Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: 7vRgmAdeuLdlibflbVinwPlPDhFfkWgsxN4gI59YRWY=
Subject key identifier: D5:21:6C:4E:3D:BD:E4:9D:72:D4:E4:1B:FF:ED:2E:AC:B7:E1:9C:95
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0194C3876F5BA4EFFECC7C1606F2B853238A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 0E6A
Signing time: Sat 01 Feb 2025 22:00:20 +0000
Manifest this update: Sat 01 Feb 2025 22:00:20 +0000
Manifest next update: Sun 02 Feb 2025 22:00:20 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: Tm2cFRNtzX0X5C9iIOaPO7uwW2AWpedGFBWg+iIgWq8=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:6f:5b:a4:ef:fe:cc:7c:16:06:f2:b8:53:23:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Feb 1 22:00:20 2025 GMT
Not After : Feb 2 22:00:20 2025 GMT
Subject: CN=d5216c4e3dbde49d72d4e41bffed2eacb7e19c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f1:96:d0:75:bc:20:7b:34:3c:5d:87:c6:c8:
9f:36:26:24:32:82:12:57:93:73:24:5f:dd:a8:0e:
a3:d0:ec:a4:7e:d7:7d:71:db:28:08:46:7d:9f:ae:
4e:49:ff:f6:af:33:52:b1:37:71:e2:c9:3f:05:52:
12:fd:fd:97:72:45:ba:0c:a5:88:d2:91:0d:71:38:
eb:83:57:11:55:1c:c5:cd:07:68:10:4b:66:44:00:
ed:d1:53:41:e9:ab:d0:b2:cd:4e:13:12:c0:97:46:
75:9f:4a:d4:63:af:19:4c:80:32:e7:df:c6:06:87:
a1:41:d4:95:c4:f1:0c:db:6b:1b:92:78:4d:fc:2e:
61:9f:77:13:91:fd:82:04:87:46:77:51:63:a7:a0:
ff:35:d0:cb:22:08:85:9b:af:d2:ce:b8:a0:ee:14:
f6:23:cc:71:6b:0f:a4:de:9e:88:b9:e4:3e:3f:69:
bd:63:03:56:c0:4d:6e:e4:75:e3:91:9b:b2:7d:8f:
18:12:f6:00:e9:41:99:8f:c6:8f:ed:4c:3e:14:11:
fb:97:f0:93:3f:ba:21:36:c7:d3:72:64:02:b3:0a:
fa:7a:3e:d6:e5:c7:d6:f0:72:6e:b9:fa:7b:d7:8c:
7a:3e:b4:2b:5f:bb:b9:20:49:c7:de:24:a5:d6:0b:
76:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:21:6C:4E:3D:BD:E4:9D:72:D4:E4:1B:FF:ED:2E:AC:B7:E1:9C:95
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:42:95:b9:c7:b2:bf:97:b0:87:6c:79:bc:69:42:57:0c:73:
d1:8c:97:78:b8:ff:45:ba:7e:8d:b4:f3:97:78:90:e4:1d:99:
b6:10:d0:19:f6:3a:f3:34:73:ad:82:b7:a9:7b:b4:a5:8a:92:
6c:63:56:d7:b6:99:a0:ec:9c:06:ea:bb:b1:6b:aa:ef:25:62:
03:c3:97:84:01:86:ef:7e:b8:80:74:6c:03:4c:81:bc:a1:20:
fb:99:22:63:94:86:05:cd:ea:fe:44:84:76:fe:86:81:3b:61:
5d:5e:29:bf:c3:84:6a:71:7a:41:28:64:e3:2e:f3:fb:27:f9:
3c:a3:7a:3e:76:43:94:76:cb:87:cc:e9:62:92:6c:39:a6:b5:
8e:9b:74:62:b8:4c:7a:8f:dc:ea:20:f7:71:e1:8d:0e:13:b4:
9e:bd:83:d4:47:c0:ac:0f:5e:32:da:aa:9a:fe:cc:5f:1d:45:
0b:71:87:c3:cb:83:ee:da:97:d5:ea:c5:80:c3:84:90:e0:0f:
8d:9f:fe:d2:06:62:f0:c8:c2:ba:90:3b:ec:76:90:91:ec:b0:
2f:01:8e:67:09:ae:d5:a9:50:65:38:72:b2:c3:db:a7:f9:da:
a8:6d:2d:2b:d5:25:c9:9e:5c:3e:c3:1d:c0:52:c2:44:a2:70:
8f:23:a1:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:49 2025 by rpki-client