Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
File: hcNSXWi2ERZWThbh3U5WywNcnIU.mft (raw, json)
Hash identifier: be2XHLOJQQo8bwzN8jsCWMCdWqOOliRQzanqsaxpMnI=
Subject key identifier: 25:35:C3:C5:C9:EA:60:40:23:8C:FB:07:7D:C3:43:60:94:ED:82:10
Authority key identifier: 85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
Certificate issuer: /CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Certificate serial: 0194C350C1D645F8AF1130520605CA822BB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
Manifest number: 1434
Signing time: Sat 01 Feb 2025 21:00:36 +0000
Manifest this update: Sat 01 Feb 2025 21:00:36 +0000
Manifest next update: Sun 02 Feb 2025 21:00:36 +0000
Files and hashes: 1: hEPXQgU_4RM48GU6YHvdaeu2Uew.roa (hash: Y8wvnBW02yBGPfnw7ReZF8CB9IAoGOhz+Y/sJITIMzc=)
2: hcNSXWi2ERZWThbh3U5WywNcnIU.crl (hash: 9egA2Nzt9VvX6peYy3Yc8I25pm9lhB671G7/aZPWqU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:c1:d6:45:f8:af:11:30:52:06:05:ca:82:2b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Validity
Not Before: Feb 1 21:00:36 2025 GMT
Not After : Feb 2 21:00:36 2025 GMT
Subject: CN=2535c3c5c9ea6040238cfb077dc3436094ed8210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a3:62:5b:6a:4c:d0:f1:06:8f:98:48:45:ca:
97:f0:df:80:b0:cd:b1:e5:7a:6a:6f:e0:83:d8:9b:
ea:4c:e9:60:79:ec:32:3c:dd:2b:f4:bd:66:29:d5:
02:64:8c:19:59:3b:36:ca:07:65:b7:6a:d3:8b:75:
ca:1b:87:eb:b2:74:39:24:67:06:ac:32:f4:5b:26:
8a:19:e2:43:e5:c8:c4:54:58:e9:f8:c2:09:a0:88:
2e:e0:1d:0b:e7:83:d8:ba:1c:cf:04:95:0e:1f:09:
3b:58:8a:b6:1b:30:bb:69:92:67:68:de:ba:3c:11:
ea:27:c1:28:58:34:76:ec:df:53:dd:8b:00:39:6d:
5f:0b:cb:28:9d:b1:18:a7:e6:a8:59:43:38:ad:fe:
69:82:1a:d4:09:e2:2f:0f:60:de:6b:e1:6d:77:45:
bd:bc:ec:44:7e:62:79:9c:e8:62:84:a5:0c:dc:f5:
69:ee:7f:69:5a:ba:f1:15:a5:b5:30:7b:20:80:aa:
db:cf:4a:d9:74:f5:a9:ec:ad:79:7c:29:26:8d:81:
e1:06:a4:63:51:9f:74:71:6d:06:5c:bc:93:f1:c1:
8b:e6:38:1e:67:03:17:da:4e:8f:e2:84:7c:3a:30:
13:7c:19:93:39:4e:25:a0:75:85:ae:16:f2:c4:74:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:35:C3:C5:C9:EA:60:40:23:8C:FB:07:7D:C3:43:60:94:ED:82:10
X509v3 Authority Key Identifier:
keyid:85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:7a:62:34:37:74:79:ff:4c:24:0b:43:ec:0c:63:d8:13:19:
1b:85:0c:d0:e1:87:d2:cb:da:8c:11:72:89:6c:3a:93:98:3b:
c1:11:75:84:fa:7b:08:33:27:db:31:14:15:fd:9a:9e:d6:ef:
c2:14:59:b4:c3:12:ee:06:a3:e5:f1:a8:cb:fc:a1:6d:f4:e6:
94:49:29:8d:59:0f:bc:71:ec:d9:b8:b3:b7:6a:75:b3:5c:72:
91:c1:4b:62:b2:ea:b6:ff:86:d1:6e:76:3b:39:d9:cd:c5:68:
ac:4e:3c:9b:6e:a3:ab:35:d0:09:8f:95:08:22:45:73:8c:ba:
13:f1:f2:e0:d7:f2:77:c2:74:2c:4f:be:1e:eb:a6:f5:70:35:
58:05:17:38:ea:f1:bf:9b:e6:3e:96:f3:59:02:14:dc:bd:ae:
a5:8e:97:08:b6:96:0d:1d:60:2a:da:d8:a9:90:ef:01:f3:64:
bb:dd:ec:8f:8f:7e:ee:8b:48:d7:96:3c:cb:6a:d2:16:6d:a2:
95:0e:f0:b9:5e:fe:16:09:42:84:e7:c3:e2:b4:42:58:ba:bb:
d1:27:ee:22:98:ec:95:f0:ff:a4:0d:1f:25:bf:b5:ac:76:66:
cb:5b:84:c5:2d:97:9d:d1:a8:28:b8:fa:72:6c:66:77:57:28:
cd:c2:31:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:54:50 2025 by rpki-client