Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: MYyIqCnirQVOS77K/1mEbLP3I+RJkQD9C6/TyLOOGH8=
Subject key identifier: 76:D8:5C:97:20:8D:C8:6F:5F:A3:36:74:E0:EB:12:ED:4D:48:BD:CD
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 01958B846725DB38293325393795339ABE45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 11BF
Signing time: Wed 12 Mar 2025 18:01:05 +0000
Manifest this update: Wed 12 Mar 2025 18:01:05 +0000
Manifest next update: Thu 13 Mar 2025 18:01:05 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: KtybsiK7X7qiyyzyb4jlC7GyE5xnSyswmYbB9E9O+dI=)
2: ESQpVAiSLlfE8UMM75aY_vsPDNc.roa (hash: ubyXNF+odFgCxSHtSbasAdaDvs7x7Wh5p2HTa/QrZgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:67:25:db:38:29:33:25:39:37:95:33:9a:be:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Mar 12 18:01:05 2025 GMT
Not After : Mar 13 18:01:05 2025 GMT
Subject: CN=76d85c97208dc86f5fa33674e0eb12ed4d48bdcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:24:26:12:81:24:06:b7:eb:d4:51:07:91:87:
b5:d5:be:25:28:06:73:4c:15:8c:e5:d7:b7:a6:0c:
1f:11:ed:05:06:36:2a:10:bd:a7:6d:26:4a:56:9b:
14:ba:db:45:a4:6a:f6:a9:8d:b3:b5:a1:2e:df:5a:
78:29:73:3d:1e:66:9d:cf:9f:87:dc:70:f8:0a:81:
21:1b:80:31:b9:c2:e6:31:88:7b:8f:64:29:df:52:
12:0e:44:74:0f:01:1d:6b:bf:bc:d7:d2:79:45:04:
4e:f0:77:02:62:21:0b:4a:c5:05:a2:96:1a:d9:24:
0a:3c:c7:d0:c7:bc:dc:b9:09:18:d3:53:bf:7e:4e:
ab:c4:d8:ae:c5:df:a3:de:6c:1c:b3:e5:2c:ed:7a:
b2:3d:a9:ae:4b:cc:75:ac:8e:c4:7a:2f:e0:0d:34:
e1:90:c1:c0:9b:8c:f0:39:f6:99:43:c6:ca:d0:e4:
39:0a:e2:2d:cb:8c:12:fb:11:aa:7a:9c:77:c3:30:
8f:8f:78:cd:6f:67:9c:e1:ed:db:96:01:9f:11:5f:
7b:46:a7:2b:c2:57:6e:7a:c2:73:3e:e5:af:31:27:
d6:87:f8:33:e2:e1:2f:6f:a9:a5:8a:99:8c:fd:3d:
70:1f:30:c6:9f:9a:83:3d:51:01:b7:b4:a8:b0:34:
54:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D8:5C:97:20:8D:C8:6F:5F:A3:36:74:E0:EB:12:ED:4D:48:BD:CD
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:c8:fb:cc:79:fa:53:08:45:bc:8c:29:75:d3:9b:a0:55:58:
c0:86:ff:be:62:ac:14:a0:29:ab:c5:9e:d6:45:88:56:64:ec:
bb:fc:a3:8e:6f:c3:38:ef:c8:2a:e2:b5:d4:1c:a9:f5:4d:f5:
d5:f7:cb:80:18:b1:8b:c8:a8:93:69:20:cb:a4:25:2d:65:91:
b4:5e:24:8a:6f:86:2f:04:57:50:61:d5:4d:d9:76:e1:98:22:
52:fa:99:b6:4a:f8:32:b2:69:80:c3:f3:48:bb:11:bd:34:18:
8f:02:c1:49:71:f0:26:5c:30:ad:89:40:2e:d9:cb:0d:9a:1a:
8b:86:13:2d:5c:75:22:70:75:6a:26:91:f1:33:ae:db:b6:94:
b2:2f:74:a0:43:cf:51:01:b4:6a:5c:70:34:13:ef:a9:2f:df:
9b:62:70:5e:17:cf:19:fc:15:27:76:61:a6:a2:15:38:1c:1f:
d4:54:b0:70:e0:80:6c:95:70:32:72:24:bb:e3:66:0d:aa:20:
41:c5:42:b0:1e:3b:8d:c2:9e:fc:65:8e:ca:5c:45:d1:4d:d3:
0a:db:57:4d:17:d4:05:82:e8:20:5e:3d:a3:5c:07:24:78:a5:
65:45:f2:ba:6a:2a:1a:7a:b5:4e:f9:53:07:2f:f9:9f:10:bb:
d6:c7:48:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:33 2025 by rpki-client