Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: GhJ/vMkkiDTYBr4bUhJLvCV0bfx0lGr43zq6wxf0+SA=
Subject key identifier: 35:51:C4:1D:49:7A:D3:E1:8B:99:FF:2F:04:A3:53:C0:C1:6F:F4:9A
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 019511A315D3FCAE10BF3ED3A4D87EF32997
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 090A
Signing time: Mon 17 Feb 2025 02:00:55 +0000
Manifest this update: Mon 17 Feb 2025 02:00:55 +0000
Manifest next update: Tue 18 Feb 2025 02:00:55 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: LtOzO1q1a9xYp0P+eyrpUyBpC7nxi69JOJ13QVYOD/c=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a3:15:d3:fc:ae:10:bf:3e:d3:a4:d8:7e:f3:29:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Feb 17 02:00:55 2025 GMT
Not After : Feb 18 02:00:55 2025 GMT
Subject: CN=3551c41d497ad3e18b99ff2f04a353c0c16ff49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:de:c3:85:00:b3:0c:2e:ea:39:fa:1d:04:03:
8d:68:fd:87:62:86:20:b6:ae:99:98:27:94:6f:ec:
67:4b:f0:57:51:7e:53:90:f5:40:83:07:d4:f1:9d:
72:a0:c4:5a:4a:d1:03:8a:21:be:2e:3a:56:58:71:
27:8f:c2:7c:b3:f2:40:28:e8:51:79:b8:2e:d8:86:
f1:91:42:aa:88:24:c8:26:3b:ea:a4:f0:aa:d4:1c:
93:10:89:23:60:43:94:83:bd:d5:31:64:be:38:d0:
94:ca:0a:39:c3:ff:23:77:ab:b7:75:24:c8:8d:07:
49:3f:e4:6d:40:60:b2:0f:3b:6e:82:aa:45:87:9c:
c6:73:13:f4:9a:bb:bc:8a:2c:e7:4b:b3:d1:46:65:
6f:6c:5e:98:38:a8:ae:a2:35:b4:fc:ac:1d:43:1f:
3c:66:df:24:0c:8e:53:b4:87:14:20:eb:0a:83:78:
0e:b9:7b:aa:90:f3:98:b3:6a:1d:16:f0:f8:79:1d:
c8:be:34:02:b4:ae:4a:a9:b3:b6:17:e5:a3:16:f9:
dd:d8:d5:e7:b7:7b:89:39:4b:7e:9b:90:c2:f6:a5:
18:37:3a:c4:1f:59:13:fa:21:a0:7d:2c:88:dd:1c:
4b:2f:a4:b9:9b:08:25:f8:44:37:db:59:9e:0e:06:
a7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:51:C4:1D:49:7A:D3:E1:8B:99:FF:2F:04:A3:53:C0:C1:6F:F4:9A
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:5d:d6:28:a8:0d:4e:d9:c5:51:fa:52:13:10:2d:f0:a9:da:
91:d9:d4:df:7b:a3:d2:7c:67:a9:84:0b:bf:ee:63:d1:b7:2f:
2a:fd:fa:7f:b1:2c:b9:50:c2:ea:a2:88:13:3c:fb:ed:ac:ce:
c8:7d:dd:71:a0:74:fe:c5:b1:c0:10:e7:40:6b:1c:7d:c4:d4:
e0:7f:71:15:7c:9f:b2:6b:62:88:3b:10:26:e5:61:98:6a:5b:
d0:49:e1:9e:3d:69:08:76:2a:8f:47:a2:12:58:30:c4:2c:ff:
3e:3b:10:15:fe:60:2a:32:4d:ff:65:6d:da:3b:9d:a7:8a:55:
72:02:8c:89:8b:68:8f:03:a6:bd:a9:0e:9c:1b:80:9d:ac:5a:
50:2a:15:c3:77:9e:74:b5:e2:00:69:81:3a:92:ff:f5:ab:09:
23:74:bd:a2:e6:d4:2d:9d:b5:b0:20:59:c0:5c:39:dc:03:fb:
32:8d:c0:b1:1c:2a:99:e8:0a:62:ef:31:aa:7a:a3:6f:ec:77:
f9:84:b5:ac:b4:55:a0:04:0a:73:95:26:c2:0e:c0:16:a7:08:
7d:29:d9:96:ca:14:fe:f6:c8:ee:39:92:58:2d:b3:81:26:19:
f9:1e:8d:04:17:4f:03:8a:fb:28:0c:fe:f7:4c:13:39:2c:3e:
4c:17:72:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:00 2025 by rpki-client