Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
File: xZttw7wi9sNqA5hVU0stQauxJCM.mft (raw, json)
Hash identifier: 2Vu0TtznYffcrbR2oMVWogKBlx2wgJayvbWZhpOAiNc=
Subject key identifier: 86:D8:A4:C2:8C:3E:92:D5:00:82:F5:EF:56:DD:AD:8E:3A:61:10:DD
Authority key identifier: C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23
Certificate issuer: /CN=c59b6dc3bc22f6c36a039855534b2d41abb12423
Certificate serial: 019578A236458EC42E2B2954F9BAAE6CD333
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
Manifest number: 148B
Signing time: Sun 09 Mar 2025 02:00:51 +0000
Manifest this update: Sun 09 Mar 2025 02:00:51 +0000
Manifest next update: Mon 10 Mar 2025 02:00:51 +0000
Files and hashes: 1: WOcgzm6uQCs6AkEViYONoq1N374.roa (hash: nQFtl/WwmhlASNmPqjUWZCZ7o+laxk6LEJZG32/xqcY=)
2: xZttw7wi9sNqA5hVU0stQauxJCM.crl (hash: MLcpgb25MSTNypLJ0rCpPWf7iiegIHOZOHOp4hXi16Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:a2:36:45:8e:c4:2e:2b:29:54:f9:ba:ae:6c:d3:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59b6dc3bc22f6c36a039855534b2d41abb12423
Validity
Not Before: Mar 9 02:00:51 2025 GMT
Not After : Mar 10 02:00:51 2025 GMT
Subject: CN=86d8a4c28c3e92d50082f5ef56ddad8e3a6110dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bb:6c:cd:77:f1:07:9c:9e:f8:78:fd:0d:70:
00:91:e4:6e:ed:6c:2d:62:a1:90:e8:6b:7e:60:b7:
a0:f3:15:57:af:e5:a7:8b:57:1c:51:6e:f4:6e:ed:
0f:3b:12:0d:ba:62:9b:2b:13:39:fe:37:f6:8e:b1:
b4:75:a1:6b:fb:e3:98:30:8e:30:3a:b0:a6:63:92:
26:ce:5a:59:b8:c5:4b:58:e6:2e:da:78:8e:05:10:
63:ea:06:88:93:b7:24:11:7a:87:98:50:79:29:12:
7b:d1:db:9f:27:3e:ca:7c:cb:0f:bd:28:5f:2f:d8:
56:e3:74:e1:e9:d7:3d:1e:a4:ac:b8:92:66:05:c7:
d8:54:30:48:58:dc:7f:51:f4:5d:9b:2c:2f:6a:24:
d4:27:ce:ca:f8:7e:c1:76:38:04:8d:3e:39:22:f1:
d1:d5:26:37:6d:8a:20:15:61:44:c0:53:d4:8e:96:
7d:e1:26:31:55:4f:a7:27:86:0f:95:c5:e7:f0:8d:
19:c9:d4:3f:87:05:d1:27:8c:4f:20:83:a0:17:52:
16:1d:44:6c:e9:db:83:3f:e1:a0:b0:0c:52:8a:9a:
2c:8a:31:45:1b:59:01:b1:93:e5:58:1c:5c:5c:a9:
a0:c8:52:8c:96:f2:4d:a0:51:d6:eb:a9:8e:0f:dc:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D8:A4:C2:8C:3E:92:D5:00:82:F5:EF:56:DD:AD:8E:3A:61:10:DD
X509v3 Authority Key Identifier:
keyid:C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:cf:bd:11:6f:06:8e:f3:94:61:f5:ad:4c:83:8f:a9:52:ba:
11:9e:05:1e:e5:27:c1:95:7c:d6:78:4d:6f:13:08:0a:6a:6d:
8b:f7:f8:72:9b:4c:0c:31:fb:ba:51:0c:3b:6b:4c:70:f0:10:
5d:8b:3e:be:70:4e:c6:f0:97:a8:f8:cb:fc:a4:00:f7:36:38:
bf:6d:4f:96:ca:20:4e:12:08:81:2b:a4:0a:e6:aa:d7:6f:f8:
08:66:e2:8b:4e:6e:f2:1c:2c:31:53:35:62:8c:64:7c:10:e3:
e5:55:ed:c9:d0:a8:c6:6a:59:9e:85:93:e4:0b:04:27:33:d0:
ed:8a:ed:97:e4:c7:a1:63:8f:3f:85:40:09:f5:92:05:bc:a5:
77:28:ed:bc:ce:80:9c:ba:fe:84:47:58:a8:a2:fa:18:fa:e1:
4d:36:ce:b0:fa:d7:05:6f:42:95:5b:93:5f:81:71:9c:da:e2:
f9:f0:0c:68:be:8e:2a:c5:62:a2:e4:7c:88:01:e2:0a:a2:60:
f6:22:e7:ae:90:84:85:17:44:bb:4f:b5:50:fa:23:03:ff:37:
1d:ea:1f:96:a4:d1:6a:b2:1a:dd:d5:40:fd:3a:d3:67:8c:b2:
be:a0:31:7c:c6:11:31:79:27:27:c9:13:fb:cd:03:ed:a6:be:
99:76:87:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:35:18 2025 by rpki-client