Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
File: HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft (raw, json)
Hash identifier: BKc/Ysyhwvum/79WeDMAHKCPHJUlVzI/MlZKqDqvCVA=
Subject key identifier: 68:47:53:BD:1D:2D:FA:D6:FE:93:3E:4E:5D:C7:BB:CC:D2:D2:CB:6C
Authority key identifier: 1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
Certificate issuer: /CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Certificate serial: 0194BAF241CA81EF1A4462B4D3F8DFCD587E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
Manifest number: 0B1F
Signing time: Fri 31 Jan 2025 06:00:26 +0000
Manifest this update: Fri 31 Jan 2025 06:00:26 +0000
Manifest next update: Sat 01 Feb 2025 06:00:26 +0000
Files and hashes: 1: 8seasK16GsaOFWr-SwwyW57ek-Q.roa (hash: qX7qnakcmcX1EuhGkXbf2jHBxhoO6I07uSRi1nBbABs=)
2: HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl (hash: yGctiooKQFq+G43YA9jxmdBn3cc205lRGTNKjyoryaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:41:ca:81:ef:1a:44:62:b4:d3:f8:df:cd:58:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Validity
Not Before: Jan 31 06:00:26 2025 GMT
Not After : Feb 1 06:00:26 2025 GMT
Subject: CN=684753bd1d2dfad6fe933e4e5dc7bbccd2d2cb6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ce:ec:57:39:45:c7:34:94:93:8d:92:f6:24:
70:7c:b5:b8:a1:5c:94:65:58:b1:7d:12:87:c7:4d:
df:2e:50:60:5a:a4:f5:68:22:61:1c:bc:f5:f2:03:
44:ed:f6:64:77:70:8d:22:12:66:10:52:50:fb:4f:
bc:54:57:a5:42:81:74:a8:c9:e3:b4:62:76:ae:09:
10:3a:a4:eb:49:c4:03:54:0a:d1:06:ad:fa:c9:97:
d1:20:fa:f8:cf:a0:9b:e1:e5:90:c5:4c:d7:41:cf:
0f:f4:6a:b5:7b:35:f5:be:b4:03:db:55:e8:be:41:
05:89:8b:44:5e:3a:56:32:2f:e1:ab:8d:c0:3b:45:
48:90:78:e2:fd:bd:ef:b4:e1:e5:59:2a:0a:58:e1:
83:96:f2:b4:58:d7:91:53:d2:78:fd:4b:9c:be:9f:
5f:fc:eb:92:b7:ad:fe:06:f3:76:f0:38:42:ed:07:
ba:34:6f:43:ca:81:45:da:40:90:df:fd:52:96:12:
55:29:66:4e:8e:7f:73:fd:65:65:6e:c7:a0:e0:38:
80:78:78:f0:30:19:47:6a:86:62:9a:f8:92:4c:c2:
90:1f:60:db:a5:4c:8f:06:94:2f:86:57:62:5c:62:
e3:9f:1a:c2:b0:e5:34:8a:79:9d:e1:d1:00:fb:7a:
e0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:47:53:BD:1D:2D:FA:D6:FE:93:3E:4E:5D:C7:BB:CC:D2:D2:CB:6C
X509v3 Authority Key Identifier:
keyid:1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:2e:6d:29:ea:40:d2:15:f5:08:d1:ff:83:6a:f4:fb:a4:d1:
ff:8b:da:7b:fc:1e:eb:d5:e9:9c:45:d7:15:a7:10:02:5b:49:
60:76:31:4a:ca:ce:0e:4e:a6:6d:83:d1:db:be:80:db:35:d7:
fb:3e:0d:3e:04:bc:fd:29:13:0f:0b:f2:3c:9e:2a:65:f7:fa:
cb:9a:9b:6c:60:ca:69:25:8f:6f:49:e8:ef:d6:bd:f8:0b:d0:
f8:ce:c6:78:c4:72:bb:0e:99:04:f3:38:f7:6e:c0:8d:ac:ae:
ed:31:4e:a9:1d:52:00:ef:45:2b:c0:bb:47:3d:32:a3:fc:3f:
37:0b:ff:dc:3c:04:a7:5f:b6:d9:50:4c:b9:7a:ee:94:7a:1b:
71:d5:e9:0a:95:89:f3:ce:cd:7d:34:08:c3:fb:8f:ec:22:e3:
0b:43:67:ae:bf:6a:79:24:6d:52:3b:29:96:f0:98:6e:8c:d9:
81:c2:ef:14:50:bf:ab:55:5f:e7:18:01:db:6c:0d:98:3d:e3:
d4:16:fe:36:10:3b:6c:c7:46:c1:55:62:8d:73:72:1e:52:20:
7a:17:4d:6c:f7:d9:31:25:4e:e6:74:c6:8f:c7:f6:04:20:d0:
67:34:b5:69:2a:e6:7b:22:53:f2:7f:44:7f:49:3d:fa:7b:08:
ca:d4:c0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:43 2025 by rpki-client on console-fra.rpki-client.org