Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
File: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft (raw, json)
Hash identifier: 0KsGeppr1z/amChHkxvmq9U8FWeoasxv3B14ZZ0dQAY=
Subject key identifier: 6B:49:68:0D:A9:84:5B:7E:11:AE:D0:7B:EB:CA:24:72:29:15:80:39
Authority key identifier: 1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
Certificate issuer: /CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Certificate serial: 0194BAF239296A97741FAC9E5FFF9FB15D9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
Manifest number: 142A
Signing time: Fri 31 Jan 2025 06:00:23 +0000
Manifest this update: Fri 31 Jan 2025 06:00:23 +0000
Manifest next update: Sat 01 Feb 2025 06:00:23 +0000
Files and hashes: 1: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl (hash: bcYU6aiweF6RcteqyDzx38WXi4ieUgXVllc9/qoEuqI=)
2: Rk8F0_O96bWnV23XOY1ym8DMObc.roa (hash: mN43AwUntAXDuv+4vVnXFfluzZ73Kps3qVN8w0gCSEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:39:29:6a:97:74:1f:ac:9e:5f:ff:9f:b1:5d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Validity
Not Before: Jan 31 06:00:23 2025 GMT
Not After : Feb 1 06:00:23 2025 GMT
Subject: CN=6b49680da9845b7e11aed07bebca247229158039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e7:e8:94:e6:2e:4a:70:ee:2e:99:fa:0c:2d:
7d:1e:47:44:d1:bc:3b:c9:79:ae:29:7c:2e:c0:6f:
c6:d2:f5:5f:8b:78:52:c0:b5:d9:66:03:dd:92:d8:
59:72:6a:99:b1:60:ac:ff:c3:43:c2:f5:25:51:cd:
4a:25:80:79:52:25:e8:29:32:a7:30:2d:cb:b1:84:
1c:69:75:ea:77:c6:10:8f:83:e0:ae:96:dc:21:e4:
05:86:fa:12:d2:b9:fd:b3:cb:9a:7c:56:84:5d:94:
6e:2e:7c:52:ad:b5:22:83:db:6e:86:a2:ff:31:a3:
40:3a:90:74:a5:77:f2:0b:35:a6:ae:1f:08:b1:05:
ac:6b:61:7d:2e:da:30:a9:23:bd:3f:1e:e3:5e:6d:
d3:c4:be:63:7f:bb:2b:f0:1b:f0:6d:04:d9:89:ac:
03:c1:ab:a6:71:a1:1b:ef:9e:63:5e:6d:49:0e:03:
85:83:1f:01:b4:67:30:00:5c:82:6b:fe:fd:1d:97:
1d:2b:9d:b3:a7:d5:fd:2a:52:ad:ea:e3:3b:19:0d:
73:4d:87:e2:71:38:26:9c:52:5d:03:3a:d4:96:ed:
12:15:37:d7:10:b2:0c:64:8a:5d:20:b1:55:3f:01:
f1:ba:59:af:b2:e0:dc:a6:7a:83:fd:62:23:f4:14:
ee:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:49:68:0D:A9:84:5B:7E:11:AE:D0:7B:EB:CA:24:72:29:15:80:39
X509v3 Authority Key Identifier:
keyid:1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:c3:72:b8:70:ad:d6:e7:66:e5:33:49:b9:a7:77:c4:c5:53:
c4:2d:f9:a9:97:b3:cf:6b:0b:1f:74:d7:71:70:25:a4:1e:e5:
e3:8b:7b:f9:a3:56:87:cd:d5:03:92:65:cb:3c:ca:15:83:72:
23:e9:88:7d:91:d5:a8:7d:f3:5b:3d:b0:f1:74:dd:62:dc:95:
c0:f7:b3:06:14:49:a4:51:02:a1:e0:c2:ce:88:ab:08:06:84:
c1:84:69:7a:f9:a3:ff:5f:ab:b3:f2:07:6a:b1:70:59:36:08:
3b:0a:a2:e4:d2:03:6a:af:73:16:f8:4a:24:5f:4c:2a:04:c4:
87:be:5f:5a:7f:e4:b6:56:d6:2e:2b:7a:68:76:08:53:39:a8:
55:59:4a:61:fa:2e:45:fa:76:40:99:9e:b7:a4:05:3a:b5:b8:
42:c0:04:5a:83:93:2c:2a:a8:7d:9c:0a:37:b8:4d:73:46:38:
85:76:ef:b9:4d:8b:36:36:1f:2e:cc:04:5b:65:71:7b:04:aa:
53:a0:96:94:19:85:5f:4d:09:6d:d2:47:53:20:bf:59:9a:b5:
ff:34:97:76:6b:3c:57:ac:0d:7f:e7:e1:b1:c6:c3:89:c1:a8:
d6:55:c2:74:86:be:94:9a:3a:d6:53:83:61:65:3c:f9:c1:b0:
3c:bf:33:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:00 2025 by rpki-client on console-fra.rpki-client.org