Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
File: FHVOhj0RfOYhDylUYajGqgQ8bIA.mft (raw, json)
Hash identifier: Jr2Blq/JPaEQSHAimIPAILXR1S5oCCHnPDW4ArYw42I=
Subject key identifier: 9A:6F:AD:83:EA:8E:32:8C:59:C9:AC:FF:26:63:27:3A:96:19:74:91
Authority key identifier: 14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80
Certificate issuer: /CN=14754e863d117ce6210f295461a8c6aa043c6c80
Certificate serial: 0195113534E3D93EE4787B4997630515EA65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
Manifest number: 1452
Signing time: Mon 17 Feb 2025 00:00:54 +0000
Manifest this update: Mon 17 Feb 2025 00:00:54 +0000
Manifest next update: Tue 18 Feb 2025 00:00:54 +0000
Files and hashes: 1: FHVOhj0RfOYhDylUYajGqgQ8bIA.crl (hash: kQldhKtMnxLkieUx/AxaHm3sf+Zc6KVrtliT6kf2xKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:34:e3:d9:3e:e4:78:7b:49:97:63:05:15:ea:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14754e863d117ce6210f295461a8c6aa043c6c80
Validity
Not Before: Feb 17 00:00:54 2025 GMT
Not After : Feb 18 00:00:54 2025 GMT
Subject: CN=9a6fad83ea8e328c59c9acff2663273a96197491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:aa:2a:0f:13:a7:7b:10:1e:2b:de:98:1e:
54:84:c2:db:dd:32:00:05:c0:26:45:cf:ae:15:26:
49:09:52:14:18:b1:1a:08:7e:0d:10:a2:51:4c:f6:
a5:74:c2:36:df:94:03:2b:9c:0a:27:fa:51:3f:dc:
3e:89:0b:36:19:ee:29:4a:1c:1a:dc:f5:c5:51:56:
10:4f:bc:cb:55:ea:f0:31:6b:30:9c:f3:00:2c:45:
dc:87:b4:2c:fc:29:83:8a:95:e3:e0:95:fd:2f:a3:
dc:5f:52:73:e6:a1:67:e3:61:47:8f:3f:64:11:cb:
52:14:09:2b:24:8d:d7:13:e9:bf:9a:97:88:23:c2:
84:6a:3f:81:36:16:a2:16:da:33:47:6d:7c:2d:75:
a7:30:e6:b2:2a:21:97:4e:36:ff:94:fb:b0:d5:47:
f8:01:0e:1f:7b:22:d6:b9:0a:f1:db:2c:8e:bb:fb:
0c:ea:95:fe:58:43:f3:92:40:ae:da:72:ce:ea:01:
77:dd:7e:05:ae:c5:5f:ff:a6:d7:f5:95:cc:65:2c:
75:4c:af:5e:cf:e6:45:64:5b:fd:1b:cf:a6:c0:3e:
24:eb:1a:5d:71:d3:6b:94:bb:c8:29:a5:22:42:2f:
59:05:7c:a1:7c:a9:58:72:b6:a1:05:77:e0:ff:62:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6F:AD:83:EA:8E:32:8C:59:C9:AC:FF:26:63:27:3A:96:19:74:91
X509v3 Authority Key Identifier:
keyid:14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:61:89:86:35:26:b0:f8:2c:00:4d:d6:d3:90:46:b9:d4:95:
d1:04:95:c9:09:6b:d9:05:39:de:98:1b:9d:ce:14:84:86:39:
f4:42:55:5e:1c:7f:8a:a8:03:e0:54:d5:b9:c9:30:32:ed:50:
ff:55:07:99:da:61:b5:58:26:a8:57:50:bb:d2:01:ce:45:4c:
57:4c:fa:73:f9:ad:72:2a:a2:04:76:59:5f:d3:4e:12:c1:57:
5e:00:a5:63:3c:67:1d:ab:c3:c3:0e:db:e0:3e:ae:b1:be:95:
19:7b:4b:b5:66:2e:77:dc:73:e1:53:66:be:62:05:f4:47:f3:
39:26:15:36:50:dd:13:b4:62:21:6b:b9:d9:aa:7b:10:24:58:
8a:d5:12:25:d1:28:20:56:5c:03:82:22:94:52:e3:79:bc:b5:
0b:2b:83:89:50:48:54:79:91:ce:b6:24:44:0d:2f:fa:24:b7:
5f:43:58:22:82:ec:9b:b4:1c:24:a8:88:4f:be:f4:f9:a3:7b:
bd:e8:cd:8b:3a:fe:f9:c5:ae:81:af:2d:20:5a:d2:fb:c0:af:
d3:7b:c2:ac:41:e3:0d:cd:84:a0:8d:02:89:61:43:8d:9c:1f:
ec:49:db:65:f1:59:1d:c8:d6:5f:1f:6d:d0:fd:46:23:30:3a:
64:cd:5d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:15 2025 by rpki-client