Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
File: pQHIn0SCnHLyqVPSorpK4Le1DYo.mft (raw, json)
Hash identifier: 14y2r7o2kP8nORgeXubzp84h7qbRw8UgnNdBDl6mgew=
Subject key identifier: 6A:5A:90:0B:31:62:06:77:70:F8:7A:6D:E5:8F:5E:34:A4:17:29:46
Authority key identifier: A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A
Certificate issuer: /CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a
Certificate serial: 0195116B98CA8D0DE43F6A040A84FBEFB8B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 01:00:18 +0000
Manifest this update: Mon 17 Feb 2025 01:00:18 +0000
Manifest next update: Tue 18 Feb 2025 01:00:18 +0000
Files and hashes: 1: D5U1j0YPEDas8bxMtDOehRJb48U.roa (hash: AkMtfy33YmmtJG2wcdM/0Qvh01UPoaXKoDXm68LNuus=)
2: pQHIn0SCnHLyqVPSorpK4Le1DYo.crl (hash: C48pOfd5Voy+d1OG/0mMA9w1VeRmqbeKdIaeOWp0vZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:98:ca:8d:0d:e4:3f:6a:04:0a:84:fb:ef:b8:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a
Validity
Not Before: Feb 17 01:00:18 2025 GMT
Not After : Feb 18 01:00:18 2025 GMT
Subject: CN=6a5a900b3162067770f87a6de58f5e34a4172946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3b:f6:b8:7e:59:3d:82:a0:4b:11:21:e6:46:
9d:47:14:df:43:c4:31:1f:8a:cd:b0:bc:6c:97:81:
bc:64:4f:61:20:dd:79:85:4c:12:ca:27:e2:2c:77:
8f:04:b8:46:01:e6:4e:4a:ab:85:9e:dc:95:38:37:
ec:80:fd:9f:89:7d:fc:75:cb:b2:1e:aa:f8:ab:f5:
14:53:4c:11:02:6f:e2:41:9c:b5:49:8e:30:98:c3:
cf:09:35:1c:fb:4e:91:7c:4e:30:cc:0f:22:3e:54:
43:e3:64:ea:da:0f:5d:c7:3a:13:62:0f:5a:2d:96:
49:ec:74:22:ac:83:69:ec:b7:7c:6a:6e:48:0b:8e:
ae:ab:95:0f:b3:87:b8:33:a9:59:ca:e3:54:97:97:
49:9b:3b:63:7c:31:57:22:b1:89:97:36:94:bf:6c:
a0:ff:a8:25:9f:8d:c2:77:75:e5:95:ac:25:12:a3:
ea:49:12:75:aa:c3:d8:08:8f:78:de:13:5e:91:f8:
73:86:6e:f3:6e:bf:07:dc:db:7f:36:ab:b1:c1:65:
4a:b3:29:86:99:64:73:2a:a6:6b:b4:de:7c:92:b1:
39:5e:c2:00:f9:74:52:3d:a1:70:98:c0:da:ac:8b:
18:e2:94:49:ad:d5:5f:53:44:1e:7c:79:98:a1:36:
18:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5A:90:0B:31:62:06:77:70:F8:7A:6D:E5:8F:5E:34:A4:17:29:46
X509v3 Authority Key Identifier:
keyid:A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:69:21:ec:e6:53:ad:3d:99:6a:04:cc:7c:f4:48:a5:5a:a7:
56:36:07:81:23:a7:88:34:ed:e8:92:70:9b:bd:fe:79:6d:5d:
47:c1:29:3c:13:59:e7:67:76:03:9a:70:ee:db:24:6d:7b:5e:
9f:22:12:e8:62:0d:20:d0:23:a1:9c:be:3a:c3:2b:8b:1f:d4:
a5:12:5b:81:ab:e5:45:60:c7:0f:9c:9d:61:5d:0c:4e:37:cf:
87:b6:80:3f:20:65:29:45:8d:d4:af:5f:4a:f6:80:15:d7:cc:
dc:8c:4e:22:ed:13:10:be:d2:a1:fa:db:b1:56:f0:30:df:b7:
47:09:b7:54:a5:f6:47:f2:da:0a:be:29:db:96:58:50:07:45:
03:c2:c9:dd:09:9a:9f:67:0f:5b:9f:ed:c5:9a:67:ec:a0:88:
7f:6d:6b:8e:23:a2:03:89:ff:c4:ae:8d:d0:41:42:a9:8f:06:
42:ee:8b:bb:26:93:14:63:7c:0a:f9:8b:1d:1c:8a:d7:81:72:
40:c1:31:de:94:44:ae:1e:f3:c3:14:8d:9a:97:1d:4f:92:63:
39:9d:c8:9f:48:24:38:58:6d:be:dc:7e:5b:a7:8c:b1:e4:28:
e5:ec:42:2e:4f:92:fe:9c:9e:60:0d:3a:68:39:b0:9e:46:ab:
b3:c6:eb:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:06 2025 by rpki-client