Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: TRYHE3CgKjFHpGvCxmynrQ0ugIrYdfm961wlQ7WVolw=
Subject key identifier: 79:D1:F6:92:97:09:DC:1E:B5:64:30:3D:E7:19:8E:C5:76:F6:01:DB
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 0195124746569082733B4E5A600DF69B73A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 145B
Signing time: Mon 17 Feb 2025 05:00:15 +0000
Manifest this update: Mon 17 Feb 2025 05:00:15 +0000
Manifest next update: Tue 18 Feb 2025 05:00:15 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: ba/lvZRLxvLHb+k1LMft+jni/I/j535JPWDtx/VPnY4=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:46:56:90:82:73:3b:4e:5a:60:0d:f6:9b:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Feb 17 05:00:15 2025 GMT
Not After : Feb 18 05:00:15 2025 GMT
Subject: CN=79d1f6929709dc1eb564303de7198ec576f601db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b6:34:a2:88:78:91:77:d7:87:26:ad:c3:af:
16:47:d3:ec:71:57:4e:f8:74:63:99:67:9d:79:d6:
5a:f9:33:97:3c:da:a9:55:29:79:e2:8d:79:09:f6:
e3:54:ba:86:78:6c:ad:d1:d0:93:45:a3:f3:1d:9d:
bf:6a:76:82:e7:4d:00:c6:4d:e7:a5:6a:6f:b2:ca:
08:07:41:63:3a:45:54:1f:fc:65:cd:b5:59:fb:16:
10:19:73:0a:07:f6:72:1b:fd:f9:73:5a:71:b6:7a:
c9:ef:f4:ec:4f:86:fb:51:5b:67:8a:4a:10:63:9e:
8f:57:78:50:db:c4:71:bd:3e:3f:8f:09:33:b4:d4:
2e:f8:4a:85:0b:96:91:14:90:e9:22:f5:78:ae:ff:
6a:27:40:34:e8:d3:27:c4:e7:2a:54:91:19:79:bf:
cd:d7:39:70:5f:e4:68:b9:3e:7a:5c:b2:a2:d4:7a:
89:cc:01:bd:09:e4:73:63:fc:dd:27:ef:c1:55:28:
36:a3:4c:4d:20:43:48:f0:53:29:a6:f6:70:17:bb:
83:79:e3:50:e0:19:b9:e1:a9:22:5c:77:b5:89:b6:
33:ba:93:fb:e1:fc:18:c2:16:f7:12:d0:96:4e:22:
ca:bd:1b:fc:8c:92:cf:6f:5a:2d:09:d0:fc:c9:d7:
9e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D1:F6:92:97:09:DC:1E:B5:64:30:3D:E7:19:8E:C5:76:F6:01:DB
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:46:ef:e2:9b:53:bb:50:b3:41:8d:73:90:1f:8e:13:30:4d:
ad:42:fb:f1:1d:60:e7:e2:05:7f:bd:bc:a0:35:11:2e:76:f6:
87:ff:2b:7e:cf:38:da:88:e0:84:ef:8d:fb:20:3b:de:e6:7a:
56:3b:18:f3:b0:ab:a6:4b:52:ea:ee:af:a0:ba:16:f9:79:11:
6d:9d:b8:c7:91:8f:3f:46:28:e0:7c:3d:9f:9e:2f:03:19:c8:
a1:b1:fe:c9:ea:68:31:f2:e2:c3:52:97:fd:51:fd:08:63:b3:
f4:b5:53:1e:f1:3c:6f:17:40:8c:c8:5c:d7:c0:a0:bb:ee:5d:
36:f2:03:76:49:27:be:f5:29:3f:32:8e:6d:bd:11:3b:c3:59:
8a:e8:cf:ce:df:16:57:47:d4:e1:7a:1d:e9:fd:1c:fe:e4:8d:
32:94:60:ae:e6:37:cb:9e:ce:b0:18:4c:7b:26:04:09:d0:b7:
b6:74:ee:0e:bc:a5:61:2a:0b:e3:e2:6f:fd:eb:c1:7f:73:e2:
9c:c5:e9:52:29:fb:10:58:a9:9a:59:b3:3a:5a:46:27:4d:d5:
66:08:d5:29:2c:10:5f:33:67:c6:46:e5:63:f8:b1:85:00:96:
58:1b:1b:d6:2d:0c:59:8c:c1:13:3f:94:63:6d:09:86:32:e6:
f3:dc:8f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:18 2025 by rpki-client