Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
File: hlEiwOVi5AeXaCPZThnip5T4y2I.mft (raw, json)
Hash identifier: uBpleJM6qO/3mG33hiAAnnjVZ9VMB1iuhebuubSh8Rc=
Subject key identifier: 31:BC:66:6B:99:ED:D9:3B:FF:2B:99:7A:39:64:2E:73:72:82:0A:F7
Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62
Certificate serial: 0194BB6029746EBC5245CE1DA05F972D39F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
Manifest number: 13B9
Signing time: Fri 31 Jan 2025 08:00:28 +0000
Manifest this update: Fri 31 Jan 2025 08:00:28 +0000
Manifest next update: Sat 01 Feb 2025 08:00:28 +0000
Files and hashes: 1: hlEiwOVi5AeXaCPZThnip5T4y2I.crl (hash: mEBqQ6V+AGeTg2hIKSUQloDumFHtDc0Lx80u+I2ZvfI=)
2: w-uN_1VCR8_SOj5bY-QHNqktijQ.roa (hash: 0MkMfXtYvuQQQ2rI12rE9KqS+DI9qKcacxegwXpKbvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:29:74:6e:bc:52:45:ce:1d:a0:5f:97:2d:39:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62
Validity
Not Before: Jan 31 08:00:28 2025 GMT
Not After : Feb 1 08:00:28 2025 GMT
Subject: CN=31bc666b99edd93bff2b997a39642e7372820af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a9:0d:ae:10:b1:86:46:0d:3a:03:ad:ca:bf:
e5:22:ee:62:be:1c:5d:a1:5b:4e:a3:6f:ac:27:a7:
82:2d:93:e8:da:b6:f7:1d:32:55:f0:26:1c:8c:75:
c2:ab:af:c1:2a:46:93:5c:6f:26:9f:cf:e3:64:9c:
fe:13:61:c0:ff:5d:ba:f4:d7:78:bf:80:cd:6b:b6:
91:fb:b8:ba:03:f1:e6:84:a5:58:53:c2:83:bb:81:
e4:c6:97:15:5e:ec:b9:41:55:94:ff:67:33:75:2a:
1d:d3:e7:2b:7c:b8:8c:7b:ef:0b:86:3c:4f:aa:ee:
22:76:9d:f7:f0:be:ac:20:e4:9c:7b:71:b8:09:cc:
84:e9:db:c3:c2:fc:19:44:19:9d:52:30:69:25:f3:
ed:a2:24:0b:4b:97:53:0d:63:59:c0:fd:ec:f6:fb:
72:d2:b4:28:4b:59:ed:1d:ee:bb:4f:39:c7:16:41:
e3:37:df:e2:66:cb:54:70:7e:33:0b:74:28:44:74:
e3:3f:e4:ed:e2:04:b3:f9:1b:fc:57:f6:9d:4f:fb:
c3:40:9a:b4:f8:c6:85:38:0b:5b:a0:60:74:6e:c1:
16:07:47:de:f9:cb:c9:8f:de:8d:3f:bd:09:43:96:
77:a2:77:e6:ae:02:c9:c7:1a:a0:db:41:5f:a1:ba:
a9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BC:66:6B:99:ED:D9:3B:FF:2B:99:7A:39:64:2E:73:72:82:0A:F7
X509v3 Authority Key Identifier:
keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c1:25:7f:ea:56:41:bb:6d:b3:53:79:4b:a5:ba:6c:ca:64:
8d:67:30:a6:2a:34:b1:c0:54:06:ce:43:a4:bb:ed:b7:72:fa:
9a:6f:5f:d7:93:9b:13:f1:57:82:a1:3e:10:37:eb:b4:ab:ee:
e0:b3:c7:a0:6d:9a:21:cb:d8:68:41:b2:ed:d4:3d:ec:82:dc:
0d:55:c5:1d:a4:6d:43:4f:c8:7e:59:10:23:e8:4f:50:a4:8b:
bc:31:5c:e7:86:a3:9c:08:ac:09:13:39:d4:f0:14:40:db:06:
20:20:e1:59:7f:57:c0:a1:30:b4:cb:ec:d5:1e:c5:b3:5f:17:
07:c0:bc:3d:05:fe:a5:1c:2e:30:87:3e:3c:21:be:5c:17:ca:
cf:2a:d1:9f:fe:5d:60:cb:d5:cc:96:b9:12:10:c6:31:79:d7:
40:62:99:d7:9e:b3:a5:23:24:30:6f:aa:5a:37:bd:00:11:d3:
63:35:96:c3:de:6f:81:79:75:b0:55:6a:c6:9a:f2:ae:63:56:
db:6b:d3:64:bc:61:f8:a4:6c:f0:94:10:ff:82:6f:38:17:62:
da:81:e2:37:b4:bf:50:36:da:03:6a:fc:16:4a:8f:f9:2e:f6:
53:0a:3b:de:67:82:4d:03:3d:17:ab:65:18:41:85:af:50:02:
ac:0c:d1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:29:30 2025 by rpki-client on console-fra.rpki-client.org