Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json)
Hash identifier: CC+hSxlM+jkl6r2xd5PROmPQUqk/5vpkSBJsnYj334Y=
Subject key identifier: 1E:E4:4E:4B:55:44:97:49:39:B3:50:82:94:93:18:48:44:82:A1:C1
Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Certificate serial: 01958BBBC2F6BA1640774B0F851A9DE7D85C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
Manifest number: 1496
Signing time: Wed 12 Mar 2025 19:01:32 +0000
Manifest this update: Wed 12 Mar 2025 19:01:32 +0000
Manifest next update: Thu 13 Mar 2025 19:01:32 +0000
Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: zhww/MDpSnzBFdaMooHlmoZAy+xEbAyk2eFeYQyoM78=)
2: Tp4BAItGYlXYP71Yl1jvkjdBkns.roa (hash: BUC2R1hzU4lwEDEogKCUTPLUZZa/Hz8pj9j9ce25uwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:c2:f6:ba:16:40:77:4b:0f:85:1a:9d:e7:d8:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Validity
Not Before: Mar 12 19:01:32 2025 GMT
Not After : Mar 13 19:01:32 2025 GMT
Subject: CN=1ee44e4b5544974939b35082949318484482a1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:64:07:c1:f2:eb:70:82:40:2c:c2:ca:e9:d9:
a2:30:77:40:9d:b4:8b:c5:b9:e4:02:cd:73:dc:51:
44:dd:bf:c7:c7:f1:67:87:28:65:f1:d1:ac:8b:de:
f9:d8:b7:6e:12:12:de:77:17:c9:d7:53:41:0e:e1:
36:de:a9:78:8f:53:d3:5a:3c:59:a6:13:23:93:6f:
a9:f9:13:da:d2:04:3b:52:54:03:72:aa:fe:9d:48:
ce:a1:4e:f1:d2:0b:76:72:fd:31:f9:ae:c7:99:11:
24:2e:1f:ac:91:5a:3f:75:1e:6b:17:32:61:5a:f7:
d8:98:1a:35:db:e4:ee:cb:3a:82:2d:6e:e1:fb:f4:
ea:ee:7f:cf:a7:fb:92:3c:51:e7:fa:19:52:76:01:
2b:02:6a:df:5e:8e:12:9b:0e:8a:ca:18:69:04:cd:
20:5a:c8:f0:37:e9:f7:2a:cc:31:d3:fe:96:a8:65:
a6:73:50:0c:60:67:40:0d:7a:87:42:b7:66:c1:bd:
26:2c:42:77:f3:14:1d:e4:59:27:55:69:d6:00:07:
3b:c8:5a:e6:fe:48:75:b8:76:bb:7c:87:cf:cf:f7:
d6:97:40:07:79:09:32:0a:a5:e4:f2:39:91:a4:ea:
5b:98:dc:f0:4a:ed:42:35:ef:34:90:5a:c4:96:c8:
38:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E4:4E:4B:55:44:97:49:39:B3:50:82:94:93:18:48:44:82:A1:C1
X509v3 Authority Key Identifier:
keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:34:57:50:d2:cd:ba:4a:49:72:3d:c3:f4:d1:e3:5f:36:b1:
83:fe:84:ba:75:cd:5e:1a:01:9f:82:a9:d1:37:97:54:5c:d1:
85:f1:f4:4f:f5:b2:28:0d:9d:53:d2:bf:c4:4b:93:de:f3:d0:
1c:bc:39:6f:e5:72:bb:b4:da:dd:f1:75:f6:c6:05:e2:90:8b:
2e:37:2f:ab:b4:be:e1:06:78:d5:0a:7b:d9:81:39:4e:11:7d:
eb:86:8d:2d:45:b8:89:23:c9:89:b5:a2:79:11:85:4b:5f:d0:
da:cc:53:5b:72:f7:5a:d5:4a:02:9d:29:27:66:ca:20:7d:c0:
a4:5c:26:6f:97:95:e7:5a:75:c3:67:81:8b:a4:4e:9d:fa:8b:
00:1a:ca:a3:85:60:dd:7a:5b:dc:df:33:19:9b:b2:dc:a6:7a:
eb:48:1b:22:8b:90:49:ae:aa:38:e4:66:49:e2:5f:13:65:62:
32:6b:c4:66:e5:64:0f:76:9a:47:16:bf:e7:26:f4:80:9d:73:
aa:c6:08:ac:72:f8:ab:24:0e:e7:d1:73:b3:b2:fc:7c:9c:1b:
f8:52:f0:19:ba:13:c2:22:dd:8e:11:4b:e0:d0:7b:d2:92:c6:
33:26:d3:a5:b7:55:9d:80:ba:fc:fe:ee:c0:84:20:7a:01:16:
20:06:98:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:09 2025 by rpki-client