Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
File: pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft (raw, json)
Hash identifier: 5pU3ZJSNFg8O/kEJoUO4q8jXV2Y7j0NbzfG1uIjNuBA=
Subject key identifier: 84:94:FF:5F:B6:7D:C1:0D:A3:D3:6A:5A:51:E0:FB:18:57:54:61:76
Authority key identifier: A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66
Certificate issuer: /CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866
Certificate serial: 0194C3F5C93653809A75B3AD23F9B60D33B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
Manifest number: 07FA
Signing time: Sun 02 Feb 2025 00:00:52 +0000
Manifest this update: Sun 02 Feb 2025 00:00:52 +0000
Manifest next update: Mon 03 Feb 2025 00:00:52 +0000
Files and hashes: 1: L_XmzwrYuu-3rRY_iMRM0yQHIg4.roa (hash: RmMXdLfBhblx+m1KktkkN/nQ0YOW2Tp0s4LZY86DblA=)
2: pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl (hash: 3AkC9jSqgsKzMANXPprSsO3Hb8Fulp8CjIUp95GGvQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:c9:36:53:80:9a:75:b3:ad:23:f9:b6:0d:33:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866
Validity
Not Before: Feb 2 00:00:52 2025 GMT
Not After : Feb 3 00:00:52 2025 GMT
Subject: CN=8494ff5fb67dc10da3d36a5a51e0fb1857546176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:58:16:04:14:e1:ea:26:8b:e3:b4:91:62:a7:
f6:b8:fa:ba:67:bd:f9:ae:3f:53:54:1a:27:58:a8:
0a:7e:4f:6b:36:94:34:54:3b:75:f8:75:87:9e:ce:
6a:89:82:f1:bc:ab:07:f9:60:d4:5d:db:86:a3:c8:
41:c3:e2:3f:b2:fb:d9:8e:c7:0e:49:00:e5:77:fb:
f8:36:44:11:c8:9a:02:47:ea:e3:7d:3a:d7:8a:9d:
bc:29:60:a7:78:d6:72:41:f0:d8:c0:30:f2:ce:66:
dc:ae:29:3f:c1:9f:c8:f6:a2:48:4d:34:65:a9:24:
5e:fc:ab:42:b8:33:20:0b:9c:23:8a:ea:6f:24:f0:
30:e5:94:db:b8:0c:e3:6d:b5:13:5e:22:90:f6:17:
b8:e2:e7:24:f9:c9:3a:ff:f4:04:65:cd:37:49:cb:
fe:91:c9:87:c6:54:cd:13:46:a7:16:6f:0d:3e:ec:
ef:d5:2d:12:b7:b4:50:51:5a:e2:d3:39:bd:cc:50:
5d:e5:26:85:27:a3:94:cf:a4:15:03:89:3f:e4:7b:
c3:47:86:33:e7:29:dc:87:08:0e:c5:83:65:19:cf:
e8:ac:0e:f2:11:3c:f0:e1:c4:43:fe:30:2d:3f:f9:
a8:7f:a3:3d:d2:b7:7c:e5:7f:03:1f:90:97:76:7b:
d3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:94:FF:5F:B6:7D:C1:0D:A3:D3:6A:5A:51:E0:FB:18:57:54:61:76
X509v3 Authority Key Identifier:
keyid:A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:e0:de:e0:e9:1c:67:1e:1e:86:09:10:8f:c5:44:2b:fd:c0:
86:df:b8:72:a0:06:1e:c0:a8:c2:8a:cd:b0:b2:0b:7d:09:c2:
26:52:e2:b5:db:26:77:0f:94:41:6e:2c:89:bd:42:72:68:ef:
04:04:aa:d6:70:da:b0:ee:d9:78:12:cc:85:84:8d:48:39:51:
0d:6d:d5:f4:e0:1e:0c:45:58:d0:de:35:99:aa:a5:b6:fa:cc:
a5:21:c9:e0:7c:d0:21:05:5b:4a:16:c8:8e:57:3d:73:7f:cc:
5a:87:b4:a0:5a:eb:6a:20:06:71:e4:a9:5e:9b:0d:8a:77:c4:
87:8a:59:d8:6a:6c:d1:ac:25:e4:28:37:49:8f:4d:ce:57:76:
e4:9c:ee:a9:67:e9:1b:1c:ee:ba:4b:bb:a8:14:41:6c:59:8a:
1d:0a:2c:99:05:34:96:00:b0:cb:17:24:f8:a7:7b:de:aa:53:
d6:15:de:ca:0f:f3:23:ba:e0:d6:79:68:0b:23:7d:dd:6f:43:
82:25:6f:2f:3c:77:5a:d2:2f:6e:66:57:7e:6d:ff:af:29:03:
97:d4:61:12:66:d9:f6:7e:ab:1b:99:9f:cc:73:43:97:7e:e4:
10:0f:df:00:5d:c9:f6:3e:1e:af:22:f9:8d:64:8c:bc:44:4b:
0e:1f:1d:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:45:08 2025 by rpki-client