Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: qlz0psq49yFqtPF0mQ9XNvgiXdGzEscXZTdsTQJaZto=
Subject key identifier: 65:D1:1F:2C:FE:98:7E:02:C2:17:37:B6:9E:71:0F:18:F8:DF:40:11
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 019510C745966C5C9548578EE0FA1EBEE74E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 0321
Signing time: Sun 16 Feb 2025 22:00:49 +0000
Manifest this update: Sun 16 Feb 2025 22:00:49 +0000
Manifest next update: Mon 17 Feb 2025 22:00:49 +0000
Files and hashes: 1: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: A4j13m1EmEJi79/3v03f3/U3LhuMepWkrEuYtLObVc4=)
2: iTyIEEO2sljhZiJnAx_Ko0duy2M.roa (hash: T+291sx+aTIxs6928rSAPXeV/0gq52PnDMgh9u7+DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:45:96:6c:5c:95:48:57:8e:e0:fa:1e:be:e7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: Feb 16 22:00:49 2025 GMT
Not After : Feb 17 22:00:49 2025 GMT
Subject: CN=65d11f2cfe987e02c21737b69e710f18f8df4011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3d:5f:59:87:61:bb:01:8c:e5:f6:78:ab:00:
0a:e3:3d:de:29:16:d1:58:aa:65:02:06:d6:4b:cd:
57:17:46:7e:07:d3:51:7a:f5:9e:00:e1:21:48:16:
75:22:cd:ad:0e:e9:40:95:bb:1d:d9:94:78:04:4c:
36:22:1a:e8:41:ab:09:5f:98:f1:b5:6e:57:a1:ba:
ae:c8:57:60:ff:0d:3b:a1:2a:d8:18:81:74:01:52:
26:ae:d9:c1:04:5c:69:8e:1f:10:d1:02:53:7c:43:
bc:00:20:17:e4:f3:4a:e0:7d:c1:5a:a4:ea:02:c4:
4e:73:1c:f3:24:c4:7b:8d:74:6d:28:4b:d3:d4:ab:
a1:88:96:6d:fb:47:f8:d6:42:a2:d0:46:7e:40:3e:
47:31:68:b7:63:56:76:b2:c7:bb:69:f0:fd:2e:5c:
5f:74:1f:39:12:05:00:f1:2a:e5:2f:64:9a:63:4c:
25:cf:99:98:e5:d0:6c:68:bf:51:f1:61:3e:94:d6:
c1:49:47:d8:43:91:d6:f8:2d:f7:10:4f:18:15:00:
59:6e:36:6e:01:a8:1d:13:a1:38:f9:47:c6:ae:db:
74:81:55:19:d2:3b:91:b2:29:4f:ef:2d:60:a0:5e:
bb:85:d9:2e:2e:3d:64:ec:cc:8a:c6:a2:21:dc:a6:
2f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D1:1F:2C:FE:98:7E:02:C2:17:37:B6:9E:71:0F:18:F8:DF:40:11
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:7a:66:d9:c8:c9:a8:f8:6d:9c:6f:30:46:a5:c2:06:7f:a0:
ac:f9:2e:7f:20:ea:57:a0:18:4e:3a:0e:f4:b6:50:87:7b:68:
7f:82:dc:b6:6f:2a:4e:12:c5:9e:bd:d5:10:75:6d:9c:94:f2:
b9:5a:97:f6:ac:2b:2b:86:94:03:77:90:69:7d:41:56:b6:b0:
16:28:06:65:e5:8f:eb:91:1d:8d:c9:3a:bd:23:94:08:9c:b0:
5f:37:51:e6:53:6c:9a:df:58:5a:68:19:08:52:9d:72:f0:06:
e0:bc:b2:77:e5:19:cc:3e:68:bf:a4:35:42:46:29:8a:6c:57:
30:b2:1a:70:57:05:83:bd:24:46:c0:8d:b0:d2:05:ac:71:6a:
3e:fe:c0:bf:51:9a:91:33:fb:b1:e2:27:19:d0:f8:36:e5:17:
af:de:6f:08:5e:5f:b0:a8:3c:68:0a:26:a5:a9:76:c0:02:f1:
e9:f4:bc:3f:8b:12:31:c6:b0:a4:5a:b9:6a:11:8a:c0:5f:9b:
be:a1:c1:0e:df:00:7a:e1:fb:78:c5:66:b1:17:ba:3b:fc:69:
2e:8d:83:64:60:2a:3f:a9:55:17:0f:a6:3b:65:77:ce:51:9b:
a5:c2:8d:0d:94:44:a4:4d:96:ea:21:b3:07:2e:40:77:96:1a:
68:49:fa:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:08 2025 by rpki-client