Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
File: hqnzrkX3AVCvF-uHiel4iQKe5dM.mft (raw, json)
Hash identifier: H8uA+Eyqe02X2YnHm80R0xwRxlnqEzh6Y6CmM2Rh5NQ=
Subject key identifier: 77:E7:5F:2E:34:D8:0E:95:A0:5C:0C:02:E8:97:F4:16:CA:1E:EA:3D
Authority key identifier: 86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
Certificate issuer: /CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Certificate serial: 019511355B5C66F985ED33E0BE9479E64056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
Manifest number: 1455
Signing time: Mon 17 Feb 2025 00:01:04 +0000
Manifest this update: Mon 17 Feb 2025 00:01:04 +0000
Manifest next update: Tue 18 Feb 2025 00:01:04 +0000
Files and hashes: 1: 6b_z1nYhros0lFsJJ-v5kZEUQbE.roa (hash: lcqP5Znx2EuUXx9SjdDPzhxT49PtsEmnOX0/yWwCL10=)
2: hqnzrkX3AVCvF-uHiel4iQKe5dM.crl (hash: xR55FrgTnLOnoW+hrjH2YXGiyNiLe0xtVsHrQuJJEmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:5b:5c:66:f9:85:ed:33:e0:be:94:79:e6:40:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Validity
Not Before: Feb 17 00:01:04 2025 GMT
Not After : Feb 18 00:01:04 2025 GMT
Subject: CN=77e75f2e34d80e95a05c0c02e897f416ca1eea3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4e:8c:aa:3e:a4:73:48:6e:ca:53:dc:b8:d2:
ae:53:b9:cd:c7:09:7b:46:af:61:1a:24:78:00:42:
8c:49:03:9c:8e:3d:f9:f2:a7:4f:7c:0c:ae:3d:62:
cc:a7:2d:68:84:50:66:6c:91:0f:15:a0:7f:7e:5a:
0c:67:60:a0:4b:37:fc:72:ed:ba:a4:6c:12:97:a2:
08:17:00:ef:6b:ce:c0:bc:82:98:70:97:d1:37:02:
02:05:7b:75:0d:e8:e2:4f:76:1d:0f:ec:44:80:fc:
27:f9:13:73:97:8e:11:85:99:b2:bf:33:54:ed:ea:
74:6f:96:cd:2b:f5:40:37:dc:79:33:df:d0:03:05:
e3:18:65:d2:64:5c:be:9c:8c:5f:60:19:29:3d:b6:
e9:e2:6c:c5:ec:76:3f:f4:c5:37:6b:fb:90:9a:8e:
50:2a:1c:ee:88:1b:50:76:43:8a:48:fa:16:13:d3:
01:1c:22:de:ce:fd:d9:c0:a4:4f:c9:ec:8d:3c:87:
60:c6:f1:68:f0:26:30:df:cf:fa:59:91:5d:09:9a:
e0:93:24:39:57:bd:e7:0f:07:eb:13:05:ed:dd:b3:
f5:31:9b:c4:28:1b:1e:dc:c7:25:5b:c5:9d:7c:19:
a2:c4:e8:bf:bc:71:73:8b:6c:f1:07:73:30:71:37:
91:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E7:5F:2E:34:D8:0E:95:A0:5C:0C:02:E8:97:F4:16:CA:1E:EA:3D
X509v3 Authority Key Identifier:
keyid:86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ec:a5:b9:97:cf:59:61:b2:5a:2e:93:e4:a1:cb:ad:f1:cd:
ff:13:43:86:67:08:92:41:25:26:1a:60:eb:2e:93:65:e1:c8:
8f:18:7c:95:83:cf:bf:d4:6e:d8:01:13:e3:0e:a1:b5:31:75:
c3:a0:6a:73:4b:09:26:a9:33:f6:29:8b:5a:e5:f9:4d:2b:c7:
39:71:51:c3:8c:0b:1d:3b:af:10:91:ae:e2:21:da:53:27:c8:
90:c5:15:ec:34:33:25:8a:9f:aa:71:b3:2c:6e:1c:6b:24:19:
26:b9:d3:28:54:37:60:17:6c:65:9e:e9:aa:7a:97:59:f7:45:
65:6f:3a:5d:87:55:9f:6b:10:2f:7c:c6:d7:f9:1e:ae:a3:0c:
03:04:73:19:f6:88:21:0e:48:a5:ba:f5:24:ca:5f:27:5b:05:
db:e2:60:38:fa:8b:7f:d9:99:1b:a7:bd:14:71:21:75:61:84:
c2:bd:94:da:04:f0:7a:c6:94:e0:4b:2e:e3:7a:88:8d:ec:4a:
f3:d9:ab:c7:17:52:98:fa:19:a6:f6:4c:fd:ab:94:af:62:98:
1d:bf:88:10:81:42:38:8e:d3:c8:15:22:3c:0c:95:18:01:a3:
98:24:e0:da:93:ff:df:73:39:b3:38:33:3d:e4:bd:ee:ff:3b:
5f:29:a6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:14 2025 by rpki-client