Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json)
Hash identifier: AdC+Tbq2Dexexj4NsL0E9ZZMXehRbLJVIfdzmJ6TKDQ=
Subject key identifier: 52:0B:13:A6:01:D9:4F:58:B4:1B:9E:23:A1:3B:A8:C1:93:05:D6:77
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 0195124755812E94F6F1C65BA300151E480C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
Manifest number: 066A
Signing time: Mon 17 Feb 2025 05:00:19 +0000
Manifest this update: Mon 17 Feb 2025 05:00:19 +0000
Manifest next update: Tue 18 Feb 2025 05:00:19 +0000
Files and hashes: 1: GrVfgYYa0s5gLsRQp5P5vAQeHlE.roa (hash: Twu1XyErZ1bzBOtE8/HK3XbggJvMpOYaRXT376BODWE=)
2: XUIGCJfhGsoP5FdVAQmT9lUNYuc.roa (hash: hjmwDLHRKf4c787nov0R6bRVLxtqmM1uwueYf+NK6fU=)
3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: zgj1nf+D39FDmMA1II/oXI9JmtrInxQ8x8EbgDk2O1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:55:81:2e:94:f6:f1:c6:5b:a3:00:15:1e:48:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: Feb 17 05:00:19 2025 GMT
Not After : Feb 18 05:00:19 2025 GMT
Subject: CN=520b13a601d94f58b41b9e23a13ba8c19305d677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e3:86:fe:71:c1:ed:b2:25:8e:cb:c8:e3:a6:
96:e3:fb:fb:f4:29:5b:97:1b:f2:f8:93:64:c1:a2:
7b:87:02:50:1d:da:71:d3:65:b6:c6:5a:5b:59:a4:
71:0c:da:ad:5b:86:ab:c8:22:b2:d5:2b:a0:53:b9:
f6:2c:89:30:65:ce:37:17:8c:c9:4d:cd:cf:ca:26:
b8:d3:e8:01:78:a5:80:f7:e8:aa:f9:86:32:b4:65:
91:a7:11:5b:c8:25:bd:19:01:b3:80:bf:4f:d5:8f:
6f:67:d7:eb:af:30:3e:cd:fb:54:03:10:e4:f8:a4:
a4:13:d6:72:fe:44:95:52:08:73:47:bb:56:a1:de:
a1:28:fa:fc:d7:7f:3d:79:8d:ae:f1:d6:34:25:e9:
6c:69:58:60:b1:47:66:f3:13:4d:e5:df:a0:fa:63:
9d:d1:db:df:b0:00:22:fd:72:e4:a5:a3:53:c9:05:
7c:9a:18:4d:ca:b7:ba:8c:ec:54:0c:60:8f:c4:d7:
52:dc:06:c7:a3:79:c0:a9:8e:0d:f6:4e:a1:53:5d:
4b:b1:a2:51:e4:45:38:70:b8:06:6b:2a:1b:8d:22:
59:77:19:45:76:97:85:c2:97:66:ad:70:9b:49:a2:
c6:4b:d3:c4:22:86:5b:90:a5:3d:26:bd:ba:3e:68:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0B:13:A6:01:D9:4F:58:B4:1B:9E:23:A1:3B:A8:C1:93:05:D6:77
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:0b:88:8c:67:2a:da:7b:b5:9a:b1:da:04:83:2e:91:b8:f6:
1f:f7:2d:29:9c:76:28:2f:27:03:65:03:7d:7d:ab:3e:b7:96:
b1:5f:3e:70:f8:cb:0d:02:c7:30:15:13:4b:0c:5a:be:46:ce:
24:d9:4f:4e:b8:a2:eb:3d:69:81:3f:b5:74:cc:02:9b:94:4f:
b8:2c:58:80:35:1e:04:b2:c6:50:c3:2d:f7:50:ef:48:af:11:
f9:9d:09:51:dd:c2:52:25:dc:96:35:58:5d:6b:29:2d:de:ed:
66:31:b3:ff:c1:db:ec:c4:c7:e1:d9:93:9a:d8:0e:2c:ba:67:
76:db:f8:4a:47:cd:6c:5d:df:cf:a8:4f:53:bd:c3:2f:e0:b0:
86:fe:34:5b:eb:b1:2a:c2:e0:bb:d7:1a:79:5a:3e:e8:c6:1b:
dd:1f:9b:91:7c:e2:2d:8d:a2:f3:cf:96:09:08:7a:ad:03:30:
be:6d:fc:e5:1e:0c:26:7c:af:7e:b8:ea:cc:0e:c2:94:24:98:
6a:b7:4c:84:05:eb:46:41:b5:13:96:9d:f3:8a:84:c9:7c:8a:
32:3f:30:b3:46:af:96:2c:f8:da:cf:d2:05:23:99:69:aa:64:
28:79:47:c6:a3:20:c8:ea:50:8a:e9:f2:9e:bd:aa:d5:9b:6d:
f1:4b:9a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:02 2025 by rpki-client