Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: ZhVGkXsxlGiBmm2cI7Iz3NQr35jmCHPh/DqQ0fUNUYE=
Subject key identifier: 07:8F:65:3E:1F:A1:81:F1:71:BD:C6:CF:91:9E:FB:76:32:B8:FD:DB
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 0194BB97248D7097DC9E1780F96F781DA941
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 0F32
Signing time: Fri 31 Jan 2025 09:00:32 +0000
Manifest this update: Fri 31 Jan 2025 09:00:32 +0000
Manifest next update: Sat 01 Feb 2025 09:00:32 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: jkP+eV27rMdh/ISXgYjdxEBds+e7ZVC4tpMNSxO5pnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:24:8d:70:97:dc:9e:17:80:f9:6f:78:1d:a9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jan 31 09:00:32 2025 GMT
Not After : Feb 1 09:00:32 2025 GMT
Subject: CN=078f653e1fa181f171bdc6cf919efb7632b8fddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:43:3b:78:14:cf:35:56:7e:c1:a2:8f:82:1d:
98:89:1c:4a:aa:07:81:2b:0d:2b:bc:ee:a8:38:33:
f0:f0:7d:d9:7d:c5:e5:06:30:97:93:66:8e:ec:02:
e8:18:fb:d2:46:2e:9d:70:b3:31:2b:23:5d:dd:32:
d0:15:75:a3:94:60:dc:64:62:a4:90:9f:6a:dc:de:
18:9f:b5:e6:3c:a6:87:f4:8a:a6:a2:53:70:93:49:
af:b4:5f:39:74:34:15:9a:f1:9a:ff:f7:12:01:91:
a2:cd:dc:6f:b1:39:7b:c5:ba:82:eb:83:7e:87:29:
f9:61:8e:58:8e:fc:f8:09:ac:64:d6:09:79:80:d8:
3f:0a:bd:d1:f2:e5:5c:f3:00:b9:80:c0:dc:b8:5a:
66:9e:66:24:d6:b0:8c:93:f9:8d:51:80:64:5c:e3:
c5:e1:99:a7:2b:52:38:2b:3f:89:c1:45:4b:76:0f:
c6:f7:e8:c4:c7:e8:bc:b4:8e:a7:83:1e:fe:61:b5:
ec:f1:b9:bb:cc:4f:7b:63:60:d4:46:69:c0:3d:b9:
97:37:e0:ba:dc:a1:dd:e7:3d:45:ee:9a:7c:00:4c:
78:83:82:48:39:4f:eb:aa:ba:87:f9:95:37:ad:d1:
12:59:98:86:1d:49:b7:ec:b9:9b:fb:9d:e7:36:b8:
2b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8F:65:3E:1F:A1:81:F1:71:BD:C6:CF:91:9E:FB:76:32:B8:FD:DB
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:c1:40:fa:d6:1a:04:0b:38:27:67:3a:db:fc:e4:22:db:16:
c2:3b:35:cf:fb:c0:30:90:ab:d4:cf:3c:6e:e5:62:9f:a0:7f:
3a:e4:bd:fa:c1:c3:0c:f5:bb:bd:f2:d4:1f:fb:28:8a:02:3b:
00:71:d9:c5:f7:b0:6a:24:63:8d:cd:5b:c1:6a:54:79:bc:3a:
f3:bd:7a:d5:6c:97:b6:6d:ba:3c:c8:f1:aa:ce:6d:9a:74:2c:
84:e8:e8:36:0b:21:10:86:59:1d:d1:dd:6d:9e:b3:17:9b:c8:
f7:2b:73:27:c6:db:22:bd:8b:8d:a6:98:c8:11:9c:3c:ad:c0:
bd:b6:14:72:09:93:bd:aa:d8:63:1f:ba:cd:8e:ff:4a:a5:7f:
f5:c1:e2:79:0f:d3:5d:5a:af:ea:73:4e:ac:fc:31:49:ca:3c:
90:4e:10:48:60:5d:f6:55:21:1e:1a:a8:cc:22:e7:a0:5d:7d:
f8:20:95:d6:b3:11:7b:ff:c4:7f:54:bb:1c:99:54:27:50:c2:
cb:84:03:0a:94:49:ad:10:2c:aa:b1:a4:2b:b6:13:fc:ba:9f:
4a:ea:fc:a5:36:ac:db:4e:6f:9b:1c:70:fa:95:6d:0d:bc:0a:
a0:24:f2:ae:ea:92:32:99:30:59:ad:b4:38:71:e4:74:91:db:
fd:c2:23:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:34 2025 by rpki-client on console-fra.rpki-client.org