Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: QuupnMFeQ3E0sSQiPW/XhHY+cDzAGoMfWL4KXqw/eFw=
Subject key identifier: FD:4E:90:00:A9:BB:8C:6F:52:50:16:B1:1E:45:F3:96:D1:8D:10:35
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 01958B846DB9CC66E1E64B87948B783E44B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1497
Signing time: Wed 12 Mar 2025 18:01:06 +0000
Manifest this update: Wed 12 Mar 2025 18:01:06 +0000
Manifest next update: Thu 13 Mar 2025 18:01:06 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: /Sys9JfFWREx/+ndCvYHDFMQy2/kVBN7NhHsgDe6hc8=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:6d:b9:cc:66:e1:e6:4b:87:94:8b:78:3e:44:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Mar 12 18:01:06 2025 GMT
Not After : Mar 13 18:01:06 2025 GMT
Subject: CN=fd4e9000a9bb8c6f525016b11e45f396d18d1035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b5:d4:fc:ae:be:a5:81:c8:98:8b:83:9e:6f:
e3:26:a1:da:5f:ad:ce:25:50:7a:75:d9:f1:ce:f1:
c5:e8:b5:ff:55:3a:46:65:3a:77:79:a1:f2:29:bf:
15:be:0d:c7:06:af:43:ce:62:18:c1:4b:f2:d4:72:
70:72:07:93:9d:76:d6:e1:c8:fe:57:17:50:c2:e0:
fb:fb:03:2e:de:69:a3:d2:43:e8:2c:d2:da:ea:26:
58:3b:4f:4e:9f:2b:88:09:e2:38:c7:65:64:9f:97:
0b:1b:db:dd:9f:de:ba:9b:a6:45:26:88:0c:4d:00:
b1:97:e5:31:f1:35:33:36:79:4f:73:92:62:ea:d5:
da:83:ac:a7:8d:72:d6:3d:fc:47:3e:0a:bf:c4:ac:
c5:32:d1:76:eb:5b:75:4d:ec:5d:d9:6d:80:ae:b2:
0c:af:37:75:49:dc:13:34:b4:6d:de:94:ff:de:83:
d6:97:5c:88:4c:be:01:df:9b:ed:84:46:9c:bc:c9:
53:77:47:61:32:34:c7:ba:40:c9:75:6e:a3:c5:df:
3f:de:ff:0e:20:d7:38:5d:23:82:18:ff:51:fa:49:
04:bc:89:2a:03:d2:2f:80:04:46:99:e5:ec:a5:28:
6b:c6:c8:72:b5:1e:4d:f1:c1:2a:de:48:44:b7:de:
bc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4E:90:00:A9:BB:8C:6F:52:50:16:B1:1E:45:F3:96:D1:8D:10:35
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:87:f6:b9:04:f2:c8:53:9b:02:6d:b7:6d:5f:fe:69:c8:fe:
41:28:d2:95:cf:6a:96:4d:83:40:d0:78:d3:c8:c4:a8:a7:22:
5f:d8:46:79:bc:d6:28:fa:2b:1a:d7:3a:16:73:1b:08:aa:8e:
9f:5d:58:a6:fa:93:09:51:f2:86:67:76:fe:fd:58:a9:1d:32:
b3:3f:8d:c2:7e:56:12:14:5c:1d:6f:75:25:3c:c2:38:f3:28:
ce:54:a9:01:f0:15:d7:5f:69:4f:51:54:25:8f:0d:1f:84:72:
30:5d:11:8b:00:ba:de:32:5e:92:e3:83:c0:16:27:d9:c1:6f:
67:3c:0a:21:6c:90:2b:c1:be:73:7b:5a:e8:be:1a:19:b3:8d:
99:3a:40:e4:59:c0:a8:ba:16:5a:62:93:7d:2a:25:90:a5:77:
51:02:bb:7f:85:89:ae:6a:47:6c:66:a1:94:dc:d4:5a:41:0a:
76:50:da:0b:93:d4:3f:5d:ef:57:a6:24:35:81:96:be:28:3b:
e3:42:0a:12:76:28:b4:ed:4c:cd:c0:61:52:54:b9:e0:5d:03:
ba:ee:09:c2:5c:3b:dc:17:e7:44:f6:d3:1c:d2:b7:e1:ca:70:
e8:32:86:51:78:a3:50:49:67:9c:e1:22:60:05:fd:0b:96:23:
42:60:84:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:51 2025 by rpki-client