Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json)
Hash identifier: ml3bt2v8vJPcvPjbF7whTfYt823Szn36WfuGDEP39YE=
Subject key identifier: 03:B5:56:E4:41:60:09:A3:44:AA:C3:CB:23:62:13:E6:4E:96:F0:C3
Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Certificate serial: 0194BAF27F3093D2D22F7A62BDDE0677A0F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
Manifest number: 142D
Signing time: Fri 31 Jan 2025 06:00:41 +0000
Manifest this update: Fri 31 Jan 2025 06:00:41 +0000
Manifest next update: Sat 01 Feb 2025 06:00:41 +0000
Files and hashes: 1: CCupZ2Z50lEeozRfCFyqGlk11BE.roa (hash: u0mXYzOevuF7/VUH3KREJcVDAaOJuSJnSH+Q3fKIqwg=)
2: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: 4rOLYf7iebtgnJk+nS/tBJeSjPXhP7wlVuL3n+xSP1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:7f:30:93:d2:d2:2f:7a:62:bd:de:06:77:a0:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Validity
Not Before: Jan 31 06:00:41 2025 GMT
Not After : Feb 1 06:00:41 2025 GMT
Subject: CN=03b556e4416009a344aac3cb236213e64e96f0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:29:2b:1d:1a:97:4f:4d:cf:85:8c:86:ca:11:
3e:13:8c:7f:74:bb:11:bc:e4:59:1e:17:d1:a1:f1:
9f:60:52:19:c8:6b:7b:f3:cb:65:49:d6:f0:47:70:
96:a0:ee:01:e1:d2:b4:9e:5c:4b:a3:e4:4f:8c:37:
2c:c7:a3:b8:cf:fe:e0:63:24:59:c9:8c:a8:52:10:
f6:5f:a9:65:3f:86:65:47:c1:d8:54:77:e1:cd:aa:
94:e5:3a:7d:ab:3d:f0:d5:0a:9a:c0:45:26:a2:84:
b5:a3:7d:06:ee:58:09:3b:7e:e1:11:2b:30:4a:f0:
02:19:e5:0d:10:a7:65:8e:6c:6f:36:06:d6:06:77:
2f:44:b5:da:c8:fb:a6:e8:96:c7:6e:4a:f3:b6:ea:
d4:b4:ae:fd:cd:fc:e5:a7:e5:c8:a3:46:0c:c9:25:
95:79:a8:34:d3:6b:b1:83:d3:a8:f1:ec:5a:47:b2:
45:50:7f:22:50:85:92:6c:2e:66:24:85:14:f7:e3:
c4:1c:22:28:b9:20:c2:eb:dd:2f:2c:73:b6:2b:16:
6c:d9:76:9d:b9:74:f2:bd:65:73:0f:e0:b2:0a:9e:
c6:57:f7:af:11:f3:29:9e:93:ad:f6:94:43:15:4d:
93:33:a7:da:29:8d:71:d7:20:26:40:00:73:8e:53:
d1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B5:56:E4:41:60:09:A3:44:AA:C3:CB:23:62:13:E6:4E:96:F0:C3
X509v3 Authority Key Identifier:
keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a7:04:a7:d5:18:26:dd:72:ff:2d:be:a7:8c:c0:42:c8:e8:
1f:77:6f:f1:9b:70:b3:07:c6:b6:c0:43:6d:e8:17:b6:c0:06:
39:95:f2:80:f6:3d:6f:33:31:24:32:38:1e:f8:5f:d9:09:f6:
d2:f2:cc:db:a9:e9:bb:29:28:58:eb:57:16:f7:7b:b9:9f:48:
03:9e:ba:30:32:c7:42:e8:2c:cd:75:2d:a3:ca:62:89:da:eb:
9f:bb:94:01:1d:f1:b4:b4:d9:bb:44:5b:05:9f:87:d2:28:63:
5b:20:13:ca:9d:63:51:55:50:03:31:ae:c6:8a:b9:d6:8e:c8:
52:9d:16:f3:17:c2:c5:dc:7a:30:e1:9a:26:85:91:f1:43:11:
66:f0:00:d0:39:72:d4:b3:7f:45:b5:ab:88:1a:a3:12:08:fa:
4e:02:c0:b2:b3:64:90:bb:f2:b8:bd:e9:dd:ca:eb:8a:81:e6:
77:6f:d4:62:17:b6:55:bf:0f:0b:1f:38:65:71:df:e4:eb:b5:
92:ac:70:47:91:85:6c:65:73:8e:84:0b:eb:ba:c6:08:6f:37:
50:14:fa:bf:4f:c1:0d:4a:86:e2:a5:22:3c:a0:a2:55:a3:64:
6d:04:da:b6:0b:46:c1:96:be:ac:9c:c9:f1:92:99:7f:f3:2b:
e0:44:35:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:19 2025 by rpki-client on console-fra.rpki-client.org