Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: z51w/K7iX8IsTZ70Ki8dit5af6LQxlmsAyJ8laB//EU=
Subject key identifier: FA:98:FB:E1:DC:B3:89:DA:EF:F4:74:00:FC:75:F0:FA:0A:9C:8D:86
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 0194C3BE60F13A104E628E5DD3D00B5ACE23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 0296
Signing time: Sat 01 Feb 2025 23:00:21 +0000
Manifest this update: Sat 01 Feb 2025 23:00:21 +0000
Manifest next update: Sun 02 Feb 2025 23:00:21 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: 6Gwxxg2N1axgI7EsknmlpMK7vFo6IQOW9tsJnIIyz2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:60:f1:3a:10:4e:62:8e:5d:d3:d0:0b:5a:ce:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Feb 1 23:00:21 2025 GMT
Not After : Feb 2 23:00:21 2025 GMT
Subject: CN=fa98fbe1dcb389daeff47400fc75f0fa0a9c8d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:03:46:5e:22:e2:d7:6e:78:1b:8a:6f:bf:
a1:d9:9e:12:13:30:b3:9d:69:d8:2b:bd:6b:ec:45:
34:94:f8:ea:ec:c7:9c:27:8b:c2:38:56:44:47:6d:
b9:16:41:39:de:85:72:75:e2:b7:bb:cf:d1:b0:91:
b5:a2:92:a8:c3:a8:56:49:50:91:45:2d:86:af:1e:
1e:05:7b:b9:12:d6:ff:8b:50:a9:a6:10:24:48:d9:
c3:ee:c4:eb:81:22:ea:d6:fe:09:da:d1:12:22:45:
81:dc:6c:ff:59:3e:c3:b7:c7:8d:f9:6b:34:76:1b:
9b:3e:93:46:77:bb:7b:55:4c:88:c8:21:6a:b9:05:
fb:b0:4d:05:42:95:f1:80:b0:30:97:f9:44:b1:06:
b8:ac:50:13:a7:77:90:ac:05:16:21:4f:7c:ad:c3:
34:78:45:4c:c6:6d:e5:88:c0:e2:43:16:52:a9:fe:
70:97:1c:58:fc:20:21:6f:91:8e:dd:e9:93:21:c9:
f5:8f:34:23:b7:6d:66:c5:6a:6f:de:82:de:5b:53:
1f:1c:c4:ca:8e:53:c3:c6:4f:ce:8b:fd:74:89:7e:
1e:5d:e9:46:6b:ee:c3:b9:cb:a5:39:99:2b:16:0a:
8e:21:15:74:6d:0a:da:0d:db:b7:f3:94:26:14:24:
0a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:98:FB:E1:DC:B3:89:DA:EF:F4:74:00:FC:75:F0:FA:0A:9C:8D:86
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:43:b6:6f:52:60:05:03:e7:fa:ac:c7:92:0b:78:87:b1:02:
a2:26:e6:8c:8b:c8:9b:1d:bb:22:c2:72:c7:1d:24:24:43:a4:
38:e6:ef:79:d4:48:e7:31:66:c0:57:36:7b:c6:53:c0:45:69:
b6:4b:c1:9c:be:60:ee:16:20:eb:2d:3a:42:4f:42:c7:27:1c:
cf:1c:4d:21:44:91:0d:d9:a3:3d:99:89:44:1e:87:0e:50:2c:
43:33:b0:34:0f:84:2d:28:90:10:65:10:09:1c:e1:1a:e5:f9:
91:de:80:ee:4e:ec:a9:70:83:83:de:6b:5e:71:c8:46:6d:2e:
d1:72:d0:bf:60:72:12:38:8e:81:22:42:6b:b0:ae:29:db:30:
0c:30:69:0a:dd:58:55:3d:34:81:87:6e:3c:d3:d6:87:7a:7e:
72:29:b2:7c:42:1c:0d:c3:bd:84:4d:1f:b3:d4:a9:0f:fa:bd:
98:15:93:bf:fc:56:08:96:b0:9d:d2:97:b7:74:25:63:38:bc:
2f:ac:08:55:33:6d:4b:b1:ff:8d:ba:96:45:17:66:64:4e:af:
be:02:a7:48:c9:4f:86:d7:4c:93:64:33:ce:32:94:cb:0f:1a:
27:58:eb:8d:10:99:75:46:6b:06:de:26:cd:26:99:67:81:1d:
53:9a:aa:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:55:03 2025 by rpki-client