Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: E+UarLUR4SCAXTV/njz4t/s+YW5nUGhKzb0Jxs9SIuI=
Subject key identifier: C7:DA:36:A7:35:C5:03:B0:C2:2F:1D:42:33:DF:5C:DE:AA:77:AD:0D
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 01950EA16AF7439EAEDC3907F6D7689E8893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 0272
Signing time: Sun 16 Feb 2025 12:00:14 +0000
Manifest this update: Sun 16 Feb 2025 12:00:14 +0000
Manifest next update: Mon 17 Feb 2025 12:00:14 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: iN/qiT2hDVX8JLFjopRh6Hyz9OqqpXXUFAS2osjM61s=)
2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 12:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0e:a1:6a:f7:43:9e:ae:dc:39:07:f6:d7:68:9e:88:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Feb 16 12:00:14 2025 GMT
Not After : Feb 17 12:00:14 2025 GMT
Subject: CN=c7da36a735c503b0c22f1d4233df5cdeaa77ad0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:78:96:ee:cb:6f:49:d2:5e:05:41:77:9e:40:
35:4e:5d:3e:9a:e5:c8:92:bc:c9:56:f8:8d:04:55:
fe:4e:9d:e2:3d:54:09:16:7f:ac:9a:b2:96:b3:61:
96:bc:27:8b:b4:e3:8f:0b:cd:5f:d3:0e:d8:ac:37:
a7:29:99:cc:4c:d4:b4:bc:51:05:b7:df:b5:9e:a0:
d5:c6:65:4c:29:fe:ce:1d:91:04:52:4c:34:85:ac:
4a:5a:5d:bc:cb:b5:1f:75:f2:82:47:3e:c1:f8:11:
8e:25:34:2f:95:41:3e:b7:24:f8:f7:39:6b:1a:a9:
de:ec:f0:f7:16:09:bb:99:ea:b7:4e:d4:6f:92:43:
41:b4:27:e7:73:96:32:5d:17:7f:a1:00:f0:ff:72:
d1:6a:b3:5f:f4:22:be:50:4d:94:7e:3d:0a:02:7b:
38:38:95:d0:6d:fd:1f:4d:9b:3a:e0:25:1f:27:a6:
fe:48:f5:07:83:32:a5:13:c5:95:cd:a3:5d:df:b7:
f8:9f:2e:b2:4e:ed:82:c8:57:5a:91:6e:b6:b4:0d:
99:e9:4a:8f:ef:0c:c8:11:b3:47:4a:dc:bf:75:aa:
d1:9c:c5:18:9c:05:09:84:0c:6d:29:72:28:78:4a:
4d:a6:0b:8f:23:68:e8:6a:fb:ee:61:9b:49:f6:a8:
28:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DA:36:A7:35:C5:03:B0:C2:2F:1D:42:33:DF:5C:DE:AA:77:AD:0D
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:e1:1b:4c:e3:dc:44:34:35:81:40:31:6b:05:02:79:20:8d:
25:c0:ca:58:81:ad:d1:2a:c4:27:97:b5:d5:b9:a5:e8:2e:0b:
2c:ad:ed:3f:9f:a4:ab:64:6b:8e:29:39:6b:6d:34:05:5c:13:
87:36:59:b9:a0:34:0c:6f:b1:5f:e3:07:0b:9f:e0:96:b2:47:
04:a3:d2:8f:6d:c9:3e:42:2d:22:6a:28:b2:1f:fd:2e:b1:2d:
49:98:dd:cc:4e:e5:2d:d7:af:55:db:34:50:42:19:cd:6d:48:
38:54:b2:3c:66:62:c0:8d:23:38:76:42:c1:f5:48:13:40:59:
d9:9f:94:80:40:55:38:25:88:55:bb:26:16:c1:f0:fb:b1:9d:
0c:47:0a:9d:c5:d9:b3:d5:be:29:23:70:1c:24:03:32:68:24:
b8:23:a4:e1:65:3a:06:63:6e:d1:5b:5e:2a:dc:69:13:11:83:
e7:ff:30:db:29:fc:c9:14:4c:98:82:19:43:73:ca:14:c7:1a:
59:ac:a2:02:78:27:67:0f:28:19:fd:a9:ad:26:f0:2c:ed:7f:
f4:7b:8c:a4:8d:d7:d4:c7:6b:31:56:77:4a:47:78:fc:41:c3:
ea:b9:2b:11:dc:0a:9c:b1:69:03:5b:95:42:1a:8c:f0:d4:b1:
9a:c9:97:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:42:48 2025 by rpki-client