Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: nK7SZ2kt7Z+CXieGdKTGJ8w4/u3d8exNW6GXhjzp1ls=
Subject key identifier: 61:88:FE:61:13:03:3D:6D:B7:19:C1:70:01:F5:E1:A5:25:28:18:E3
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 0194BB96E33C19DE65BCD036DC728381C63E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 142E
Signing time: Fri 31 Jan 2025 09:00:15 +0000
Manifest this update: Fri 31 Jan 2025 09:00:15 +0000
Manifest next update: Sat 01 Feb 2025 09:00:15 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: dSiZ4tRxoWpKovnRr2kKpOCcJVZPdBBWwW2yqvRH4Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:96:e3:3c:19:de:65:bc:d0:36:dc:72:83:81:c6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Jan 31 09:00:15 2025 GMT
Not After : Feb 1 09:00:15 2025 GMT
Subject: CN=6188fe6113033d6db719c17001f5e1a5252818e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:42:d9:26:bf:06:34:74:d6:32:80:c8:72:4b:
d1:d0:b0:5b:37:25:19:f9:54:a5:98:f3:95:72:ef:
92:6a:ca:3c:70:ac:b0:95:7f:27:13:5b:e0:aa:4f:
61:a7:61:1a:fe:c1:22:63:c5:bc:ee:cf:c0:6f:39:
b3:ee:41:94:61:14:ce:7e:61:f1:1c:96:fb:89:df:
e9:40:6d:d0:0b:4c:16:b1:65:32:5f:91:ae:eb:38:
c0:a8:6a:a2:28:6a:b5:89:1d:30:d3:d9:19:a6:c0:
be:68:f4:e5:37:78:db:bf:ee:03:ad:cf:57:bb:6b:
66:cf:58:c6:1e:e1:04:47:2b:63:4a:df:b8:f8:7e:
04:60:3b:60:16:cf:f6:4c:10:01:b3:c6:f6:5c:10:
db:c6:08:6c:97:40:4b:5f:3c:21:e8:39:87:5c:79:
94:fb:92:0f:9e:05:76:86:a9:69:9b:ed:9c:57:c8:
54:02:d9:a9:a7:93:00:4d:88:7f:44:f1:0a:c4:05:
b8:ce:60:09:1b:2b:64:4a:4f:bb:7d:94:c2:41:58:
32:9b:99:7c:a4:ff:aa:87:30:4c:b5:30:e5:b4:ef:
8d:b6:d6:eb:8b:4e:fa:cd:3c:00:a0:5f:50:2d:62:
e5:2e:0e:58:c7:0d:8b:c2:da:b6:6a:e6:14:4c:9f:
c2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:88:FE:61:13:03:3D:6D:B7:19:C1:70:01:F5:E1:A5:25:28:18:E3
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:f4:45:cb:be:ef:f9:fc:9b:7a:b7:af:5a:e6:57:b6:ac:76:
4e:05:12:06:d2:cc:76:7f:e7:e7:87:4c:79:9f:c7:cf:a7:ee:
4f:9f:0a:6c:01:ca:3c:43:28:98:c3:af:a7:c1:f0:42:cf:3f:
4d:3c:6d:8c:8e:35:1a:d6:29:d0:95:c8:e7:ff:ae:90:72:ee:
ad:ff:ca:26:d6:a4:83:b3:ae:90:01:32:60:a4:50:d2:56:44:
e8:67:7c:f5:f9:4b:d5:1e:58:91:8f:77:0e:9b:4b:41:dc:5b:
57:c0:39:19:a2:74:27:31:64:e4:8d:df:f7:39:4d:48:30:e3:
a9:05:fe:2c:e3:e0:84:e8:45:92:4f:fa:56:0a:b5:25:33:78:
02:fd:f6:20:e6:e4:38:81:f6:e3:87:9d:14:a5:4a:40:4d:a3:
d5:f4:17:49:34:5e:91:15:65:1d:98:43:49:a3:a1:d5:f2:78:
d6:0e:c1:62:94:d5:de:62:14:5d:0c:7e:6b:66:fb:81:57:86:
d7:cd:08:65:67:69:f1:45:4a:d4:be:f5:e3:9c:9e:e7:e3:64:
8e:37:04:a1:f4:b6:22:1c:65:23:03:c5:f2:67:21:22:92:9f:
41:d8:f3:41:3e:f8:ad:2b:77:e7:25:5c:46:a5:83:2f:aa:0b:
9b:6d:d0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:31:36 2025 by rpki-client on console-fra.rpki-client.org