Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: +yCb9IEpu/3P1MFku45DUVF3XfzIO0oaZUaWo6Qd4kU=
Subject key identifier: 9E:3C:49:1A:89:39:76:46:A9:CE:C2:63:71:72:49:FE:35:42:F6:B4
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 0194C38747EC1E1DA579BCD6CEF450D5F26D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 0C65
Signing time: Sat 01 Feb 2025 22:00:10 +0000
Manifest this update: Sat 01 Feb 2025 22:00:10 +0000
Manifest next update: Sun 02 Feb 2025 22:00:10 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: P6Bifw0zyDOpDPCbaJIffI+F92cN74zS1ovWDkVqoc0=)
2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:47:ec:1e:1d:a5:79:bc:d6:ce:f4:50:d5:f2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Feb 1 22:00:10 2025 GMT
Not After : Feb 2 22:00:10 2025 GMT
Subject: CN=9e3c491a89397646a9cec263717249fe3542f6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6d:70:f8:5a:92:48:22:60:02:b7:48:ee:c5:
48:cc:2e:ae:ca:41:f3:95:14:c1:7d:19:d0:40:cb:
9e:ee:7b:92:b5:fe:5c:f9:69:9d:85:87:7e:b7:07:
05:c7:4b:82:e0:6f:26:8e:5e:d4:c8:0f:43:45:5f:
78:13:e6:f3:72:ea:d0:34:14:b7:b2:7b:2a:15:6e:
5e:dc:e0:0f:a7:22:11:dc:75:5f:0f:d0:8d:f9:20:
bf:1d:81:a7:87:b4:ba:e8:00:24:18:a3:69:04:f0:
82:0d:0c:64:5d:bf:4d:1f:58:02:b9:f3:fd:a8:ce:
c0:75:ed:82:33:42:f2:41:a5:6d:64:ff:29:b0:83:
eb:61:51:d6:4b:b7:04:9a:8b:5e:cc:69:93:99:c3:
41:67:06:f4:0f:af:e7:f4:ac:56:bd:1e:d8:b1:58:
0f:ab:e6:9d:6e:b6:7c:f6:f6:6f:80:bb:e5:02:a9:
91:ae:f6:26:3b:06:c8:09:7d:d0:85:d5:fb:05:4a:
f0:14:e2:72:2a:e6:64:6b:ac:2e:3f:3b:a1:73:59:
db:7a:16:ba:34:12:b4:28:b3:e5:67:18:2a:70:44:
10:f4:d3:e9:33:d1:ca:70:e5:e0:25:b2:dc:08:a2:
27:cc:77:b2:9a:38:05:5b:9a:0d:30:2a:f8:b7:96:
ad:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:3C:49:1A:89:39:76:46:A9:CE:C2:63:71:72:49:FE:35:42:F6:B4
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:1a:06:7c:2b:8e:69:16:a4:d1:b6:41:11:7e:30:e5:df:a9:
89:44:7b:ad:8d:aa:d1:b9:14:c6:29:72:69:d8:e8:26:ec:f1:
76:ba:41:fd:af:0a:ca:f4:37:3b:40:04:ef:e1:2e:de:00:f6:
5e:8b:87:60:91:c8:97:cd:58:f7:49:45:82:a1:0b:e2:15:98:
3d:f4:bd:7d:0c:75:3e:31:21:f6:a1:d0:4a:16:00:c3:a6:b0:
6c:de:ac:1b:01:8b:9d:83:55:53:29:32:0a:85:2f:36:a7:2c:
e5:2f:9f:52:ca:cb:68:42:bc:d7:9d:a0:bd:1a:a5:92:d2:e4:
d6:de:53:46:86:3b:ec:fb:7b:47:e3:38:03:fe:1b:ab:51:ee:
f2:da:e9:bf:24:c0:45:39:34:e6:ce:49:d3:ad:c2:43:e5:9a:
7e:a7:9e:89:72:8e:a1:4c:af:b1:5d:44:14:8d:5f:1f:3f:3a:
7c:40:50:60:67:92:bc:6d:df:fa:53:75:54:65:50:42:55:52:
b1:01:09:c2:1b:a3:5f:28:3d:ce:ca:f1:ef:db:28:ea:77:3d:
d1:cc:15:ec:96:21:81:84:0e:f9:51:77:ba:20:d8:79:ec:2f:
cc:e4:7e:e3:c3:87:41:a8:4c:87:32:1b:b1:a1:bc:e6:52:58:
b7:74:ac:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:19 2025 by rpki-client