a0:6c:73:be:f3:1e:5a:c4:cb:c6:08:bb:
4c:fc:56:2f:e1:66:46:b7:5c:03:91:c9:dc:bd:29:
ae:2b:62:b2:c3:a2:27:bb:6f:f2:58:93:a9:35:99:
43:bc:ed:39:37:71:a0:50:5e:4d:3e:95:f1:3a:7a:
25:60:55:ed:9a:a9:11:24:65:5a:d8:21:ce:a8:5f:
3d:e3:c6:be:16:39:2e:0a:99:ae:9a:c8:a2:c3:cf:
8e:31:c3:af:e7:05:59:e8:b0:e3:ad:d0:0d:43:93:
f1:0a:73:ba:95:a7:01:82:fb:aa:bd:3b:61:30:74:
17:d8:1a:e8:12:9b:d3:60:32:ef:1b:c0:58:6c:0f:
a7:a9:43:8a:99:bb:00:b8:61:32:77:6c:96:b8:67:
dc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:32:8B:02:38:0E:06:FE:30:13:4C:C5:36:0F:38:11:F7:DE:1F:08
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:59:43:7d:44:f8:2d:c0:43:6b:ba:e8:91:a9:dc:fa:49:a9:
b6:87:89:ab:96:56:f0:a8:89:78:86:47:35:9c:26:4d:f7:3e:
c7:e7:f3:f0:35:48:46:9f:14:ac:61:d2:d9:ec:f0:e9:f4:43:
7f:7a:96:93:b3:9d:35:e7:ca:6f:3d:df:0b:a0:5a:6a:49:ba:
62:5d:9b:58:5f:45:dc:d4:1d:45:08:26:55:2d:ca:6b:02:0c:
ec:9c:55:32:f2:6f:bf:b7:b4:02:4d:98:9f:c7:0e:a1:04:ac:
a0:ff:f2:ea:11:ef:85:98:3c:6a:4b:05:e6:55:b2:8d:37:b9:
9f:6c:d9:8e:8c:4e:7a:f7:3a:fa:c7:97:2e:fe:28:40:10:c4:
de:8d:2b:72:9d:84:82:7a:04:87:5b:e1:a3:4d:22:4a:df:17:
00:f9:8a:db:e3:d0:14:64:65:c8:03:81:d8:3b:18:c8:fd:ad:
8f:97:cb:27:da:f4:ad:0b:7d:87:ea:40:a6:69:9a:44:30:64:
19:bc:04:08:04:8e:09:47:d2:0a:90:17:41:e6:9f:2c:48:e9:
0f:d1:52:1b:a5:81:78:77:10:be:2a:65:1b:58:b2:3b:68:31:
d5:1f:ce:51:ff:00:48:73:50:e7:5d:51:10:18:b3:10:b0:f1:
c0:80:84:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:11 2025 by rpki-client