Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: s+4BqBz7jsvkYPaLZUB/5GGsJUtcXEVBcp3tZmBAqs8=
Subject key identifier: BA:8F:8B:64:0A:C0:05:BB:A1:35:FA:16:46:5D:08:6A:48:50:C4:1C
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 01950F4650AF616BA6E2FA63E427AAE8484D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 08B4
Signing time: Sun 16 Feb 2025 15:00:21 +0000
Manifest this update: Sun 16 Feb 2025 15:00:21 +0000
Manifest next update: Mon 17 Feb 2025 15:00:21 +0000
Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=)
2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: JEnrNQOYo+feFjMwv43YFkLwhKdizNdx/KcJEvpK0H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:46:50:af:61:6b:a6:e2:fa:63:e4:27:aa:e8:48:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Feb 16 15:00:21 2025 GMT
Not After : Feb 17 15:00:21 2025 GMT
Subject: CN=ba8f8b640ac005bba135fa16465d086a4850c41c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:40:95:d5:b2:15:88:44:f1:40:58:05:4c:dc:
4c:e6:1b:76:20:59:18:30:ce:a2:99:46:44:2c:24:
5f:10:33:50:59:b1:b7:50:9a:69:65:06:b8:f5:89:
fa:9a:0a:31:08:a1:d4:6e:f6:23:eb:a0:e1:a4:1c:
d8:57:95:17:86:92:7b:08:89:6c:07:7b:d6:7b:c6:
89:a9:67:c3:34:23:e1:d0:43:a7:e3:20:de:1f:3a:
a9:7e:30:92:49:f9:19:00:e1:11:6d:eb:f1:38:74:
03:a5:7b:cc:87:3a:62:c7:a2:e4:f1:39:78:c4:95:
e9:cb:68:aa:30:07:76:f0:41:57:b9:54:1f:14:67:
b2:70:47:e1:b4:7e:57:2b:de:81:3b:17:dc:9b:5c:
bb:7f:be:4e:ff:81:e6:30:46:5e:69:ae:e7:56:5c:
e3:8a:6d:25:26:b8:8c:9a:18:4e:e1:d0:14:70:5d:
a2:cf:bc:c6:04:37:20:a3:c1:5e:f7:48:f0:8f:0c:
cb:76:29:a5:fc:4b:bb:b7:13:81:10:e3:41:99:61:
1a:db:77:29:24:2e:46:ec:d4:b1:e1:28:04:c8:95:
12:1a:df:63:36:57:c7:fe:70:8a:fe:c4:88:9e:02:
c9:07:0a:2e:0c:20:70:f4:67:d9:e4:32:ce:10:10:
af:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8F:8B:64:0A:C0:05:BB:A1:35:FA:16:46:5D:08:6A:48:50:C4:1C
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:17:62:67:92:23:88:40:39:05:ad:5b:ce:d1:2a:34:02:a2:
a2:b4:1c:49:eb:61:46:67:9f:70:50:60:32:f4:4f:19:c8:d1:
d4:84:51:9a:a6:b6:94:41:da:55:25:ab:9f:c8:b3:1e:b3:70:
ec:56:b7:ec:19:4d:e9:0b:0f:ae:17:6d:df:b3:52:53:8a:e3:
2a:7a:7b:31:98:f5:ed:b2:1a:55:83:74:32:34:10:c3:2f:7e:
c5:65:9f:d4:e8:61:c0:08:4f:6d:18:4a:3a:17:49:99:76:6f:
30:6c:7a:81:f6:70:15:ae:a8:d8:a3:a8:d2:83:a7:2d:e6:bb:
0b:dc:1a:33:05:6f:b8:32:92:25:63:86:4b:5b:fe:97:66:67:
53:24:ab:d9:40:d4:c9:01:7c:e6:f8:b6:5b:b8:6b:68:e3:bf:
ba:10:cc:4e:f9:99:ff:c6:22:7a:91:8d:ce:8b:ac:c5:ad:38:
65:f1:6d:24:3c:80:f1:3a:0b:6f:5d:c4:92:7f:d1:5f:f6:86:
43:fc:3a:9c:4c:23:53:f8:e2:da:cb:32:aa:d4:9e:0e:41:67:
23:42:f2:62:87:c9:9e:0e:ef:c8:2a:03:50:70:1f:2c:54:52:
58:56:98:d6:68:03:62:73:47:cd:30:87:48:a1:31:79:91:9b:
d2:70:92:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:16 2025 by rpki-client