Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
File: HzjUsMuomcJPTjQHOE1tP6jVGl8.mft (raw, json)
Hash identifier: OgQJZCLv9EXQor5I7eRbiaSci1BCyZS4kMMxgS799to=
Subject key identifier: B3:3A:75:70:CB:3D:61:56:B8:42:56:49:CF:85:E7:DE:D5:42:0E:64
Authority key identifier: 1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
Certificate issuer: /CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Certificate serial: 0195113471C3FB6631537BFB44DA380FC351
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
Manifest number: 0220
Signing time: Mon 17 Feb 2025 00:00:04 +0000
Manifest this update: Mon 17 Feb 2025 00:00:04 +0000
Manifest next update: Tue 18 Feb 2025 00:00:04 +0000
Files and hashes: 1: HzjUsMuomcJPTjQHOE1tP6jVGl8.crl (hash: jDuRNQO3N7R8EvrAs7pbGnPb9IhkXRuFsgt7dR3ZM4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:71:c3:fb:66:31:53:7b:fb:44:da:38:0f:c3:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Validity
Not Before: Feb 17 00:00:04 2025 GMT
Not After : Feb 18 00:00:04 2025 GMT
Subject: CN=b33a7570cb3d6156b8425649cf85e7ded5420e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:32:d3:d0:cd:81:8b:52:29:f1:2b:0d:ef:
3e:9a:37:4c:f5:0e:83:51:8b:3f:3a:b3:47:ab:63:
ca:9d:bb:53:2f:53:03:98:f9:de:85:bb:d6:08:d4:
9e:72:06:5e:7d:24:29:b6:99:e6:b4:8c:8f:ac:8d:
cd:0f:6c:e9:d9:13:ea:bc:1c:93:f1:68:53:f3:09:
f8:a1:80:39:69:cc:18:71:d1:a1:88:2a:7e:70:d3:
76:5d:d8:62:f6:31:27:6c:a3:fa:8b:e0:c6:b8:a1:
ce:81:c6:a4:91:d5:43:da:53:1e:7a:81:f2:af:97:
e0:4b:68:a0:a6:e1:40:99:75:07:1c:c4:b4:c7:53:
4c:07:3e:10:f6:d6:63:b2:45:ab:c1:56:1d:cf:ea:
2b:7a:8c:90:ab:bb:9f:7f:c3:0a:91:91:97:c0:d7:
71:f0:85:c7:df:b3:a0:f6:8f:75:6f:ac:42:a5:d8:
a4:a1:41:0f:b8:a8:e9:d0:ba:3a:2b:84:d0:d1:3e:
2f:cd:d8:27:6d:aa:b3:0c:4e:c7:48:2f:5a:f9:6d:
3d:bb:58:c0:82:14:3d:45:73:4a:3c:8e:47:c3:73:
02:f7:53:a0:99:7c:de:a8:ef:84:bf:3f:8a:5c:56:
d5:c4:cd:c6:c6:21:26:83:e0:ab:7b:5d:e8:8d:71:
52:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3A:75:70:CB:3D:61:56:B8:42:56:49:CF:85:E7:DE:D5:42:0E:64
X509v3 Authority Key Identifier:
keyid:1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:5f:0e:6f:6d:26:17:dc:cf:58:26:1b:4f:c2:16:d3:d5:78:
e6:21:3d:17:fd:ee:d5:fa:6b:f9:d9:59:fa:55:40:a1:e6:df:
63:fc:5f:b1:b4:60:83:7d:b8:d5:a4:f3:1f:7c:e2:d0:c5:d8:
c6:63:0e:7b:97:60:f9:55:cd:a1:11:b2:0f:12:77:cf:a2:cb:
57:9a:de:85:60:78:f2:e7:36:9a:37:7d:d0:41:00:66:71:f5:
1d:8f:bf:e1:f6:08:40:7f:0f:76:4f:00:36:d4:3e:9d:64:e7:
d6:43:0e:3b:14:85:94:8b:4b:29:f1:fa:40:15:6c:13:b3:b1:
b0:d8:25:58:cb:80:42:68:65:f3:e1:77:c9:66:7f:0f:f5:ab:
e4:74:38:74:dd:46:fc:64:f0:9e:26:32:54:56:97:fb:94:9c:
4d:72:94:92:5c:30:82:3f:28:30:a7:fa:20:57:96:0d:75:4a:
3d:2e:93:5b:35:65:7f:51:4e:96:bd:f8:bf:a4:7d:d7:cf:d9:
bd:73:de:8f:d6:ea:be:b2:aa:fd:c5:ad:73:61:94:7e:2a:72:
b6:ed:6e:11:8a:a7:83:02:04:82:51:c7:ff:24:f2:e8:b7:da:
5a:57:fd:3d:48:d2:ff:c0:dc:4a:b9:b6:8c:7b:3b:5b:a1:79:
f2:07:33:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:41 2025 by rpki-client