Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: q5tx7jG3WbHDoBBfYQmycUoUUP92uhZvw5c/TkbWq4w=
Subject key identifier: 67:DA:DA:FD:87:A8:76:5E:CD:02:24:D8:B3:32:B8:82:1E:2B:59:9F
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 019510FE35ABC55DA8FF62F7AFAC7654201A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0DBF
Signing time: Sun 16 Feb 2025 23:00:50 +0000
Manifest this update: Sun 16 Feb 2025 23:00:50 +0000
Manifest next update: Mon 17 Feb 2025 23:00:50 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: tmOZ4Lyv99meM5XpKFx8Sl6HsT/HTMoWt14nNvkiQHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:35:ab:c5:5d:a8:ff:62:f7:af:ac:76:54:20:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Feb 16 23:00:50 2025 GMT
Not After : Feb 17 23:00:50 2025 GMT
Subject: CN=67dadafd87a8765ecd0224d8b332b8821e2b599f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:48:2d:d5:fe:54:7e:df:8a:a2:52:a7:cc:44:
21:d1:40:9f:fa:5f:97:3d:d9:62:33:74:eb:75:e5:
46:9c:56:90:35:4f:5b:9a:81:20:4a:c5:0b:da:8c:
1b:1e:cd:1b:93:89:6d:30:e4:d4:e0:ff:80:9b:13:
12:35:59:6f:11:ab:49:5e:85:f7:b5:e0:83:e9:8a:
0a:2d:7f:e9:8e:bf:4c:5a:5e:c4:bd:25:31:d1:bf:
85:7b:f5:b1:b8:ac:1d:8f:0b:4a:e5:a5:69:71:41:
c9:ee:bb:1e:fa:2c:74:15:96:4d:27:d0:2e:e3:cc:
30:1f:f9:68:07:94:8b:4d:f2:02:ed:d9:bb:61:e9:
1b:01:ed:63:ad:0d:d8:08:4d:64:1d:8c:3f:d1:2b:
13:be:ac:7c:3c:c4:9d:b4:c3:30:29:07:eb:a8:e4:
82:09:9d:93:0a:dc:a0:6b:64:10:3a:23:a5:53:49:
5b:ea:04:90:5b:01:3a:0a:94:09:4d:f3:7e:5c:b7:
02:8e:e1:39:de:05:65:c9:ab:1f:a1:98:80:06:92:
33:85:16:98:e5:99:da:80:d3:c9:76:c5:9f:3d:9e:
6a:07:cc:55:3d:67:fa:93:d9:ab:a2:80:05:f4:03:
08:75:c8:cd:d8:c0:58:81:0a:7d:25:ff:c1:00:12:
fc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:DA:DA:FD:87:A8:76:5E:CD:02:24:D8:B3:32:B8:82:1E:2B:59:9F
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:10:9c:bd:47:66:f1:17:18:ae:40:9b:26:21:b3:43:ee:0e:
47:4e:68:b2:45:36:77:4a:46:f8:2d:b8:1b:c1:11:4a:c6:a1:
c3:3c:bd:b2:62:ca:61:90:95:e7:53:a7:db:90:c3:33:b6:88:
93:bd:6f:ec:a3:7b:a7:3f:4d:3b:c0:81:ba:21:fa:e2:f3:f2:
a0:e4:7a:1d:fd:71:1a:94:c0:5e:55:9f:71:71:8d:7b:ad:1a:
a1:9b:fd:c1:12:19:c4:c2:34:52:a7:6d:7e:96:f4:41:1a:dc:
21:ac:39:36:d6:c2:63:8b:f3:00:1b:e0:f4:04:1d:51:1f:62:
16:96:28:82:85:d8:70:58:ac:92:2c:05:7a:1a:b8:b9:df:d6:
4f:85:78:dc:b7:77:cb:b9:f6:14:97:21:e1:fa:9e:ca:ad:23:
47:bb:ca:6e:50:85:0f:c1:de:08:9c:8a:20:3b:48:60:bf:1b:
e9:12:08:05:63:0a:70:2f:4a:03:9a:b0:89:9a:60:e7:f8:0b:
d7:f9:ec:c5:d0:db:92:c9:14:60:92:59:ef:26:4b:c5:53:ec:
93:c0:21:b8:b8:38:be:86:b9:21:9d:12:d5:2a:76:cf:ac:1b:
35:59:5b:b9:f4:f5:20:99:d1:8f:a1:b1:44:db:a2:0a:23:bc:
db:c7:d0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:15 2025 by rpki-client