Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: 0U7oy7ATcbxFaR7sJ4ELSv0Q5N0/bgAeAGtQEkOyQ34=
Subject key identifier: 24:FB:FE:79:FF:7E:10:A8:18:19:88:54:BB:0B:D7:15:67:31:F6:7A
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 0194C4639CC675B6958858E7C1D77346AEB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 40
Signing time: Sun 02 Feb 2025 02:00:49 +0000
Manifest this update: Sun 02 Feb 2025 02:00:49 +0000
Manifest next update: Mon 03 Feb 2025 02:00:49 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: ofn66Ofe3WelpBBT5ct45+c4nxSZ6A+Rp8fy2G/GSHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:9c:c6:75:b6:95:88:58:e7:c1:d7:73:46:ae:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Feb 2 02:00:49 2025 GMT
Not After : Feb 3 02:00:49 2025 GMT
Subject: CN=24fbfe79ff7e10a818198854bb0bd7156731f67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ac:67:4e:d8:ce:50:c8:7d:dd:c2:32:c4:62:
4a:9c:d2:c7:1e:c5:e0:77:89:52:43:00:29:4f:9a:
df:f7:44:80:41:92:c8:7a:a4:c8:c6:ab:2c:7c:8d:
17:f4:c5:5b:d7:08:d6:8a:9a:c8:fa:06:b0:6a:31:
e6:96:01:93:12:fa:48:0f:95:09:65:c8:76:08:4e:
4f:60:5d:e3:e2:65:1d:70:b4:f6:1b:19:eb:11:5b:
04:00:62:8f:f2:c5:76:67:9b:9b:43:5d:22:38:74:
81:6b:73:b2:04:33:19:2b:f3:15:59:3e:05:ef:ae:
ea:84:45:ac:f3:0a:22:f1:4d:40:82:db:32:d6:59:
25:a8:b3:83:93:14:c9:8f:b8:d6:ce:1c:a4:ed:3b:
42:91:51:d7:06:c8:1b:1e:b2:9f:60:6a:26:60:b8:
44:87:4c:39:e3:e0:8a:eb:61:4e:0e:3f:ce:b0:e4:
2c:a4:28:ef:03:22:84:69:ca:a6:b5:fc:7f:2f:09:
79:2e:70:37:83:2a:85:a9:d2:19:5c:ec:6f:d3:59:
b4:a7:f7:e0:14:06:d6:69:9a:0c:ee:c0:5a:38:0c:
80:6b:48:e6:cb:a9:aa:14:04:9e:04:bb:e1:eb:34:
95:05:67:aa:e6:fc:69:15:20:b8:7c:ac:3d:45:71:
95:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FB:FE:79:FF:7E:10:A8:18:19:88:54:BB:0B:D7:15:67:31:F6:7A
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:29:44:c0:90:d8:3b:e0:14:66:2b:0f:c4:fb:c8:ea:e9:9a:
1a:76:b9:ff:a4:ed:5d:43:20:00:c9:71:eb:f5:98:9c:30:43:
9d:75:33:21:93:16:b1:12:59:11:a0:16:25:a8:f7:e6:d3:f0:
48:f1:8f:95:ee:fa:74:41:06:2a:c7:47:42:6c:44:ab:61:40:
4e:c1:cc:3e:1e:d1:90:9a:9a:e0:2e:ec:90:d1:41:62:4e:77:
64:45:9a:6a:67:bd:7e:0b:69:66:ac:29:6a:5c:77:01:f9:70:
26:aa:87:ab:89:50:3e:f6:31:2f:9e:aa:aa:b8:a5:db:a0:44:
be:c5:b7:c7:33:06:e0:3c:aa:02:0e:c2:47:91:6b:d5:a5:44:
50:1f:d5:fa:1d:a3:6f:24:b5:24:a6:06:f6:8c:1e:d3:58:ba:
e5:43:ea:98:a7:72:ef:87:a6:77:63:4f:5a:bf:c9:75:a7:54:
2f:d3:c4:3e:1c:24:81:d0:c4:79:e3:29:9a:f6:35:76:7a:97:
a1:ad:bf:db:09:e8:5b:1e:1c:6d:ea:02:8d:3b:f3:10:e9:7a:
1b:a6:02:c4:9a:89:b4:83:20:79:a0:56:b1:c2:fa:d6:69:cf:
ad:86:9c:df:8f:69:81:ad:ae:15:ed:a0:83:ce:00:68:54:a7:
02:ff:df:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:49:08 2025 by rpki-client