Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: 39VXgm4Zr7muwXJ8HP6Eujn/CK08kUNLTH1Qh3M9rIE=
Subject key identifier: 39:60:D8:E5:F1:34:81:33:86:45:07:58:8B:BC:6D:30:77:27:1E:45
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019511D96B7D21EE11D48C37AA3A1211DAFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 03:00:16 +0000
Manifest this update: Mon 17 Feb 2025 03:00:16 +0000
Manifest next update: Tue 18 Feb 2025 03:00:16 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: d3jeFK3RmYj2O8CtrufxFNluDxqGOuo1Pdqo+pnJUCY=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:6b:7d:21:ee:11:d4:8c:37:aa:3a:12:11:da:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Feb 17 03:00:16 2025 GMT
Not After : Feb 18 03:00:16 2025 GMT
Subject: CN=3960d8e5f1348133864507588bbc6d3077271e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fa:66:4d:73:a6:38:02:c4:80:59:bf:17:c0:
d5:ab:49:9c:41:73:87:0e:6b:7b:0f:dc:3d:64:db:
a3:8e:09:3a:b8:aa:6c:c0:6d:6a:2c:39:73:52:17:
c9:c5:5c:d6:8a:87:cb:b7:88:de:e3:74:56:eb:2d:
15:13:10:0a:64:97:5e:39:19:83:5d:f3:3f:a4:07:
c5:bf:2a:ad:53:c3:ba:79:2a:db:5b:1d:aa:76:03:
3a:a6:a2:c2:bc:9c:87:b0:44:6e:d9:a1:cf:cf:51:
07:0c:56:60:21:3b:5c:c6:e8:3a:78:ac:9f:36:75:
44:f8:35:aa:d9:25:bc:fe:5d:1f:53:aa:31:6d:2b:
69:b3:02:59:15:0f:8f:74:88:d8:47:9b:72:26:27:
50:9a:b5:05:ef:97:ec:b3:e6:18:76:b9:ee:8e:0e:
11:90:38:dc:61:40:5d:86:11:0c:91:4a:75:35:fb:
f7:ac:3a:ec:29:d4:d8:5a:82:99:15:f7:e8:48:3b:
44:5b:14:49:f8:74:bc:5b:cb:f9:81:ce:e2:77:15:
96:31:65:44:b5:69:77:38:47:04:40:8c:ba:50:4c:
57:b8:67:21:d6:b8:82:9d:9d:ac:06:24:f5:e8:6f:
f4:81:c2:ae:24:8b:a3:ce:ce:ff:62:57:e1:34:1f:
e7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:60:D8:E5:F1:34:81:33:86:45:07:58:8B:BC:6D:30:77:27:1E:45
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:fb:74:0d:c0:97:57:f5:7a:60:b8:d7:a5:ef:fb:39:a2:83:
70:aa:ce:5e:02:cc:b8:e5:c9:a1:1a:43:aa:2c:69:54:86:d1:
30:90:12:01:79:d4:4e:dc:95:f5:5c:25:2c:b6:4d:c1:ef:af:
9c:86:b7:3e:95:31:b4:1e:b4:85:04:c7:0b:10:a1:bd:ce:54:
55:27:fd:da:3e:5b:50:07:70:09:7f:99:f8:e1:3c:72:f9:06:
65:81:93:78:21:c5:9c:fa:9d:6a:7a:89:c9:de:30:88:cb:63:
86:8c:e1:4d:e8:d9:04:8b:29:de:84:fa:11:06:95:27:6c:6d:
70:73:97:a6:8b:d1:93:ea:09:d7:09:3d:b0:f6:66:e6:c8:fb:
8b:1c:79:59:bf:6e:13:8b:99:cc:b5:31:53:c1:b3:96:a8:df:
c5:cc:9e:2e:ee:fe:d3:24:37:80:a1:5a:5c:dd:15:a9:b8:b6:
85:ab:48:f5:fd:87:b1:4d:42:53:42:b5:d4:15:4d:92:85:41:
64:dd:aa:55:17:a2:56:20:37:41:74:ed:78:32:c3:9d:e7:dd:
c0:86:4a:67:09:60:91:07:63:0d:55:4a:8c:5a:d2:69:0e:c7:
17:a5:68:0d:11:61:1c:7b:e0:cc:c3:c1:76:47:45:63:67:fc:
18:5f:32:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:45 2025 by rpki-client