Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
File: hkl2gukwfEaHk1AIFzFH0TKijGQ.mft (raw, json)
Hash identifier: hf51e+JKlPdwYK+x8clYTXm8cc7WMhJt/OOuytNVsPY=
Subject key identifier: FF:10:D2:26:0A:24:07:86:7E:74:C2:25:AE:BA:02:BD:39:47:64:A8
Authority key identifier: 86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
Certificate issuer: /CN=86497682e9307c4687935008173147d132a28c64
Certificate serial: 0194BA844EA1697F8E8F3E5CAD4606231DEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
Manifest number: 0FF6
Signing time: Fri 31 Jan 2025 04:00:20 +0000
Manifest this update: Fri 31 Jan 2025 04:00:20 +0000
Manifest next update: Sat 01 Feb 2025 04:00:20 +0000
Files and hashes: 1: BO3NQSZ4VV4Ik2Xgm0m98xsd8Po.roa (hash: zwimVc6fdY5wMVCx/Pfq1/VebJPothW3yZi++5QRFE0=)
2: hkl2gukwfEaHk1AIFzFH0TKijGQ.crl (hash: Q5BmeGIlQem5clcTPV8rLiOwy2exE+JZkmqyekoGWy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:4e:a1:69:7f:8e:8f:3e:5c:ad:46:06:23:1d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86497682e9307c4687935008173147d132a28c64
Validity
Not Before: Jan 31 04:00:20 2025 GMT
Not After : Feb 1 04:00:20 2025 GMT
Subject: CN=ff10d2260a2407867e74c225aeba02bd394764a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:12:7b:9b:bd:3a:8c:b7:23:f2:10:4a:20:bb:
5e:ca:ad:c6:c7:13:0e:a3:36:c5:9c:04:5f:c6:ad:
e7:1f:7a:97:dd:d1:8f:74:b4:be:29:aa:39:fe:23:
e0:99:dd:1c:0e:06:20:f9:c6:90:b1:da:34:3f:77:
a5:fe:86:3f:bb:90:23:c6:b2:f2:52:84:8d:9c:15:
bc:a7:d6:92:ab:47:fb:5a:c0:68:ee:99:fb:f7:66:
12:bf:d6:65:26:5d:a4:b2:90:e4:41:ff:48:24:05:
a4:e9:9a:11:10:3d:d5:a0:dc:35:b8:b8:83:c5:c2:
5b:35:df:4e:4a:96:4e:53:9b:6f:87:58:de:4b:93:
9c:c8:a6:79:aa:27:7e:3b:ba:5e:17:77:53:d8:73:
74:e7:fd:8a:d3:df:65:60:72:17:24:27:8d:8b:a5:
d7:07:3f:86:35:81:08:88:eb:82:46:5a:16:0a:c8:
34:ad:c5:f1:29:21:71:8f:82:f6:e2:02:7b:4f:81:
13:f5:cf:f6:72:48:b1:b3:6c:06:d0:09:20:d8:df:
51:51:d8:18:ef:ee:50:08:50:05:07:74:57:b4:64:
78:14:18:21:05:1a:85:c8:88:3e:36:f2:45:42:53:
87:ee:e6:5d:e2:44:35:e4:85:b4:8a:36:f7:90:0a:
3f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:10:D2:26:0A:24:07:86:7E:74:C2:25:AE:BA:02:BD:39:47:64:A8
X509v3 Authority Key Identifier:
keyid:86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:42:6f:ee:c1:0a:5a:4a:02:f9:4b:04:d9:2a:2f:fc:f0:49:
da:2d:88:4c:2c:ea:ca:8c:20:93:e3:0b:46:03:0a:a1:84:0d:
7c:e3:a9:5c:07:d6:4b:c3:78:1c:20:f0:8c:61:55:d4:0c:33:
1a:c5:99:9f:a9:39:ab:8a:c2:24:7d:de:0f:28:31:c8:62:30:
6b:6e:1d:2e:30:50:74:70:fc:4b:82:50:9f:10:cd:ae:c8:b6:
33:71:13:f4:4c:e0:07:b7:82:a3:c8:53:eb:9b:af:48:52:70:
80:94:46:a5:9a:3d:30:3f:f6:82:cd:2f:c5:c2:c3:7c:e5:33:
ac:78:79:b5:eb:9b:06:f7:93:b2:a5:b1:93:0a:f8:60:9e:ea:
84:c5:d7:81:59:81:7e:d7:64:f1:78:17:4d:f4:df:e4:62:b7:
4d:64:7d:96:c0:ed:8e:b9:77:a8:d0:b7:1f:85:41:7c:0b:a2:
c9:2f:41:cf:74:fb:13:88:a9:e4:b1:b4:92:d0:05:a3:eb:62:
1f:a2:16:96:8e:54:ca:f5:61:01:5e:9b:ee:9e:10:28:d9:71:
9d:9d:d3:93:7a:ff:1a:ad:3c:26:08:cf:f5:b4:92:9a:84:bd:
94:33:83:01:4e:1a:d0:e5:9e:55:32:c6:85:6f:44:92:a9:7b:
ba:a4:8a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:26 2025 by rpki-client on console-fra.rpki-client.org