Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: L5LqOCnxY/LlWPc0cDyIcMF23jHIVA3iZkKhhDLCRYE=
Subject key identifier: C7:B3:7A:4B:C7:05:36:2F:DF:0E:57:EC:48:F7:70:1F:D8:70:0F:13
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 0195127E47A1D90BC0AB8D07C91DE53B359A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 06:00:20 +0000
Manifest this update: Mon 17 Feb 2025 06:00:20 +0000
Manifest next update: Tue 18 Feb 2025 06:00:20 +0000
Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: TpNnOL2llCOHrOqXeQizaqG30Q+wjyLUA1Bhycp7vSk=)
2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:47:a1:d9:0b:c0:ab:8d:07:c9:1d:e5:3b:35:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Feb 17 06:00:20 2025 GMT
Not After : Feb 18 06:00:20 2025 GMT
Subject: CN=c7b37a4bc705362fdf0e57ec48f7701fd8700f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:be:f4:9b:78:30:c7:93:7b:be:9a:44:18:64:
68:d3:b0:2f:35:7e:7e:17:08:2e:ec:97:2e:68:cf:
a0:81:f7:04:5e:36:c3:09:b0:14:b0:b7:f8:69:4c:
2e:2c:82:c6:1b:b9:a0:5d:9b:f1:e8:2a:4a:93:7b:
17:f8:4e:b8:51:dc:d3:1d:ae:ff:1d:9d:37:1c:af:
67:73:ac:5c:a4:81:b3:cb:86:07:cf:7c:33:67:6e:
d9:1d:38:40:ac:04:53:56:4d:f3:0d:8b:3b:d2:ab:
75:ef:9f:61:df:d7:9b:ed:ed:f5:c7:95:a1:7c:55:
93:9c:dd:9a:6c:f1:7b:28:2c:e4:b6:b8:35:7c:01:
b6:7e:0f:5f:de:6b:30:68:19:79:8f:ff:3d:c7:13:
2c:4e:ef:e2:ba:b1:c2:8d:44:17:42:95:95:17:01:
9b:ee:c3:68:12:d1:a8:ce:4b:5f:e4:e2:8b:b7:65:
61:1e:43:bd:72:1e:97:26:74:00:90:a3:8b:32:dc:
6a:a3:2c:db:c5:34:a4:f3:8e:ed:22:84:ef:c9:44:
27:58:51:cf:30:b7:6c:73:4c:e9:2b:e0:3f:f0:c5:
a8:10:de:92:6a:c9:59:0c:4e:0a:d5:64:13:e6:3f:
e6:b5:0b:f8:85:a7:55:0b:a4:19:6e:9d:32:8f:de:
ae:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B3:7A:4B:C7:05:36:2F:DF:0E:57:EC:48:F7:70:1F:D8:70:0F:13
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:c1:96:12:23:da:7d:b7:3e:55:37:c2:18:c2:1f:0a:10:dc:
98:8b:7b:72:48:96:a3:41:76:12:26:bf:a8:32:7d:d0:ab:40:
0c:17:36:58:6b:c0:92:6d:81:16:c8:b7:a2:65:8e:bf:b8:c6:
a0:8b:1a:a9:f8:df:d2:20:c8:48:bb:72:1b:c5:ca:d7:55:bc:
35:84:c3:dd:a8:bf:63:a5:0a:c6:dc:94:ea:93:bd:ad:9f:d9:
c8:0a:e7:0f:40:4f:ac:ab:84:4a:55:ec:79:1e:63:7d:8b:4b:
fa:8f:e9:64:8d:d5:d8:33:c8:28:91:99:ac:79:8e:9b:37:b7:
c3:34:f9:b8:14:3e:67:33:7e:5d:b6:2a:78:60:ae:4b:c3:68:
97:e3:8f:e7:3a:26:e6:e2:a6:94:47:2b:37:13:3e:a0:55:57:
54:45:55:4e:2c:77:10:a9:80:d5:b8:80:1a:a7:72:3c:14:9e:
55:a1:d0:d5:8e:5a:71:10:ad:67:12:d0:ee:a7:c7:c5:93:8e:
16:25:ee:1d:a4:cd:72:c6:9c:90:f9:bc:b6:f0:84:a2:0f:2e:
cb:fc:da:98:af:16:a0:4f:2b:00:91:4d:f2:c7:f9:5c:29:0c:
c7:c3:5b:22:64:56:52:4a:b4:2c:ae:21:aa:ee:68:c7:b8:74:
e2:d4:9c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:00 2025 by rpki-client