Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: Ko9Cz0wT06srWm8U936XMhcvsPhzYnQc1SJcDxh3luA=
Subject key identifier: 78:9C:80:5D:3D:7A:5A:B1:80:D6:02:88:33:9E:2D:BF:A4:3B:FD:3E
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0194BB5FF5D00F55D23CAD76E1A655FDDFB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 04AA
Signing time: Fri 31 Jan 2025 08:00:15 +0000
Manifest this update: Fri 31 Jan 2025 08:00:15 +0000
Manifest next update: Sat 01 Feb 2025 08:00:15 +0000
Files and hashes: 1: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
2: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
3: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: bKmgVhjBsyzNiVl6M3edEMRU5TYQdTT56hQswVdpVTk=)
4: raKsGhTlSRWQMWRm6Wn27tm3Cb4.roa (hash: I4OBFbZZGC0w5I2m/kl44FUeB7dXwpuLeB9e6Z5z4ZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f5:d0:0f:55:d2:3c:ad:76:e1:a6:55:fd:df:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Jan 31 08:00:15 2025 GMT
Not After : Feb 1 08:00:15 2025 GMT
Subject: CN=789c805d3d7a5ab180d60288339e2dbfa43bfd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:4e:c6:9d:e9:81:f0:68:96:21:e5:0f:62:
9a:31:6e:69:25:12:41:9c:88:3f:e7:2a:5b:e8:68:
88:33:09:c4:9c:b1:d9:f3:ba:54:6c:78:98:c9:5f:
9f:a7:96:7d:54:51:02:94:aa:ec:c7:02:89:83:0f:
c6:f0:58:d2:8c:cc:87:21:06:71:f8:d3:46:20:44:
33:61:f3:2f:92:8e:db:10:ac:7a:7e:ef:48:cd:50:
44:90:51:47:3b:a6:c3:87:20:e9:a3:eb:65:c7:6d:
44:c4:20:56:2e:10:da:64:50:46:fe:e4:9e:47:9b:
43:85:ce:ef:a9:97:be:e0:34:9f:d9:22:1f:fd:44:
09:1d:d6:b7:7b:20:43:9e:04:41:07:7b:8a:88:a4:
7c:b4:c3:3b:f2:5b:e0:6d:31:ee:fe:83:c1:85:34:
12:11:40:93:7d:27:44:d5:ad:b5:81:6f:c3:4a:72:
5c:ad:62:9b:9d:a1:1e:5d:3a:95:b0:79:56:af:8d:
a0:c6:31:0d:79:f9:4a:a3:37:f0:9f:a2:3c:67:ea:
21:58:b4:5c:00:93:a3:0a:1c:60:c2:25:80:29:f0:
89:61:4d:f7:19:46:95:e2:bc:a7:74:f1:7e:8d:d3:
ba:28:cd:32:a1:ad:3c:ac:7a:6f:77:00:ac:1b:38:
21:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9C:80:5D:3D:7A:5A:B1:80:D6:02:88:33:9E:2D:BF:A4:3B:FD:3E
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:c8:a6:08:ac:86:69:77:f1:1b:d5:76:3f:2e:e3:c2:7b:2a:
f0:0f:e2:b2:c1:79:da:3a:5e:10:c6:a2:2b:7c:05:0a:57:53:
b6:9a:73:7c:55:63:2b:1b:ca:95:3e:c9:1b:79:0e:e2:c9:42:
50:94:c7:82:19:d2:82:9f:6e:4f:84:1e:a3:29:64:9c:00:e3:
06:c3:0e:2f:3f:e6:3c:65:14:d7:17:12:b3:c2:b7:94:ca:29:
0a:f1:a3:3b:ab:3e:7d:de:11:f8:68:43:57:8d:66:b5:f2:fa:
8e:fc:52:26:41:ea:6f:50:aa:23:a6:e7:1a:dd:36:5e:42:0b:
5c:ce:66:08:cd:1b:ee:7d:29:72:85:b6:a2:42:0b:25:3f:11:
cd:6f:44:93:e3:64:3b:41:3e:68:d1:f9:8f:34:e0:42:cc:99:
0f:a6:b3:a4:eb:cc:65:f7:cf:9c:a6:5a:19:b0:8c:ce:7e:b8:
32:53:47:dc:42:cb:d6:c1:74:e6:d6:8b:54:c7:96:36:08:aa:
94:36:e8:e8:30:fa:9e:58:d9:89:c1:16:93:bc:e1:30:fe:d6:
f4:e2:92:69:cf:20:32:dd:c1:e5:0a:c0:36:65:fd:3b:ff:5e:
d0:93:24:b2:8a:e4:5c:79:5f:0d:9c:9f:31:2d:bf:64:ab:a4:
b1:13:f6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:58 2025 by rpki-client on console-fra.rpki-client.org