Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
File: hXosdK9aRNmq5HoLiUJfpPf8fBk.mft (raw, json)
Hash identifier: aaBkIKxhdrf1EmKOV8ra1gsQfVHiE/+bvqJA67aVpWA=
Subject key identifier: BC:B1:AC:89:43:40:A2:6A:65:16:9A:A9:08:9E:4F:26:9B:64:6B:8D
Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Certificate serial: 0195108FD5D484791BDF415B153CCBD6B28F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
Manifest number: 1456
Signing time: Sun 16 Feb 2025 21:00:16 +0000
Manifest this update: Sun 16 Feb 2025 21:00:16 +0000
Manifest next update: Mon 17 Feb 2025 21:00:16 +0000
Files and hashes: 1: 2ocBNxmBQmUkoRPjhlhWgOYgiMs.roa (hash: vHBT5RZYwMgp/JaFcd7djyz4ta6PJ5W0BzdunzoRb3k=)
2: GLrf-4476lN-mWAGatfWehKzDpo.roa (hash: UBhmVRo+40lzdmL/jOTwvI0uo4yogaRRq+nqy+WHQ4s=)
3: bAf4pYlPQH01VJAbtj0tnC5SXTs.roa (hash: Is6byuQI/ji+q5pWZ94ZQraf9joydkFIunAau5zwEaA=)
4: hXosdK9aRNmq5HoLiUJfpPf8fBk.crl (hash: 7X6UTy3zM7ezkc1nrOwWeCNTPAHP81Kk00NtJok8p6U=)
5: t7q0gRp_Rjm1TKofQQJGVXRxiQ4.roa (hash: 8i0M18hNbssP3r3dcfAr+F0zW7Rf4keL31Nq8c6T/TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:d5:d4:84:79:1b:df:41:5b:15:3c:cb:d6:b2:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Validity
Not Before: Feb 16 21:00:16 2025 GMT
Not After : Feb 17 21:00:16 2025 GMT
Subject: CN=bcb1ac894340a26a65169aa9089e4f269b646b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:50:63:ea:24:e3:f2:ed:46:f2:1c:5f:10:58:
65:16:03:81:1c:f9:49:eb:ca:4c:76:28:b1:57:00:
8b:a9:65:09:f8:7f:f1:21:c6:5a:a5:d4:02:44:7f:
9f:56:82:af:8f:18:b2:2b:36:ba:68:e5:ae:c0:82:
68:c8:b9:e3:ec:93:76:f5:f8:9a:41:8b:5b:95:30:
fd:bf:9c:e4:48:80:91:cf:a9:53:91:16:2b:c4:a3:
fd:03:0d:d1:c4:a5:a8:d0:d0:17:32:8a:f0:32:be:
f7:7c:88:7e:18:fa:54:0c:89:46:93:79:04:2d:07:
e6:bf:8d:65:c9:b5:0b:fd:41:7f:37:c4:db:00:b3:
7f:41:8e:d4:79:4c:ff:0a:61:ca:7e:b0:59:43:8b:
e4:c1:64:13:09:f3:0c:62:da:9d:09:f0:9a:fb:fd:
c8:83:03:4b:1c:7c:22:c7:93:30:0c:5c:d8:20:e3:
c6:d1:0a:79:d4:cf:e4:80:4e:8d:a6:7f:46:92:30:
4d:f8:aa:f3:8c:e8:9b:9a:6d:bf:91:7d:c3:22:7c:
11:38:bb:ac:3c:2f:6b:48:c6:30:f2:8c:e2:fa:b2:
1b:54:18:35:1f:dd:3a:39:5d:e5:4e:ae:ad:76:88:
89:f0:78:3c:9a:24:38:c8:fa:a2:81:bc:79:9b:28:
9f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B1:AC:89:43:40:A2:6A:65:16:9A:A9:08:9E:4F:26:9B:64:6B:8D
X509v3 Authority Key Identifier:
keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:6f:0d:cc:c5:93:60:45:21:79:b0:a9:3f:92:d9:e7:b2:24:
e4:ab:d8:f7:aa:ee:07:34:f9:1f:ab:11:2c:03:7c:99:4d:fe:
5d:2c:b4:ba:66:72:69:5f:c8:4a:c7:46:bc:a7:9e:30:eb:b1:
73:d7:91:45:ce:03:cd:f5:b9:84:fc:50:74:d5:96:15:ae:5f:
7d:6c:1c:9c:cb:b8:12:3c:6a:29:db:d8:8c:d6:6c:da:9a:5a:
94:3e:18:f7:97:2d:4f:9b:b6:fd:99:62:ca:dd:81:2f:d5:53:
50:63:78:9d:35:49:c6:2f:75:f2:33:ba:9f:75:1a:c4:68:90:
76:c5:f2:d3:f9:77:a9:ce:40:a4:dd:12:bd:31:50:ae:e3:32:
92:06:8e:1a:be:1e:8c:0e:47:6b:15:e8:cf:7e:1b:70:ea:7b:
af:71:f4:a4:e6:06:ab:63:0f:dd:8e:6f:3c:35:01:c2:97:20:
cc:08:b5:9a:76:4d:6e:27:51:34:38:f2:97:f2:a5:aa:02:c0:
2c:09:05:a9:9b:4f:2c:23:68:53:ac:ab:e9:c1:93:db:61:98:
cc:30:82:93:59:82:ad:3c:5e:ed:86:2d:ef:35:14:4e:11:0b:
4a:99:e5:e6:64:9c:a1:8a:ee:f8:b2:33:e4:b8:bc:c0:36:64:
fd:eb:23:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:51 2025 by rpki-client