Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: l/1N6FC6iHzfgsSCt0WkSgIXwu8hFgA46vEo805YDJs=
Subject key identifier: A8:1B:E2:13:46:32:23:E6:C5:C6:10:FD:E9:F1:03:1B:AE:DC:60:6F
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 0195127E0F6BCA18DC7DACEDE993CFF52052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 0F09
Signing time: Mon 17 Feb 2025 06:00:06 +0000
Manifest this update: Mon 17 Feb 2025 06:00:06 +0000
Manifest next update: Tue 18 Feb 2025 06:00:06 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: Jbk1/WCH/sFtx/mJtNOeKua71EK5P4c0bQ/o8uNM+GM=)
2: OoGFPfomo3cQZiCz4qsidreDjCc.roa (hash: nmvopa2kUZd9MIXgbeUNiD86irOgkmmL30is65pmYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:0f:6b:ca:18:dc:7d:ac:ed:e9:93:cf:f5:20:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Feb 17 06:00:06 2025 GMT
Not After : Feb 18 06:00:06 2025 GMT
Subject: CN=a81be213463223e6c5c610fde9f1031baedc606f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6e:57:f7:f9:63:57:8b:a0:c8:fe:41:77:da:
0a:6c:2c:8c:84:85:fe:e0:dc:22:91:3d:15:e4:63:
34:7c:91:f0:37:09:72:5e:5f:31:7c:15:fd:1b:da:
4c:99:ac:6b:d0:06:58:db:4c:12:77:18:61:4e:42:
73:2d:07:82:c3:62:90:c3:2b:0f:63:e2:62:d6:6b:
f1:c7:ff:65:67:85:85:f5:f6:4d:f6:97:6f:2d:e3:
c4:85:dc:e4:5e:75:b6:39:1f:ad:6e:ff:f1:4a:3b:
4a:1e:47:a6:c7:bc:1a:1b:ca:90:5e:f8:65:32:21:
cc:a6:11:7e:a7:77:aa:1f:db:14:18:08:4e:c7:b5:
56:ab:27:b0:25:33:ca:86:38:6f:70:b6:7f:7e:da:
c0:d5:77:e5:e3:b8:61:c6:28:68:fe:2b:09:da:9f:
1a:47:5a:a6:58:be:29:c4:03:01:3e:af:bd:55:76:
1a:b9:80:4b:e1:49:e7:b1:1b:4c:97:68:cb:35:7b:
17:97:8b:52:91:33:ef:83:84:05:63:c1:64:c2:d2:
64:b5:d0:55:48:d5:0d:33:c4:67:79:3b:92:b1:1a:
43:c6:99:12:48:09:1a:64:c2:35:30:36:91:9b:b5:
47:6e:c5:bd:b9:2e:ec:31:60:6b:6e:5a:c3:63:c7:
b9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1B:E2:13:46:32:23:E6:C5:C6:10:FD:E9:F1:03:1B:AE:DC:60:6F
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:70:45:10:04:98:94:b6:bb:bb:23:63:e2:dc:63:8a:5f:67:
e2:7b:d6:a8:56:d8:10:8c:cc:5f:d3:22:03:d8:70:c0:16:f7:
e9:85:2c:91:b9:56:a7:4c:ee:bc:fe:6f:d8:52:ca:d9:2d:86:
6c:eb:24:1a:3e:e3:e1:79:a4:84:b2:79:50:39:d3:4f:8e:67:
e8:81:03:1d:f8:53:0e:36:74:34:54:c3:a7:46:fa:4d:28:c2:
ee:8e:f3:84:42:26:57:95:47:fb:84:89:ea:c7:a1:54:21:57:
e3:bf:95:0e:a3:d3:99:6b:8d:e3:94:52:ab:44:2b:3e:7e:65:
29:f2:74:18:56:7b:4a:46:36:aa:1e:98:f2:fa:fc:ca:09:fc:
35:3a:8c:1f:b6:05:c5:dd:b8:d7:52:54:a4:b1:df:99:93:5d:
cd:4c:41:37:07:c9:ec:24:dd:e8:5e:45:70:7c:bd:b3:07:ba:
c8:b8:8d:36:b9:09:f9:e4:83:cf:dd:ef:52:4a:4d:ba:d7:f7:
d8:41:d2:6f:5c:1c:4e:8d:fd:9b:70:6b:51:a7:e0:67:9b:a7:
bf:61:87:cf:6c:60:9c:b3:3a:7e:c8:9f:1a:72:f9:50:ef:49:
0c:7c:bb:b0:c3:df:dd:e7:fb:25:a5:2b:e1:e5:64:40:71:19:
7b:3d:05:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:02 2025 by rpki-client