Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
File: hLWkCydKlj5e0-8C6DmcubG7DHs.mft (raw, json)
Hash identifier: Um+QAW7Q5QdTWVHVQpI3VFWN3LxTSVXSBbk7pVkQ8RU=
Subject key identifier: 2F:98:68:2A:1D:AB:7B:EA:77:01:9C:04:DC:B2:47:0E:16:D1:62:C7
Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Certificate serial: 019511A28D1C788C093DA6A91C8F2F5A2512
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 02:00:20 +0000
Manifest this update: Mon 17 Feb 2025 02:00:20 +0000
Manifest next update: Tue 18 Feb 2025 02:00:20 +0000
Files and hashes: 1: O8vYugo1IMFhRrolkiJ5A2F_9k4.roa (hash: vT082QVsehcKVaVyOGMEheCQhaYoT8jhfxj4aHEzNiI=)
2: hLWkCydKlj5e0-8C6DmcubG7DHs.crl (hash: /AzF34v4YCkahF6G6PX8aLr/Q1KTrM9H7V7LqqrPz1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:8d:1c:78:8c:09:3d:a6:a9:1c:8f:2f:5a:25:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Validity
Not Before: Feb 17 02:00:20 2025 GMT
Not After : Feb 18 02:00:20 2025 GMT
Subject: CN=2f98682a1dab7bea77019c04dcb2470e16d162c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:01:9d:2c:80:c3:d4:2b:fc:d5:34:9c:83:9b:
06:50:8b:4a:72:ae:f9:a4:a1:83:00:d4:bb:65:c4:
b2:65:0c:a6:7c:fe:21:23:1a:38:36:a6:ea:e6:fb:
a2:67:c6:ff:01:36:99:4c:68:4d:ff:10:d0:fc:9b:
23:f2:e2:f5:d9:2a:80:e4:65:2e:06:f4:f2:e8:5f:
5a:e3:e0:f7:e4:fe:61:88:5b:87:ed:0c:4d:6f:19:
f8:84:da:f1:88:65:d1:40:65:b0:1b:03:53:29:76:
37:c3:e0:94:7e:44:8d:85:7d:0b:59:21:8e:45:aa:
e7:78:d3:c9:62:a9:fc:ee:71:a9:62:c3:53:fc:d7:
a4:1a:1c:da:4e:88:d1:0b:3a:0e:5f:ab:41:b8:c6:
14:fc:83:d9:4f:27:92:78:78:c9:3a:a9:c5:32:f5:
f7:31:08:80:fa:2d:f3:0e:bc:4b:fe:7e:80:a1:52:
8e:ff:a4:e4:0d:00:a5:32:0e:e6:ed:33:56:ba:4d:
f5:2e:c0:f0:f2:1a:65:31:48:f5:d8:5e:c5:87:a2:
a5:c3:9f:cb:d3:1f:52:85:8b:9a:3d:97:07:d0:a2:
fb:4a:0f:41:7b:76:b7:c8:0c:41:77:40:86:f7:73:
22:78:a8:50:4a:de:67:cb:8c:a1:f7:34:cd:ff:ad:
08:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:98:68:2A:1D:AB:7B:EA:77:01:9C:04:DC:B2:47:0E:16:D1:62:C7
X509v3 Authority Key Identifier:
keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:c1:33:d2:82:e1:30:bb:fc:55:9d:77:f2:35:0b:3d:5e:42:
b4:0c:bb:48:29:67:e8:b6:8b:41:78:8f:57:5b:a9:37:2d:23:
f8:ff:44:05:a9:70:72:91:43:db:61:23:6b:32:29:76:65:11:
c9:68:c2:04:f0:76:ea:b3:11:09:a0:46:e4:d8:9d:50:6b:3a:
82:8c:0e:aa:58:bd:93:a9:65:c2:d1:87:74:a5:2a:49:0f:28:
f2:14:90:79:f8:5b:42:43:0c:b8:b3:fe:93:f4:b7:a9:4d:b5:
6d:3a:2b:aa:10:16:2e:33:f4:95:78:a8:5e:e5:23:71:a4:c9:
23:15:9f:7a:5b:fc:f3:94:61:1b:7e:e6:8d:eb:05:b0:4f:f3:
28:92:30:43:cf:24:af:c0:83:68:23:ec:96:61:72:8c:d6:58:
19:31:f6:dc:5f:8e:56:13:94:59:4c:56:d7:79:47:60:6a:01:
8e:ef:83:52:37:b9:56:99:08:eb:b7:98:3e:6c:38:a2:31:32:
12:8b:64:da:25:90:c6:38:23:b2:29:45:f6:7b:a1:7b:20:e0:
6a:b9:81:d1:f1:97:6f:69:03:bb:12:fb:1b:8b:a9:7f:61:8c:
3e:21:77:b1:2f:98:6c:ac:c0:98:b3:29:b4:ce:e8:b5:c4:21:
32:34:b0:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURoo0ceIwJPaapHI8vWiUSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjVhNDBiMjc0YTk2M2U1ZWQzZWYwMmU4Mzk5Y2I5YjFi
YjBjN2IwHhcNMjUwMjE3MDIwMDIwWhcNMjUwMjE4MDIwMDIwWjAzMTEwLwYDVQQD
EygyZjk4NjgyYTFkYWI3YmVhNzcwMTljMDRkY2IyNDcwZTE2ZDE2MmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgGdLIDD1Cv81TScg5sGUItKcq75
pKGDANS7ZcSyZQymfP4hIxo4Nqbq5vuiZ8b/ATaZTGhN/xDQ/Jsj8uL12SqA5GUu
BvTy6F9a4+D35P5hiFuH7QxNbxn4hNrxiGXRQGWwGwNTKXY3w+CUfkSNhX0LWSGO
RarneNPJYqn87nGpYsNT/NekGhzaTojRCzoOX6tBuMYU/IPZTyeSeHjJOqnFMvX3
MQiA+i3zDrxL/n6AoVKO/6TkDQClMg7m7TNWuk31LsDw8hplMUj12F7Fh6Klw5/L
0x9ShYuaPZcH0KL7Sg9Be3a3yAxBd0CG93MieKhQSt5ny4yh9zTN/60ItwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC+YaCodq3vqdwGcBNyyRw4W0WLHMB8GA1UdIwQY
MBaAFIS1pAsnSpY+XtPvAug5nLmxuwx7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjct
YTcyMGFmODYxZmVlLzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjctYTcyMGFmODYxZmVl
LzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAssEz0oLh
MLv8VZ138jULPV5CtAy7SCln6LaLQXiPV1upNy0j+P9EBalwcpFD22EjazIpdmUR
yWjCBPB26rMRCaBG5NidUGs6gowOqli9k6llwtGHdKUqSQ8o8hSQefhbQkMMuLP+
k/S3qU21bTorqhAWLjP0lXioXuUjcaTJIxWfelv885RhG37mjesFsE/zKJIwQ88k
r8CDaCPslmFyjNZYGTH23F+OVhOUWUxW13lHYGoBju+DUje5VpkI67eYPmw4ojEy
Eotk2iWQxjgjsilF9nuheyDgarmB0fGXb2kDuxL7G4upf2GMPiF3sS+YbKzAmLMp
tM7otcQhMjSwow==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:54 2025 by rpki-client