Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
File: hD0a_PE70hF9R99oPkCmMocATP4.mft (raw, json)
Hash identifier: wndGOGMMQGUPt/Tdm5FNbyvBOmSOmaKQ6r2CYMSOfCo=
Subject key identifier: 44:D8:7C:DE:53:B9:8B:A6:32:DB:A5:07:79:D2:64:86:9B:1E:7D:B7
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 0195116BD647D8A07C361E40E7AA0F6AAE25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
Manifest number: 10FC
Signing time: Mon 17 Feb 2025 01:00:34 +0000
Manifest this update: Mon 17 Feb 2025 01:00:34 +0000
Manifest next update: Tue 18 Feb 2025 01:00:34 +0000
Files and hashes: 1: OvE7gVL8MCEWJHKpQXsF4bPe3UM.roa (hash: l4/jaJLOp+Avt+TjQWwkFvtdykblfc3pi7YpMoKQxCI=)
2: gRQ4yCuvseaLE57M9fowKbjZKdc.roa (hash: 2erIoIyPnSV3Zcfsjq1qAurwTSkvBBBTKvIM2MmgiUw=)
3: hD0a_PE70hF9R99oPkCmMocATP4.crl (hash: O6pzpt2DoZRf+7K1O0Iywj4WN7GcSAWYq8uVwJ+xKJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:d6:47:d8:a0:7c:36:1e:40:e7:aa:0f:6a:ae:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Feb 17 01:00:34 2025 GMT
Not After : Feb 18 01:00:34 2025 GMT
Subject: CN=44d87cde53b98ba632dba50779d264869b1e7db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cb:59:19:5d:90:81:31:49:9a:d8:92:93:94:
9f:c6:67:48:c2:4d:8e:70:49:f4:ec:f4:f3:78:ef:
19:3c:0b:22:bb:dc:32:ed:f3:ee:b7:3d:8f:38:ca:
6c:2a:2b:82:90:d2:c9:16:96:11:63:3a:b0:04:d8:
e7:2e:44:03:b8:36:e7:32:a4:df:9c:9a:da:37:5f:
77:d4:5b:fc:b0:37:69:47:98:18:5f:7d:96:54:b8:
6f:dc:ff:13:14:de:46:86:84:13:a0:fd:97:5e:e1:
83:b2:89:82:da:8c:33:8a:91:01:14:e3:2f:ba:63:
4b:ed:a0:23:f4:72:b8:09:40:1a:50:b2:bd:69:2a:
a5:6e:27:e9:87:e3:a0:06:66:e9:2b:e0:43:67:45:
1b:a2:d8:c9:13:ea:b6:a9:f2:7a:3f:cd:60:b7:ce:
eb:07:56:f0:71:fb:ca:a4:4a:75:eb:00:b8:1f:6b:
14:f5:3b:a3:b5:96:1e:50:53:d0:49:14:33:98:41:
9f:9e:a4:db:ae:b0:c3:01:fb:f5:f0:ab:a1:8e:38:
b0:8c:66:ec:5d:5d:83:bd:bd:14:46:d9:a3:a4:dc:
97:a2:e3:a6:ab:00:98:73:d9:94:a1:15:90:03:bc:
89:4d:e1:87:51:d6:c2:15:81:46:e2:26:8c:4d:b9:
ba:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D8:7C:DE:53:B9:8B:A6:32:DB:A5:07:79:D2:64:86:9B:1E:7D:B7
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:7e:31:be:88:13:11:a2:e1:84:ac:37:ed:32:01:23:bf:db:
79:30:b4:11:5a:c4:20:ab:5c:77:7b:24:f2:74:cd:9c:52:24:
db:4f:a0:2c:59:8d:9e:72:f8:07:e9:48:af:72:58:5b:a2:df:
8c:73:61:2b:79:8e:e6:fb:bb:50:ae:f4:4d:07:d0:ff:57:3d:
0a:9d:63:53:a3:95:44:e7:ca:4d:2a:6e:38:71:ed:f2:a6:75:
9d:a8:76:c5:06:44:b7:ba:69:ab:05:4d:67:78:21:91:97:99:
67:3a:64:b1:66:9d:bc:36:45:fa:b0:99:f9:e3:7f:32:04:83:
32:1f:3c:a3:09:3d:e3:bf:86:9c:37:e1:b5:b1:91:85:60:f5:
fc:d3:7e:37:cc:75:a8:f2:19:41:9e:24:25:75:03:5d:06:2e:
c7:fa:a0:af:1f:30:27:0c:1c:00:f3:62:74:92:b2:30:52:26:
e1:43:23:85:ad:6b:dc:00:89:7a:04:a2:a2:cd:76:94:53:db:
60:14:9a:c8:48:96:0b:49:0d:b7:48:1e:8a:b9:46:ba:4d:d0:
b5:cf:67:93:29:30:67:48:c6:02:18:8f:a6:e7:eb:08:40:61:
0f:d8:13:8f:59:86:11:ef:8e:3a:f2:4f:e8:8b:57:bb:d6:a0:
f5:0a:9f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:40 2025 by rpki-client