Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: eMGZhWDfn3ptXGMxl8mo3+viQWijbdNWE40Gfzgkjlg=
Subject key identifier: 09:FA:25:A2:F3:EC:A8:CB:90:5F:B3:59:8B:1E:7C:F9:86:9C:3F:40
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 019510C6D9C955737C97BF58A52B3DFF59E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 076E
Signing time: Sun 16 Feb 2025 22:00:22 +0000
Manifest this update: Sun 16 Feb 2025 22:00:22 +0000
Manifest next update: Mon 17 Feb 2025 22:00:22 +0000
Files and hashes: 1: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: WdIShfJIip4fAM8Ii+yNa5lEp7Km81FcjO+KURQjTXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:d9:c9:55:73:7c:97:bf:58:a5:2b:3d:ff:59:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Feb 16 22:00:22 2025 GMT
Not After : Feb 17 22:00:22 2025 GMT
Subject: CN=09fa25a2f3eca8cb905fb3598b1e7cf9869c3f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:20:7c:18:cd:d3:62:34:f7:e2:c3:b6:cb:f9:
ec:e0:8d:1f:43:07:47:bc:9b:14:a5:94:f7:e5:08:
95:de:b2:5c:ac:66:e8:46:a1:21:8a:c1:ca:f0:9a:
ba:a4:b7:96:df:63:9f:0c:fe:ff:c2:72:bc:e4:60:
30:ca:e4:98:e4:e2:c4:1d:3e:16:f6:c2:f3:83:1a:
c1:58:44:e8:e9:27:0a:ec:03:e2:ff:0e:4d:d2:fd:
e8:4b:1d:64:07:c4:74:e7:20:54:ef:a2:11:9e:20:
e1:f4:b7:3d:aa:0b:b5:be:c7:e4:a4:f5:08:0c:d9:
b8:f2:c7:3a:52:e9:6c:39:f6:e6:03:5d:bf:4e:b0:
3f:c6:8d:a6:53:cb:32:2e:d9:ad:2b:bd:c7:6e:48:
bd:b5:5d:43:53:4c:bc:fd:65:33:1c:48:19:0d:f6:
84:d0:07:32:ff:ee:fc:96:d7:07:f0:11:a4:ba:c4:
c4:06:7a:1b:92:27:f3:68:97:7d:f3:cf:31:39:47:
f7:90:8c:2f:60:98:b7:67:41:90:b4:d2:06:b7:33:
90:e3:e4:a1:0f:49:91:f8:b2:20:35:65:5b:37:de:
99:cc:d6:c7:15:88:4f:67:c0:d0:cd:4f:49:12:ca:
68:92:65:db:69:0c:b5:e6:e0:21:80:74:21:09:a2:
f0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FA:25:A2:F3:EC:A8:CB:90:5F:B3:59:8B:1E:7C:F9:86:9C:3F:40
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:fd:a7:29:f7:1d:c4:03:06:f8:77:25:69:1c:8b:8d:f8:35:
12:44:1c:24:c9:a1:74:df:0f:58:a5:32:f6:61:0e:32:36:12:
a2:b6:0a:a4:68:ea:40:95:df:f5:85:7a:24:79:e1:6d:62:bc:
5b:e3:34:82:08:27:7b:86:2b:e9:a3:35:e2:ea:9c:ce:b4:95:
a3:97:2d:61:08:62:88:9d:fa:3a:49:7f:1f:20:b0:0e:c4:45:
9e:03:97:34:c2:08:b2:f5:f6:4a:15:45:5e:4e:ab:0f:a1:81:
3e:1c:0d:08:c6:b0:41:ff:b9:0b:6b:6e:37:13:ca:ce:5c:6f:
a1:9f:ad:d9:d8:bf:b9:c3:76:6b:ed:85:c4:02:90:80:59:9d:
dd:18:96:e2:37:51:e5:c0:09:60:cc:44:ba:c1:52:62:49:ec:
2e:b7:9e:3e:da:d3:21:93:8f:94:f4:94:5f:fa:d5:39:4d:fa:
47:b3:9a:d9:c1:ac:5a:87:64:4b:d9:64:27:84:38:4e:41:e5:
64:f4:90:1b:6c:14:5b:c1:39:f6:d3:e7:5f:b8:95:8c:fd:d2:
1d:e5:10:6f:17:28:ab:9b:a4:23:fb:6b:19:02:00:5b:3b:85:
47:b5:3a:bd:fe:97:0b:0d:88:17:ab:63:25:3f:6d:40:0e:bf:
4a:42:24:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:16 2025 by rpki-client