Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
File: hmuOBdk45F1lrjFNxnUjfeyDEaE.mft (raw, json)
Hash identifier: OHiVS1NJNcr/ltnBaeqGRnULtUXfOt1Tigq14vzbz6Y=
Subject key identifier: 99:9F:BB:94:04:C9:35:9D:68:94:7F:58:50:4F:68:98:E9:9B:02:75
Authority key identifier: 86:6B:8E:05:D9:38:E4:5D:65:AE:31:4D:C6:75:23:7D:EC:83:11:A1
Certificate issuer: /CN=866b8e05d938e45d65ae314dc675237dec8311a1
Certificate serial: 0194BB291D3D06588A869FD24D83B2B72140
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hmuOBdk45F1lrjFNxnUjfeyDEaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
Manifest number: 1044
Signing time: Fri 31 Jan 2025 07:00:21 +0000
Manifest this update: Fri 31 Jan 2025 07:00:21 +0000
Manifest next update: Sat 01 Feb 2025 07:00:21 +0000
Files and hashes: 1: hmuOBdk45F1lrjFNxnUjfeyDEaE.crl (hash: 92Kx5O+FcdMr/dPbvh5lF92QaVp4jLCPHeF+n+scrgM=)
2: sw4N2lxJHY4O1_YExcGjN1F8VGo.roa (hash: KXUZgZkZitwfC1Jk6g2FCiMl9s8x5hfwqmR4gq981VM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hmuOBdk45F1lrjFNxnUjfeyDEaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:1d:3d:06:58:8a:86:9f:d2:4d:83:b2:b7:21:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866b8e05d938e45d65ae314dc675237dec8311a1
Validity
Not Before: Jan 31 07:00:21 2025 GMT
Not After : Feb 1 07:00:21 2025 GMT
Subject: CN=999fbb9404c9359d68947f58504f6898e99b0275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:27:01:e5:6e:08:c5:30:76:91:8f:5d:26:d3:
bd:73:d8:27:40:94:f5:eb:b5:30:04:2e:85:c1:d3:
67:01:20:90:68:7a:12:8a:02:4c:14:73:41:fa:55:
8e:8d:c2:3c:36:83:a7:27:89:cf:df:21:2a:fe:fc:
c9:bd:3b:a3:38:b8:af:0e:e0:36:ea:7b:ff:83:53:
4e:79:4b:13:82:75:25:f9:93:91:50:06:e0:0d:c1:
a3:df:3d:11:c6:be:bb:e6:04:8a:b6:94:b7:30:1b:
59:06:ce:bb:d1:31:ff:4f:ba:60:79:29:9e:e0:04:
f4:cd:d4:e5:d2:f8:58:53:2d:26:c9:82:f4:3e:01:
47:02:08:33:99:58:8b:2f:83:67:af:a9:2f:42:eb:
83:5c:d8:cf:a8:22:fa:8e:4e:4e:6c:c2:cd:5e:0c:
c9:c9:96:15:3f:4b:7a:9c:04:0b:7a:73:89:9f:78:
6c:44:ab:09:a7:cb:48:70:c1:9f:7a:0b:f0:06:77:
60:64:05:bc:3a:0a:76:a9:7d:fc:d8:3e:a4:bb:ac:
ca:bc:38:2e:38:18:7b:34:46:b9:fb:92:60:cd:cf:
62:48:ff:4a:71:8a:78:01:d0:01:66:50:b7:9b:2a:
87:7d:57:37:08:10:6d:47:61:a2:ea:98:89:4d:1b:
26:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9F:BB:94:04:C9:35:9D:68:94:7F:58:50:4F:68:98:E9:9B:02:75
X509v3 Authority Key Identifier:
keyid:86:6B:8E:05:D9:38:E4:5D:65:AE:31:4D:C6:75:23:7D:EC:83:11:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hmuOBdk45F1lrjFNxnUjfeyDEaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:4e:c4:c7:2d:32:82:c6:9d:cf:ef:6d:f8:a4:bc:5a:ff:f4:
e7:b8:8b:ff:20:38:2a:0d:ec:6f:a1:3d:1b:60:f0:95:88:64:
58:6e:d9:49:6b:07:ab:e1:34:f1:48:9b:86:ff:d2:00:c0:c0:
9d:4a:94:a8:3e:25:07:60:1d:c5:b6:e3:e1:42:b7:81:91:05:
a7:d1:3a:ae:46:c6:cb:c1:40:db:2d:70:ab:50:53:f7:c8:c8:
52:dc:50:31:f1:d7:c5:38:41:a3:35:39:f9:d5:45:4e:ce:d8:
c5:5f:78:de:b9:0f:e2:4f:85:35:5a:97:29:52:65:be:50:76:
95:b0:0d:17:a0:72:28:66:70:f4:9e:bd:4c:5c:6e:cd:25:a9:
20:e4:1f:0e:54:c4:a0:73:8e:1e:14:ca:2a:5e:a2:d7:4b:f4:
39:21:0c:75:1b:ec:7e:b9:a6:5a:c5:79:ed:38:f8:62:c8:ef:
33:8d:f9:36:79:f5:53:1a:67:6c:78:ea:57:e0:3c:43:d9:f7:
4b:66:c5:65:22:14:50:86:4d:63:88:f0:2c:33:57:39:d6:44:
4a:17:94:36:04:ff:91:6e:a8:d9:2d:b6:46:f4:89:3b:70:fc:
3d:b0:f2:14:09:b9:b5:5f:24:fb:ee:9f:c9:aa:d7:1d:10:f5:
2f:73:fb:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:03 2025 by rpki-client on console-fra.rpki-client.org