Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
File: hprNGeI6gWZEutDooSuG4SiK0zw.mft (raw, json)
Hash identifier: BQEuc/kENcQfa44EHopg2VMScwHk6i4fgb344/7vZ1k=
Subject key identifier: C6:14:04:4E:08:C0:B7:43:B2:D9:62:69:2A:B8:90:5A:35:2A:9D:02
Authority key identifier: 86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C
Certificate issuer: /CN=869acd19e23a816644bad0e8a12b86e1288ad33c
Certificate serial: 0194C3888538F4A7A187C17CE2ED9A38A788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
Manifest number: 0E17
Signing time: Sat 01 Feb 2025 22:01:31 +0000
Manifest this update: Sat 01 Feb 2025 22:01:31 +0000
Manifest next update: Sun 02 Feb 2025 22:01:31 +0000
Files and hashes: 1: hprNGeI6gWZEutDooSuG4SiK0zw.crl (hash: hEUMRjdF5Dk6BjY9cdOi3XcNFiRrFXS0dZDgQIp33dA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:85:38:f4:a7:a1:87:c1:7c:e2:ed:9a:38:a7:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869acd19e23a816644bad0e8a12b86e1288ad33c
Validity
Not Before: Feb 1 22:01:31 2025 GMT
Not After : Feb 2 22:01:31 2025 GMT
Subject: CN=c614044e08c0b743b2d962692ab8905a352a9d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e2:bc:4f:04:41:79:42:e5:80:4a:a2:fa:ee:
c4:5b:32:5c:de:c0:a7:f9:a8:a2:60:a4:5c:4c:43:
44:e9:76:4b:fc:a7:63:ac:b2:14:89:a5:43:05:d3:
2d:16:5a:7c:ab:61:99:08:53:93:8e:eb:8d:11:d6:
a4:34:2f:da:9f:60:e5:d9:41:5d:a8:40:82:05:a0:
16:91:c5:bc:5c:d9:fe:1c:35:af:a5:f3:5f:61:31:
e8:83:bf:5e:a5:e1:91:e4:6a:0b:55:85:91:82:ef:
7b:cf:30:79:d1:7b:7f:36:fe:c0:b0:e6:82:57:d4:
00:bd:b0:07:e9:90:ed:6a:bc:35:de:80:29:40:f4:
4b:8d:78:9c:fe:c2:20:df:ca:a4:a9:d0:81:2c:0c:
2e:11:5a:be:b1:12:f5:dc:e7:65:ac:76:b5:74:19:
37:43:a0:11:e9:15:cb:f7:81:44:25:39:4d:82:f8:
d7:b6:3e:e6:31:42:6b:19:73:67:ed:cf:59:98:8e:
8f:ef:86:a0:3e:16:c4:24:14:a8:64:96:c3:fa:23:
f2:6f:b9:bf:5d:ed:55:d0:9f:e5:2a:d4:e0:cc:32:
e6:ca:00:6f:70:b7:b9:30:2b:d3:87:0f:9c:ca:4b:
59:62:43:1b:60:da:64:64:ad:17:92:f9:10:7b:d1:
36:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:14:04:4E:08:C0:B7:43:B2:D9:62:69:2A:B8:90:5A:35:2A:9D:02
X509v3 Authority Key Identifier:
keyid:86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:9f:0a:b5:28:1f:1d:83:59:6f:fd:12:c8:18:eb:c5:fd:a6:
26:d3:d6:a9:e6:52:a4:1b:d4:c1:fa:31:7a:40:f1:c2:91:92:
a0:51:e2:c0:aa:dc:57:15:cf:d1:a5:4a:99:a4:85:df:0d:3c:
07:30:64:41:32:22:f5:79:3a:51:89:7f:fb:aa:d8:5f:df:5a:
c4:28:2f:78:f5:f5:15:6c:1e:52:46:2e:f0:88:6a:b1:50:e3:
d5:76:7e:34:02:41:7f:bb:4f:6e:cf:16:fe:36:45:98:06:42:
9e:8f:7d:e0:22:97:df:04:23:95:4e:24:1e:f0:e4:8e:4c:75:
c3:d0:c2:aa:e9:52:d5:d2:1b:23:7d:08:69:81:3f:8f:e6:4a:
39:21:66:fd:cf:9d:7b:ac:96:d2:0d:37:c0:41:51:32:80:9f:
45:9a:b2:4f:a6:67:73:b2:4f:9a:76:28:f0:c9:0d:eb:a1:3e:
e1:55:de:d4:77:70:76:87:bd:06:dd:85:f6:2d:da:43:0a:22:
f4:60:b9:1e:e4:fb:dc:02:61:ea:e1:2a:21:52:e9:e6:e8:74:
c3:1a:6a:b4:fe:ec:c2:4c:de:6f:71:9c:c4:1b:ff:0d:8a:90:
25:2d:2b:a7:c4:f5:2f:d7:94:77:b5:f5:93:e6:e1:d3:f8:bc:
22:d3:99:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:05 2025 by rpki-client