Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
File: hlEiwOVi5AeXaCPZThnip5T4y2I.mft (raw, json)
Hash identifier: 5C69cmYoiicyvFo+5Aza5HkL5HNnbhV5crrg+eqM9eY=
Subject key identifier: 67:A0:E4:53:9D:00:E5:69:F5:48:98:D4:3E:9D:D3:C1:F8:91:06:A5
Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62
Certificate serial: 019512473887B707CEFF404685C14544659D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
Manifest number: 13E6
Signing time: Mon 17 Feb 2025 05:00:12 +0000
Manifest this update: Mon 17 Feb 2025 05:00:12 +0000
Manifest next update: Tue 18 Feb 2025 05:00:12 +0000
Files and hashes: 1: hlEiwOVi5AeXaCPZThnip5T4y2I.crl (hash: IDpRbMxiEAufI8kHI9vpBV4fOZYcaX/5GWDBqZ66Qx4=)
2: w-uN_1VCR8_SOj5bY-QHNqktijQ.roa (hash: 0MkMfXtYvuQQQ2rI12rE9KqS+DI9qKcacxegwXpKbvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:38:87:b7:07:ce:ff:40:46:85:c1:45:44:65:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62
Validity
Not Before: Feb 17 05:00:12 2025 GMT
Not After : Feb 18 05:00:12 2025 GMT
Subject: CN=67a0e4539d00e569f54898d43e9dd3c1f89106a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e7:4f:37:4c:b4:74:eb:98:f2:85:96:67:02:
6e:a7:6c:e5:6a:24:7f:81:47:1c:8a:a1:d7:d7:4c:
a3:a1:33:06:a5:da:7f:7b:88:66:d4:b2:0f:7a:c1:
0e:25:24:a9:01:49:e8:b3:49:b5:5b:fb:f8:31:d8:
b7:ec:dd:f4:f6:88:0e:b7:25:2d:f6:ff:ab:b2:26:
29:b5:1a:86:71:e1:d7:f2:e7:db:75:e9:70:1a:23:
bd:6e:95:9d:64:0a:9d:af:04:cb:70:43:92:6b:84:
16:84:b9:47:fc:1d:9d:18:09:c5:cb:66:a0:39:84:
75:64:01:e2:18:51:e8:35:67:20:0a:22:7e:05:ad:
6d:fd:0e:d6:96:c6:a9:b6:d9:6c:99:79:9c:b6:1b:
8a:6e:15:fd:97:34:8d:c8:92:b4:9d:b8:c2:98:29:
ca:48:55:14:99:d0:ae:ed:d0:dd:a3:15:91:a7:a4:
20:9a:77:2c:10:b6:db:f0:2f:c9:fb:94:d6:6f:c7:
5e:25:ea:2c:34:74:ed:12:ea:2b:a3:f0:97:5c:7d:
42:0c:ac:60:64:92:3c:af:e1:dc:3f:0b:9b:60:c5:
54:a2:8a:d5:9b:04:97:54:33:9c:43:06:91:51:70:
ce:11:88:a0:54:4d:8e:92:7e:82:56:83:5d:37:f0:
10:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A0:E4:53:9D:00:E5:69:F5:48:98:D4:3E:9D:D3:C1:F8:91:06:A5
X509v3 Authority Key Identifier:
keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:90:0e:6b:1f:ca:b7:85:74:57:76:c2:ce:df:18:0d:ef:25:
80:b6:25:12:50:1b:1a:25:8e:f3:3e:aa:50:b6:72:fd:67:86:
0a:9e:24:2c:ef:b0:84:fd:fd:94:3e:fa:e0:3d:d9:fa:7e:f3:
58:db:df:df:96:c5:64:fa:8c:48:d6:f7:0c:41:da:b1:d1:db:
04:31:85:9a:77:3e:2b:a0:7e:ea:70:ec:4a:f1:0b:15:94:8e:
54:4c:cf:c4:cb:c7:a4:29:57:6e:b9:f9:37:f1:31:92:96:76:
5a:e5:cc:19:90:1a:a5:03:29:59:56:1b:fb:15:a7:70:28:a2:
81:c4:a9:7f:28:f6:93:c6:db:bc:e1:0f:0e:93:af:5a:48:f8:
4b:c5:8f:63:7b:e4:14:94:a9:44:1b:81:87:05:81:1e:bc:6f:
34:93:36:fa:57:9f:c6:f2:85:0a:76:8f:c6:a3:44:ce:25:df:
aa:33:a2:a7:82:25:a6:29:4e:32:8f:21:29:9a:24:3c:9e:90:
6d:5d:ab:0c:2a:36:6c:63:75:4e:54:5c:b3:03:f6:7b:bb:97:
dc:c8:b9:6f:39:51:96:5a:e4:ca:9d:d8:bd:1e:b1:c8:90:d3:
01:cc:8d:04:61:be:2d:96:9a:79:6d:49:df:cd:ed:76:50:cf:
5c:a1:e4:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSRziHtwfO/0BGhcFFRGWdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NTEyMmMwZTU2MmU0MDc5NzY4MjNkOTRlMTllMmE3OTRm
OGNiNjIwHhcNMjUwMjE3MDUwMDEyWhcNMjUwMjE4MDUwMDEyWjAzMTEwLwYDVQQD
Eyg2N2EwZTQ1MzlkMDBlNTY5ZjU0ODk4ZDQzZTlkZDNjMWY4OTEwNmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3edPN0y0dOuY8oWWZwJup2zlaiR/
gUcciqHX10yjoTMGpdp/e4hm1LIPesEOJSSpAUnos0m1W/v4Mdi37N309ogOtyUt
9v+rsiYptRqGceHX8ufbdelwGiO9bpWdZAqdrwTLcEOSa4QWhLlH/B2dGAnFy2ag
OYR1ZAHiGFHoNWcgCiJ+Ba1t/Q7WlsapttlsmXmcthuKbhX9lzSNyJK0nbjCmCnK
SFUUmdCu7dDdoxWRp6QgmncsELbb8C/J+5TWb8deJeosNHTtEuoro/CXXH1CDKxg
ZJI8r+HcPwubYMVUoorVmwSXVDOcQwaRUXDOEYigVE2Okn6CVoNdN/AQSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGeg5FOdAOVp9UiY1D6d08H4kQalMB8GA1UdIwQY
MBaAFIZRIsDlYuQHl2gj2U4Z4qeU+MtiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUt
YjhkZDE4ZTQ4ZTg2LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUtYjhkZDE4ZTQ4ZTg2
LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzZAOax/K
t4V0V3bCzt8YDe8lgLYlElAbGiWO8z6qULZy/WeGCp4kLO+whP39lD764D3Z+n7z
WNvf35bFZPqMSNb3DEHasdHbBDGFmnc+K6B+6nDsSvELFZSOVEzPxMvHpClXbrn5
N/ExkpZ2WuXMGZAapQMpWVYb+xWncCiigcSpfyj2k8bbvOEPDpOvWkj4S8WPY3vk
FJSpRBuBhwWBHrxvNJM2+lefxvKFCnaPxqNEziXfqjOip4IlpilOMo8hKZokPJ6Q
bV2rDCo2bGN1TlRcswP2e7uX3Mi5bzlRllrkyp3YvR6xyJDTAcyNBGG+LZaaeW1J
383tdlDPXKHkOg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:21 2025 by rpki-client