Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json)
Hash identifier: ILfAOEmZRn3JFALq2+4f6e/tOMfOFYhyHV5BRW+2DrI=
Subject key identifier: 1D:A2:85:E1:0E:37:B5:06:35:56:64:4A:AB:29:20:0C:E9:EE:D6:97
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 0195116BD815A9DC2BDD3F67A117C44B4EF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
Manifest number: 057E
Signing time: Mon 17 Feb 2025 01:00:35 +0000
Manifest this update: Mon 17 Feb 2025 01:00:35 +0000
Manifest next update: Tue 18 Feb 2025 01:00:35 +0000
Files and hashes: 1: 00q_V9fiuxK8x1J5dDf6heEWqpM.roa (hash: XdV8RV4SCz2Bjb29weutw1xlx9C6MC3WoiwiAcbHJHU=)
2: 0DRjjmcZlOUPV43RadORGLY5fAU.roa (hash: OsLSdbKdwCfPfb6fa3q09CVq+CXKI7ScoH/tLbYmOyY=)
3: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: vg6FSpnKOsN7vJTJs24jhnGd2mer6eyplogHSxF5hr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:d8:15:a9:dc:2b:dd:3f:67:a1:17:c4:4b:4e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Feb 17 01:00:35 2025 GMT
Not After : Feb 18 01:00:35 2025 GMT
Subject: CN=1da285e10e37b5063556644aab29200ce9eed697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9d:06:43:81:20:88:12:7c:0c:f2:19:7b:4b:
91:1b:e9:92:2a:23:c5:b1:b6:cd:f7:76:f5:12:31:
6a:2b:4a:36:69:56:17:f9:eb:13:e4:e4:c6:1e:38:
bf:8e:53:2d:0d:05:61:27:ba:89:fe:f2:c2:12:d2:
07:9c:bb:20:13:9c:00:79:39:0b:53:7d:92:76:c7:
29:ca:7a:76:ef:be:cf:f8:b6:eb:37:a4:cf:5a:dc:
af:e8:e2:45:d9:e6:78:dc:dc:c9:d8:8a:94:e3:29:
c3:03:08:be:7b:fa:de:31:ac:80:97:09:06:de:44:
fd:aa:28:b2:9b:96:df:7a:9c:4e:1d:2c:2b:83:87:
0f:d6:12:bc:c4:51:df:05:fb:79:45:7c:dc:96:48:
30:b0:3f:f4:e9:46:10:e1:1f:d7:08:f4:de:fa:d5:
7e:e9:37:2f:8c:00:be:80:d4:f8:17:da:ee:bc:b7:
ef:24:db:de:e9:9f:38:3c:95:f5:cd:06:ec:ca:c3:
3c:ed:03:3a:3d:05:e7:59:af:64:91:80:21:89:f9:
ee:c7:45:f3:b7:bc:25:16:cf:6a:8a:9e:be:82:51:
6c:b8:7a:62:46:b3:a1:6b:70:17:15:e8:0c:6b:6d:
00:8e:d7:14:c5:64:80:be:fc:9f:13:70:8c:28:bf:
e1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A2:85:E1:0E:37:B5:06:35:56:64:4A:AB:29:20:0C:E9:EE:D6:97
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:dc:ce:41:10:10:33:32:c5:41:23:cd:46:d7:1d:9e:0c:d1:
37:dd:3b:34:57:40:bf:e2:14:5f:eb:98:6b:ac:2c:0d:ec:d4:
1a:c2:8b:fc:d7:b3:1b:e3:3d:57:c1:b3:f7:93:2b:2e:67:41:
fb:09:16:58:54:0f:49:3c:86:a9:50:62:8e:54:be:a1:39:ab:
c6:f5:e9:19:62:e6:d0:08:0d:bf:e8:90:d8:07:54:69:ca:44:
34:dc:47:a0:e5:e3:f8:3c:ae:06:11:c0:90:99:7d:7e:f3:87:
d4:f4:f0:87:40:af:74:51:80:a4:5d:66:cc:cb:1e:1d:44:1c:
83:a2:35:91:2c:15:80:ff:c2:9d:1f:a0:b3:ad:12:7b:9f:cd:
a0:79:73:b1:38:4b:02:6e:34:5a:80:57:3c:da:1a:5a:4b:4b:
22:2d:f4:74:46:dc:bb:58:6b:1e:2b:e3:e0:f3:17:6d:2c:8a:
1a:3d:75:aa:28:a5:98:e8:89:bd:91:bc:65:1c:46:73:2d:df:
98:fe:b0:d6:a5:f2:94:04:6d:e6:5e:b3:84:49:fd:4b:f6:f9:
d9:7d:95:7a:f5:ed:bd:08:90:93:2e:73:98:1d:b7:5f:0a:bf:
04:4d:65:c6:32:9a:71:0f:76:a5:2f:4b:42:af:fc:ce:c4:92:
e6:97:49:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:01 2025 by rpki-client