Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: N571Q+OrKcZI21MOtmOFe6JXerN3xFaHULT+PcIWmVg=
Subject key identifier: 2F:CF:41:35:02:13:71:E5:06:07:1C:C5:CE:E9:2D:76:F4:0C:E1:27
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 019510FDED53C6174503B14585F4AAAC5DBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 056D
Signing time: Sun 16 Feb 2025 23:00:31 +0000
Manifest this update: Sun 16 Feb 2025 23:00:31 +0000
Manifest next update: Mon 17 Feb 2025 23:00:31 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: vrvd3en5wsU/hXX2X59mlOaIlybV007l103pWciME3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:ed:53:c6:17:45:03:b1:45:85:f4:aa:ac:5d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Feb 16 23:00:31 2025 GMT
Not After : Feb 17 23:00:31 2025 GMT
Subject: CN=2fcf4135021371e506071cc5cee92d76f40ce127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8f:08:5a:54:78:04:4c:74:e0:2e:a1:d0:9f:
3e:ec:1a:47:05:52:ec:d7:59:8d:b0:31:7f:8c:65:
c2:66:f9:28:64:35:e3:47:46:32:9c:bd:b8:24:a7:
58:cf:60:ad:06:0b:10:ec:e2:92:83:7e:2f:56:c9:
6a:7d:06:d7:a0:17:75:ca:01:6b:be:23:6d:f4:8f:
78:da:a1:89:07:f4:5f:d3:a7:61:c8:3f:3d:11:11:
40:a5:1f:16:8f:af:95:ac:b2:f5:c8:00:74:3a:7a:
a3:2a:d8:17:5c:60:f3:0b:3c:e5:24:54:3e:dc:2a:
b4:28:04:50:e7:64:6f:4b:53:7b:02:db:fe:c5:c5:
7a:9f:18:2d:35:55:83:79:cc:cc:19:e8:42:4d:d3:
91:f1:22:58:59:33:ff:7a:df:75:15:7c:b2:15:a9:
c4:d2:45:55:fa:63:b7:a4:7d:aa:6f:43:af:d6:57:
bd:ab:b7:8e:9e:02:9e:f7:8d:7c:32:9d:ef:ec:d7:
01:b0:2c:dc:02:86:75:f3:ff:32:d0:88:55:99:0f:
0a:52:b2:71:19:6f:67:ee:2d:c5:07:f9:b5:2a:4e:
b3:11:54:c1:60:15:b1:55:01:29:49:e6:09:8f:1d:
74:0d:71:17:66:63:0f:b5:22:2a:d3:da:0e:58:c4:
b5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:CF:41:35:02:13:71:E5:06:07:1C:C5:CE:E9:2D:76:F4:0C:E1:27
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:44:d0:c6:95:59:8c:50:1d:62:2a:b5:0f:62:04:49:0d:6e:
56:b4:59:27:d1:ee:ad:dc:1c:06:f9:d3:29:ed:f4:f9:4c:48:
f9:aa:25:a4:14:d8:83:97:6a:28:f9:18:82:45:00:54:b4:89:
63:cf:c4:f7:9d:57:8b:78:b4:6a:b1:b7:b7:3d:28:4b:69:a8:
b6:9a:e3:4b:6b:df:ca:24:5f:54:61:d2:2a:23:fb:f8:1d:32:
f2:49:af:44:78:c4:20:45:5d:bc:8f:7d:2d:80:aa:71:dc:64:
a3:97:8a:a4:b0:6e:0a:7a:10:8e:55:1d:d6:79:ea:d7:90:ea:
8e:cb:a7:b7:ff:20:d0:f2:f1:cb:18:bf:56:ee:19:8b:30:bd:
cc:2a:75:c3:04:57:50:5b:5b:c4:4d:2c:46:34:e7:45:2c:ed:
1c:05:c8:9e:9f:44:05:25:be:68:28:a9:18:8a:b7:65:3e:e7:
37:a1:9d:94:f1:2b:05:d6:2c:64:ca:99:f5:ad:09:4e:0d:99:
67:c5:77:f9:be:ce:d1:69:c1:67:61:35:05:18:7c:26:8a:33:
7e:64:f0:8b:5d:bc:1d:f2:1d:89:ca:66:71:ac:e3:f9:20:94:
e4:3f:c2:77:01:22:ef:f7:de:86:6b:31:bd:a4:c1:20:14:27:
fd:ef:d2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:02 2025 by rpki-client