Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
File: LQcZ69mnslPhSyXN7EzdFUoRHjA.mft (raw, json)
Hash identifier: tNxa2ut7z90QB8FzDlL4HcCXOaJyjUu0OM8dXtNSio8=
Subject key identifier: CF:F3:B6:86:33:01:87:68:AC:94:F9:18:E0:B6:DE:E5:E8:08:69:AD
Authority key identifier: 2D:07:19:EB:D9:A7:B2:53:E1:4B:25:CD:EC:4C:DD:15:4A:11:1E:30
Certificate issuer: /CN=2d0719ebd9a7b253e14b25cdec4cdd154a111e30
Certificate serial: 0194C3196182F94ACE59A9B346DF02530A4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
Manifest number: B1
Signing time: Sat 01 Feb 2025 20:00:07 +0000
Manifest this update: Sat 01 Feb 2025 20:00:07 +0000
Manifest next update: Sun 02 Feb 2025 20:00:07 +0000
Files and hashes: 1: 3RDyrZvZCaLxq028Ow5HCrsQefI.roa (hash: NXFuVuevT7dKqj3U3xabeRYu8pGJV55BCTjMmY4c/fY=)
2: LQcZ69mnslPhSyXN7EzdFUoRHjA.crl (hash: JkT2htX9WSenW8WbPkULfEjGHzaxg+DXiofivBKwSAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 20:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:19:61:82:f9:4a:ce:59:a9:b3:46:df:02:53:0a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d0719ebd9a7b253e14b25cdec4cdd154a111e30
Validity
Not Before: Feb 1 20:00:07 2025 GMT
Not After : Feb 2 20:00:07 2025 GMT
Subject: CN=cff3b68633018768ac94f918e0b6dee5e80869ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:86:24:de:b6:25:63:3a:e7:a4:00:23:d3:68:
e2:f1:50:97:bc:4a:0d:b1:0e:8f:af:b8:0a:68:0a:
f1:36:7a:34:40:bc:42:03:34:5a:c2:bb:92:4a:eb:
1b:53:47:d3:22:ac:d0:c2:b2:08:29:a9:e7:f6:40:
49:76:24:24:e4:8a:81:4f:75:cc:10:4b:ac:cf:90:
df:0f:a6:95:25:5e:92:61:e6:39:6c:83:ca:55:92:
37:a2:84:44:cd:7b:5a:da:0c:2a:28:c0:e9:67:3f:
1d:84:80:97:fd:bd:2d:fd:3e:77:00:0a:67:af:a8:
39:22:80:8a:b0:c9:02:79:27:1b:26:de:12:69:15:
73:4e:c1:1b:a8:69:4e:91:77:84:e3:c2:5d:8c:f8:
ce:70:df:90:83:56:39:3b:54:20:ab:28:4a:19:98:
ff:9c:52:02:87:5d:9a:c4:fd:ac:0a:48:35:df:13:
b6:fd:c2:5c:e8:86:36:1a:61:16:4c:fe:84:3c:c4:
f2:f8:19:84:47:bf:8d:cf:ad:6c:29:f7:0f:d6:ae:
41:99:ba:02:c2:4f:36:fe:31:6e:8e:b8:3f:e6:27:
ea:dc:36:27:e4:f8:1b:e3:26:51:da:ba:05:4d:08:
16:ec:3d:fd:e1:a9:f7:af:b0:b2:a7:4f:37:4f:6e:
24:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F3:B6:86:33:01:87:68:AC:94:F9:18:E0:B6:DE:E5:E8:08:69:AD
X509v3 Authority Key Identifier:
keyid:2D:07:19:EB:D9:A7:B2:53:E1:4B:25:CD:EC:4C:DD:15:4A:11:1E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LQcZ69mnslPhSyXN7EzdFUoRHjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a1a2a5-38e0-458f-8600-377493ce5877/1/LQcZ69mnslPhSyXN7EzdFUoRHjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3c:d4:20:f6:ca:31:f1:f3:fe:06:be:2b:21:9b:2a:4e:6b:
c0:1e:76:62:f2:3b:ae:9b:c7:7b:32:9f:c9:72:65:31:9a:90:
19:69:8c:55:b3:a7:0a:26:9d:f9:f9:25:87:d9:29:89:7c:9f:
29:1c:ed:81:df:f8:1c:85:28:8d:59:dd:48:02:ba:3c:ac:04:
d4:0b:cb:bd:e7:91:38:fc:50:79:b4:08:c2:6e:95:8b:3d:86:
a5:38:dc:d0:79:19:8c:62:7a:d9:9c:86:6e:9d:28:62:95:cf:
53:72:f6:c1:9a:20:ee:e6:4b:60:74:2c:cb:0a:be:f5:6b:7d:
f1:a9:b4:0f:fe:ff:14:f8:49:e3:97:5b:d2:8e:b8:4c:7a:0e:
99:00:67:d5:47:ea:e3:e1:68:76:23:0d:33:02:d9:dd:6c:86:
32:87:b3:69:3d:79:c1:29:78:df:d6:c1:0f:38:4e:65:c8:cc:
10:05:f9:89:25:63:1e:e0:91:ee:49:93:d9:6a:07:e6:2c:b0:
f9:0f:e7:e8:96:e2:0c:f9:1a:7d:0b:68:0b:b3:d9:db:8b:27:
6c:35:ab:f7:34:bb:62:50:df:49:48:c9:3c:8b:9f:ac:b9:0d:
75:47:45:88:09:a0:e2:3f:51:c5:b0:d4:ef:7b:5c:2d:81:87:
23:8f:b9:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:42:07 2025 by rpki-client