Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
File: VFhKIZ9vUGbYSO0quWTaiWbUCio.mft (raw, json)
Hash identifier: iZsXkiwpigMHG48+NJqeQkrEON49CAr1l/nfBYeiik0=
Subject key identifier: 98:67:3E:68:A1:92:1E:A8:51:EF:69:F3:43:66:54:15:4A:7A:EF:1C
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 019511D95DEEF121ABC031C27DD729D6A181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 03:00:12 +0000
Manifest this update: Mon 17 Feb 2025 03:00:12 +0000
Manifest next update: Tue 18 Feb 2025 03:00:12 +0000
Files and hashes: 1: VFhKIZ9vUGbYSO0quWTaiWbUCio.crl (hash: 4TSk14TgmqnmmFMef5U4vPtLaK+RgVoDaE7+WmlMRYk=)
2: yO-xzrVzP9w-99d-1MgI3akuEEw.roa (hash: /wfJmKbrJk5HLRMl66b8UyeroQ01b/DROieeTJUHsw8=)
3: ykuZpqMlHSUIWtYa1mPsmyPe9Ho.roa (hash: yZcmu9TrDVEdaIS3LL1L046LUfG1VEvG/7HySIUseIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:5d:ee:f1:21:ab:c0:31:c2:7d:d7:29:d6:a1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Feb 17 03:00:12 2025 GMT
Not After : Feb 18 03:00:12 2025 GMT
Subject: CN=98673e68a1921ea851ef69f3436654154a7aef1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8d:9d:51:c6:cf:74:74:b8:8d:88:9d:7b:ce:
55:44:28:7c:e6:01:bf:d8:08:e8:8e:78:9a:1b:e6:
2c:e1:36:b8:a4:0c:ae:91:50:20:9a:46:87:c8:02:
7b:41:51:d6:d3:ed:6f:e9:37:c5:3c:c0:d1:35:d2:
d9:aa:a9:2b:cb:12:65:a9:ec:74:88:80:36:8e:b9:
20:c1:14:21:10:d5:d9:29:e3:8d:d9:fd:83:59:33:
a0:ce:a3:0f:b4:4a:4e:17:e2:e9:87:83:83:10:b0:
2f:5e:cf:2c:0d:8f:c4:cd:30:c3:83:84:47:a0:0e:
7a:1d:5f:18:69:17:32:29:b0:d2:fe:82:0b:c5:cd:
7b:07:49:ad:50:23:59:6d:a2:57:df:14:ab:36:77:
83:c2:12:34:ab:04:64:0b:ec:79:70:f5:5e:4f:f7:
59:ea:41:c5:9e:21:4c:b8:fc:c9:a9:a2:8f:6e:ef:
6e:2c:ae:af:2e:55:11:b7:fc:bd:d7:d7:58:7f:89:
56:92:51:16:fd:f4:0e:2f:8b:9a:cf:3e:59:92:40:
b5:a1:90:6a:d5:fd:3c:b0:2e:c6:bf:bf:35:48:ef:
3f:a5:c8:ea:b3:fa:e5:19:e5:a4:b1:cf:86:31:1a:
32:63:18:79:fa:a5:a0:65:7d:bf:46:e8:58:b6:60:
33:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:67:3E:68:A1:92:1E:A8:51:EF:69:F3:43:66:54:15:4A:7A:EF:1C
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:d5:97:06:b4:7a:59:9b:21:65:24:5b:4f:a9:12:82:3c:56:
03:7e:6e:7d:16:06:5c:84:74:db:e0:fa:e5:21:4d:94:f5:d4:
fd:b2:c3:2e:98:f6:d9:ab:3c:d4:6c:cf:4c:18:6f:3b:65:4e:
60:98:43:b8:04:4b:e2:20:b7:0d:78:25:40:84:dc:09:63:55:
21:18:45:6e:d5:ae:c6:5a:84:f3:11:c4:99:7b:68:9f:bf:ea:
0a:da:9c:f2:bc:b3:ba:0b:f9:e3:32:6a:81:7a:c6:27:5f:18:
c3:73:5a:db:21:c0:2e:6f:e0:1a:a5:29:75:5b:6a:3e:a0:fb:
2f:69:6e:7b:1a:a5:6e:19:71:b6:17:2f:40:25:f0:0d:01:93:
71:38:5e:7f:f4:30:99:d9:38:7a:5a:bb:db:fb:d7:e9:b9:54:
35:c6:dc:f3:5a:f7:50:5c:30:44:38:d4:81:44:74:a9:bb:6a:
de:e2:95:e5:c1:40:c2:a3:7d:be:7a:a0:08:6b:e9:0f:51:ce:
a3:c1:bc:91:e8:c6:06:20:b3:30:23:36:ce:ef:e0:e0:71:79:
71:d9:c2:d5:41:d0:d4:cc:14:7a:45:6e:3f:4a:b1:e9:b6:d4:
02:28:29:4c:3a:96:1b:33:f5:6a:12:f8:4d:83:ea:05:82:d7:
05:ad:68:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:48 2025 by rpki-client