Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft
File: hEnGCTJcOmYCBHJgydMAE1CVuLg.mft (raw, json)
Hash identifier: k9QFEVTckKryoH73kFsVCK/piw3iJE0PxUaBF/p3thM=
Subject key identifier: C5:8A:65:AC:19:D4:3B:BE:A2:F7:E9:EB:64:6D:1D:2F:2B:31:D8:4D
Authority key identifier: 84:49:C6:09:32:5C:3A:66:02:04:72:60:C9:D3:00:13:50:95:B8:B8
Certificate issuer: /CN=8449c609325c3a6602047260c9d300135095b8b8
Certificate serial: 0195113472DFCAE723572889CD8EC80D2CF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEnGCTJcOmYCBHJgydMAE1CVuLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft
Manifest number: 0427
Signing time: Mon 17 Feb 2025 00:00:04 +0000
Manifest this update: Mon 17 Feb 2025 00:00:04 +0000
Manifest next update: Tue 18 Feb 2025 00:00:04 +0000
Files and hashes: 1: hEnGCTJcOmYCBHJgydMAE1CVuLg.crl (hash: GIDyAdzM3QdSR9BrPIUVsnNQVqN3sGMdtnM3IUhJ2TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEnGCTJcOmYCBHJgydMAE1CVuLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:72:df:ca:e7:23:57:28:89:cd:8e:c8:0d:2c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8449c609325c3a6602047260c9d300135095b8b8
Validity
Not Before: Feb 17 00:00:04 2025 GMT
Not After : Feb 18 00:00:04 2025 GMT
Subject: CN=c58a65ac19d43bbea2f7e9eb646d1d2f2b31d84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:be:b8:98:dd:bf:4d:d0:17:de:f6:96:ef:3e:
1f:77:d3:8f:74:cb:0b:21:1c:57:d8:43:b3:01:05:
96:0f:70:fd:c5:80:23:85:f5:f1:a9:68:6c:ea:e5:
35:2a:e0:29:82:b3:97:f5:c5:fd:bf:23:d3:10:93:
1a:8d:cb:85:3b:85:2c:10:fe:0a:78:e8:91:89:7b:
e5:ec:9b:95:fd:19:3f:b3:f0:8c:5b:a8:d7:4d:a1:
f0:92:e6:fc:13:d4:17:a5:ba:ec:01:99:64:37:2c:
f2:c6:04:48:0f:76:0d:fe:71:d8:ed:97:73:de:ee:
7a:30:ba:e6:d4:f2:13:6d:5b:8c:dc:d3:a1:b0:e5:
2d:e5:18:06:8c:cc:f7:4e:0b:1f:d8:56:9d:80:db:
8c:31:10:31:32:c5:f0:1f:f3:76:83:33:74:40:d8:
20:c8:f1:64:ea:af:3d:36:77:af:96:30:8c:05:2b:
85:95:9a:50:a7:bb:a0:95:af:95:1b:3c:3e:a1:5e:
0d:25:88:6e:28:0d:1f:41:f2:b8:c5:cb:94:bc:9c:
8d:6b:95:68:2e:c1:6a:67:c3:b9:0e:cd:9a:24:64:
0b:9c:b6:7f:16:6a:e2:a0:aa:ed:e5:11:0e:28:89:
11:9c:2f:81:f2:03:5e:0c:87:83:5e:04:00:29:34:
b9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8A:65:AC:19:D4:3B:BE:A2:F7:E9:EB:64:6D:1D:2F:2B:31:D8:4D
X509v3 Authority Key Identifier:
keyid:84:49:C6:09:32:5C:3A:66:02:04:72:60:C9:D3:00:13:50:95:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEnGCTJcOmYCBHJgydMAE1CVuLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:9b:31:52:c4:e7:c5:19:67:9a:96:a3:8b:de:51:c2:62:b3:
06:0f:a7:ff:79:f1:94:61:8f:04:e0:f1:22:f8:9f:04:6d:5e:
60:c0:2a:15:3a:d7:13:46:fa:1c:ef:c8:c8:e4:bb:f2:1a:89:
60:0f:9c:df:01:99:ef:90:d3:31:eb:1c:41:87:77:f4:8f:9c:
c9:e7:94:95:29:6e:cb:21:e1:b6:65:f4:e9:56:da:77:f2:2d:
1c:60:9e:63:b1:44:e9:41:18:90:48:9c:ae:fd:04:01:e0:0e:
fb:c0:15:c6:d4:1f:c6:06:d7:2a:bd:7a:88:ec:49:a8:f9:1f:
8a:ae:0f:bd:5f:e3:2a:c1:84:94:9f:bf:3a:a1:e0:8f:a3:f7:
27:46:ec:ee:22:5f:55:04:5c:96:2c:31:35:93:cb:5c:a5:1f:
f7:36:fa:f7:3a:28:0c:6e:d9:8f:47:eb:df:a4:23:6a:ae:6b:
d0:5a:b1:70:c0:b4:be:04:e3:f7:a8:e4:7c:c2:9c:eb:3d:e5:
5b:04:72:c4:36:4e:07:ec:ca:3f:97:95:83:58:23:9a:ee:ab:
4e:f0:30:c4:81:9d:a1:03:e8:8d:2d:1d:4f:18:15:2d:36:c4:
05:17:99:4b:ad:d0:ea:f8:83:fb:0d:0a:c8:d1:1f:94:09:99:
a5:05:1a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:05 2025 by rpki-client