Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: HPBl6qoRSMnwVFgPADcGwFIYGt06989Xx6LvsNvDfVE=
Subject key identifier: A9:32:B2:77:ED:56:DA:A8:B5:1D:32:9D:24:E1:EC:A0:35:9E:E9:32
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 0194C49A518C3236C915BB0284E693B4AE91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 10C3
Signing time: Sun 02 Feb 2025 03:00:35 +0000
Manifest this update: Sun 02 Feb 2025 03:00:35 +0000
Manifest next update: Mon 03 Feb 2025 03:00:35 +0000
Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: YyQVpzs5OKFK/1DCKabLgwK8VSGVcZhMFkzr25WWkGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:51:8c:32:36:c9:15:bb:02:84:e6:93:b4:ae:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Feb 2 03:00:35 2025 GMT
Not After : Feb 3 03:00:35 2025 GMT
Subject: CN=a932b277ed56daa8b51d329d24e1eca0359ee932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:47:e7:80:34:a7:09:b8:94:e4:d0:67:c0:67:
d0:4b:8e:46:2f:13:19:2c:7b:db:7f:3b:0b:46:9a:
40:e3:ae:5f:54:46:51:fb:9e:a3:fe:6e:0e:6c:2c:
3d:64:e8:26:22:05:ee:5c:3a:92:d5:11:e0:8f:be:
51:af:f8:8a:56:e3:f6:73:aa:26:a3:69:a9:92:44:
ab:d5:28:bc:95:c0:0b:05:07:ad:52:a6:79:78:ac:
c7:72:ca:24:1f:33:ce:70:71:32:10:78:db:d7:48:
1d:14:23:87:33:bc:d3:dd:20:d6:b8:d9:e6:0f:cb:
a6:4e:34:13:e5:6f:ac:28:72:c8:43:fd:52:40:93:
cc:f2:37:7a:09:ca:40:af:18:76:dc:3b:70:ab:7c:
92:a0:1e:4a:dd:f5:a0:56:e8:6b:ed:dc:34:5a:03:
26:57:68:4d:9d:43:f7:36:6a:bc:c7:8f:09:d6:8d:
0f:ca:b4:d4:7c:36:d5:65:46:65:cc:69:c0:e9:dd:
53:db:63:e2:31:97:a6:e9:cd:61:9b:11:96:4d:01:
e1:46:49:29:1a:3d:70:5e:55:22:25:93:5c:70:c2:
33:68:84:b3:07:76:5b:60:6b:bd:67:fc:59:4d:13:
d7:90:bd:9a:b8:6b:9e:ee:5e:56:f0:e1:08:ca:3e:
44:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:32:B2:77:ED:56:DA:A8:B5:1D:32:9D:24:E1:EC:A0:35:9E:E9:32
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:03:dc:60:bb:58:c7:33:9f:00:50:63:19:17:c1:0b:59:65:
23:b4:e0:2d:62:c4:c3:0c:7e:c9:eb:43:48:dc:a1:1d:8a:69:
c9:20:17:0d:8f:9a:3e:fa:d2:8d:c8:97:72:6d:85:ad:7d:a1:
41:79:f7:26:06:e0:14:9b:43:2b:74:74:49:05:58:6b:54:cd:
b3:f4:ee:56:58:de:58:38:91:8b:e0:ae:cd:eb:11:b9:75:93:
90:f3:99:9c:ec:62:ef:64:d8:18:dd:ed:d9:fa:9a:36:98:c8:
d9:93:bf:9c:32:37:2d:49:57:85:c2:f7:d8:dd:b9:c8:51:11:
15:b8:4d:67:fd:c4:99:9e:c5:27:6e:3a:f3:94:85:be:f2:da:
ed:5c:1e:17:1a:09:d6:bb:67:43:8f:e9:ef:70:9d:4f:d8:71:
63:43:68:4b:1f:46:fa:ab:65:6f:40:4f:f6:cc:94:2e:8c:f3:
a0:2b:c3:bd:7e:e1:33:aa:a3:a2:73:0b:14:08:be:73:55:ad:
c6:42:fc:52:14:61:60:c9:ef:dd:32:e6:9e:76:9a:c6:05:c7:
e1:ae:66:30:61:4c:e9:4e:cd:ec:0e:06:6f:e8:77:ca:24:d6:
ea:c5:db:d1:b7:1a:9b:a8:2f:32:2a:37:30:ec:36:fb:e1:ba:
35:a3:57:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:55:07 2025 by rpki-client