Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
File: hDz1u4drdyt63kMpBctpbxNMqjk.mft (raw, json)
Hash identifier: 0XutDvrZLqxdopazDKEy3bx0ZNI2UtB6qpxj7AXkjoo=
Subject key identifier: 6C:D1:EF:ED:01:00:C2:CC:A5:A7:81:B7:DB:60:F0:B1:1A:EB:E6:76
Authority key identifier: 84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
Certificate issuer: /CN=843cf5bb876b772b7ade432905cb696f134caa39
Certificate serial: 0195797E4747BC0A353CA5F5C16AB730F2DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
Manifest number: 1490
Signing time: Sun 09 Mar 2025 06:01:13 +0000
Manifest this update: Sun 09 Mar 2025 06:01:13 +0000
Manifest next update: Mon 10 Mar 2025 06:01:13 +0000
Files and hashes: 1: 8SOVzbdZRi1TiXuPdQBPQag2b1I.roa (hash: 4UxgH1Bm5rLISlPUt1abtwizcDNcCBaAAK4mH1Wxzxk=)
2: hDz1u4drdyt63kMpBctpbxNMqjk.crl (hash: lJ5Pd5WPbcZqJ2tquTDDNSryqZp+7RFFjSfOvxTsM3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:7e:47:47:bc:0a:35:3c:a5:f5:c1:6a:b7:30:f2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843cf5bb876b772b7ade432905cb696f134caa39
Validity
Not Before: Mar 9 06:01:13 2025 GMT
Not After : Mar 10 06:01:13 2025 GMT
Subject: CN=6cd1efed0100c2cca5a781b7db60f0b11aebe676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:fd:59:3f:33:7b:ed:62:9a:81:04:a6:24:
be:7c:41:ab:3a:c4:0d:d5:da:e9:48:09:00:ff:d6:
82:ce:d9:49:5e:f9:69:5a:59:d3:8b:82:73:64:52:
71:02:d3:5d:25:fa:7c:56:8e:34:75:53:b5:e4:7b:
2b:13:4c:9b:6e:73:cd:61:6e:74:f7:63:28:b8:c2:
3d:99:bf:81:b1:d3:a2:8c:a8:52:e1:86:ea:ea:73:
88:29:5b:af:e5:20:83:e1:16:0d:47:4c:8c:78:ea:
16:49:23:82:63:a5:dd:d0:ba:63:2e:a3:2b:14:a7:
d7:3e:8b:0f:cf:63:05:e7:6c:02:c8:c9:61:b3:62:
cd:72:46:04:14:28:b2:fd:0a:62:63:e9:c5:35:f4:
76:a2:fb:af:2c:88:5c:15:ae:fa:6d:f9:48:ad:53:
0a:54:ac:1e:28:b5:2b:51:2c:28:af:3a:8a:01:2b:
88:22:a8:bf:a6:9f:54:6f:ab:7d:89:5b:f1:90:eb:
b8:2b:29:bc:cb:0b:68:a2:09:61:f0:5a:89:dc:28:
89:45:94:1f:12:68:97:a7:33:e8:b8:90:89:e4:5d:
a4:03:36:44:88:f1:83:a0:f9:c9:71:83:02:f6:ce:
38:62:c1:68:c2:ef:1b:a2:a0:65:bc:01:38:bf:4a:
47:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D1:EF:ED:01:00:C2:CC:A5:A7:81:B7:DB:60:F0:B1:1A:EB:E6:76
X509v3 Authority Key Identifier:
keyid:84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:15:8d:2b:b6:9e:ba:4e:ec:1f:b9:4f:47:87:98:26:41:59:
b8:45:f2:ba:de:96:0f:e7:c6:2a:8b:74:7b:f2:7b:79:12:0f:
24:58:5e:da:4d:05:b0:4b:84:c8:5e:ad:74:ac:dc:95:3c:d9:
45:a5:e6:e7:69:c9:c7:b6:ef:e8:6e:48:9f:07:90:d3:db:66:
c6:e1:02:2d:00:58:79:f6:29:2b:e2:81:43:d9:7d:85:f6:75:
f6:10:a2:de:b2:21:a7:41:8d:82:4d:6f:ef:de:6f:17:db:eb:
61:87:16:14:32:da:d7:41:5d:35:38:f7:2d:43:b8:12:bc:75:
be:c6:07:c6:f1:6c:79:db:b6:f0:b1:94:e7:ba:4b:90:ae:28:
b1:75:cf:71:f1:c6:89:6b:75:52:bc:f4:1e:42:c7:c4:26:65:
8f:c1:e7:2d:2d:66:fb:84:ac:bb:37:7b:c3:ee:99:b2:cd:ae:
0e:fc:d3:8f:e9:b7:6a:76:6a:f9:42:84:7f:ae:c5:5c:4e:a2:
94:1b:17:c3:1d:1f:32:9e:e2:a2:fa:45:4d:d6:71:6d:dd:fb:
53:b7:6e:b1:b0:72:a7:6d:91:a8:37:ba:48:80:7e:55:eb:6b:
16:bd:22:65:34:07:7a:d2:a9:65:96:56:fd:7e:d1:a7:88:db:
b4:59:f9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 10:02:50 2025 by rpki-client