Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft
File: Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft (raw, json)
Hash identifier: 8VO9sLa1h9M6ml8B0/oWUQj1S3tCP0gnnJJqG8lV63Q=
Subject key identifier: 58:EF:28:A9:05:2E:22:83:63:F2:2D:82:2E:84:27:BD:A5:8C:46:DF
Authority key identifier: 43:9D:D1:CE:AE:0F:65:D6:2A:2E:B7:C6:7C:48:DD:43:0E:7D:A6:96
Certificate issuer: /CN=439dd1ceae0f65d62a2eb7c67c48dd430e7da696
Certificate serial: 019511D9BBCC78C434974868B5BA2FE87F6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft
Manifest number: 028F
Signing time: Mon 17 Feb 2025 03:00:36 +0000
Manifest this update: Mon 17 Feb 2025 03:00:36 +0000
Manifest next update: Tue 18 Feb 2025 03:00:36 +0000
Files and hashes: 1: Q53Rzq4PZdYqLrfGfEjdQw59ppY.crl (hash: +So1OQvaep18QMyzWXjR0YK+pcvd4HeSJY6aaEc1Lrw=)
2: oskd316tBTAUTSHf0wsKURHXyDc.roa (hash: IsLUQsw+ev9Voy8iNeiPun8V5Wlg4SPwA/B548IB55M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:bb:cc:78:c4:34:97:48:68:b5:ba:2f:e8:7f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439dd1ceae0f65d62a2eb7c67c48dd430e7da696
Validity
Not Before: Feb 17 03:00:36 2025 GMT
Not After : Feb 18 03:00:36 2025 GMT
Subject: CN=58ef28a9052e228363f22d822e8427bda58c46df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9b:d3:a8:9d:20:fc:e4:0b:b0:bd:5d:7c:2f:
b0:15:de:0b:18:f8:a0:4a:4a:0c:23:3f:25:ea:17:
80:2d:cd:a8:1f:8f:1f:38:d0:8a:01:64:0b:bb:99:
df:d1:96:75:6b:66:ac:72:62:60:64:ef:55:28:ab:
04:ae:69:80:37:4d:08:25:4b:8c:a8:74:ba:0d:0e:
ab:6f:1d:40:6d:e3:16:ae:b0:12:40:81:48:94:61:
7b:8f:1f:25:0b:d6:92:5b:52:f2:b4:db:e2:4e:0b:
a2:19:8a:d9:41:46:bd:0c:ff:f9:ec:10:39:23:d1:
0c:0e:43:52:ef:87:8d:c2:0a:80:02:a8:7c:37:b8:
a6:c5:30:9c:78:92:95:60:8f:4f:a3:7d:0c:37:74:
a3:f2:89:75:16:2a:85:ef:65:6e:ff:10:7f:ae:32:
dc:d5:c5:e5:76:a9:9f:8e:35:61:60:a2:4b:72:63:
0b:17:7f:52:b6:74:2f:1b:48:e6:79:fb:df:10:b6:
aa:d3:e0:67:f9:33:ef:0b:7c:53:33:e0:d7:c7:59:
63:0a:5a:bf:d6:76:3d:cb:82:54:cf:13:dd:50:10:
b9:97:2a:58:67:7c:38:c8:d5:53:07:84:97:3c:76:
3a:1b:84:16:3c:46:f6:ce:0b:7c:69:9f:5d:fc:88:
25:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:EF:28:A9:05:2E:22:83:63:F2:2D:82:2E:84:27:BD:A5:8C:46:DF
X509v3 Authority Key Identifier:
keyid:43:9D:D1:CE:AE:0F:65:D6:2A:2E:B7:C6:7C:48:DD:43:0E:7D:A6:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q53Rzq4PZdYqLrfGfEjdQw59ppY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b37a56-7bb1-4f83-a17e-6417bd8fe29c/1/Q53Rzq4PZdYqLrfGfEjdQw59ppY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:89:34:70:1c:ff:a9:d5:bb:29:ec:c2:ea:de:4d:d9:16:df:
12:5d:f9:89:3f:fd:48:14:ea:ae:34:2e:71:08:15:e4:fc:63:
0c:45:c6:d9:b7:fc:5b:b1:0a:26:3c:8b:8c:ba:b5:c3:88:70:
75:8e:cf:19:fc:56:d7:b0:65:a8:c2:c0:0e:96:91:11:9f:75:
a4:18:53:03:95:b7:35:f1:30:7f:4d:ae:63:23:d8:69:dd:b5:
92:ec:d6:fc:90:a8:ee:99:95:5c:52:13:6f:51:50:24:07:8e:
8d:ae:7a:39:36:e0:6e:3d:24:40:5b:54:be:43:d3:c2:ae:4d:
11:74:d6:1d:43:b8:b1:34:66:34:0f:09:ca:59:f7:50:a9:2b:
3e:c9:8e:a0:b5:6d:55:0a:e5:00:17:46:d7:95:8f:79:1d:e5:
e7:49:06:fb:fb:71:16:30:10:eb:d4:0c:7a:f3:21:33:f9:34:
71:13:96:7e:ab:ed:95:e1:4c:c7:33:e7:0b:6c:34:b4:47:9b:
03:8e:c2:d5:c8:18:d3:c2:bc:f8:0c:f3:3f:33:15:df:56:ee:
e5:4f:28:11:0e:cb:25:7f:13:25:4b:c8:59:94:0e:54:ee:4b:
40:2d:f6:8d:15:1f:83:96:83:6e:8a:6f:bf:b3:85:cd:d5:ed:
85:d2:d5:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:40 2025 by rpki-client