Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: hp7Zp1JI0+9kc6vjo+zgbx9SIV+8cWVmGHdPjp3l1XY=
Subject key identifier: F7:77:0F:0F:A4:A8:6E:78:C1:94:2C:94:B5:EE:64:35:B5:07:41:0D
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 01951210D02935DCA7931791D5102FC6340A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 09CC
Signing time: Mon 17 Feb 2025 04:00:46 +0000
Manifest this update: Mon 17 Feb 2025 04:00:46 +0000
Manifest next update: Tue 18 Feb 2025 04:00:46 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: GmMuRJA9AUpwQeCxak9XxjjlEnKN+vCFsR1aW89pxOo=)
2: FiLJrOB6VSbXcUW10ayq5u0-45c.roa (hash: SVzm6u7ARr2O1cZhcAUWJuayXj1RRfV/z3YIwyKiXZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:d0:29:35:dc:a7:93:17:91:d5:10:2f:c6:34:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Feb 17 04:00:46 2025 GMT
Not After : Feb 18 04:00:46 2025 GMT
Subject: CN=f7770f0fa4a86e78c1942c94b5ee6435b507410d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1e:a0:b9:48:7d:3c:40:63:88:65:e7:79:3c:
96:cf:34:4b:d9:e2:50:45:08:58:f3:7b:d0:bd:84:
51:9a:12:70:e6:99:f1:e3:c9:1d:03:23:1a:ed:ef:
02:d0:60:ab:ff:c6:b6:a5:48:d1:f2:e6:0f:bf:63:
c0:75:bf:4c:16:d2:e6:c6:e1:a9:60:fc:57:51:20:
2c:43:05:4a:ef:48:bb:57:37:c5:ad:e8:aa:37:5b:
b5:6d:58:53:d0:86:0a:3b:ec:5c:4b:0f:28:56:b5:
b9:3a:f2:44:39:2d:8f:58:3c:89:db:15:f7:ae:cf:
9b:7c:87:e0:4c:16:ce:d8:09:a8:7a:fc:cd:38:ef:
a1:42:17:40:67:69:3f:6d:7a:09:68:f5:5c:15:1e:
98:5a:4a:e2:1c:e5:04:48:83:f6:8d:3d:9b:6b:fb:
d4:d0:c9:44:bf:cb:c5:f4:a3:4f:06:0c:9e:fd:39:
1d:0c:6b:1e:18:8d:7d:ab:22:b9:9a:79:4e:18:1c:
c3:76:8d:15:98:a3:9b:49:5f:30:3f:ed:b4:4b:9f:
1f:71:b5:a2:4c:63:c3:20:5d:fd:c8:ac:c5:eb:b9:
aa:4c:fd:40:31:07:a1:38:44:bf:27:ba:2b:e8:3d:
0e:fc:13:3b:17:c3:d9:e8:5d:79:67:1d:58:6f:df:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:77:0F:0F:A4:A8:6E:78:C1:94:2C:94:B5:EE:64:35:B5:07:41:0D
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2a:88:69:03:e3:2d:a2:7f:ac:d4:64:54:14:97:24:3f:af:
fe:f3:c6:90:ba:05:8e:18:ce:9c:0e:a7:ae:75:95:a1:8e:14:
a8:5e:fd:ea:b3:77:37:f6:27:b6:84:a7:83:8c:64:1a:bf:3b:
4c:ae:89:b2:ec:cc:98:cb:b4:b9:99:ea:9d:92:cc:c4:d2:4d:
6c:85:0c:04:4e:42:06:de:9d:b3:6c:b5:43:bb:d7:fd:19:89:
e4:03:6b:a0:27:91:f8:7f:ae:b3:89:03:d5:89:ea:91:67:48:
99:4f:57:57:1e:32:df:43:f1:cb:da:53:9a:2b:7d:06:02:88:
42:78:f5:5a:19:0e:87:43:6b:8d:5e:0a:a9:58:1a:de:fa:62:
d6:04:92:18:09:bf:32:80:c5:d3:00:9a:1b:53:93:45:43:e0:
3e:4a:8b:e6:f9:10:ae:f3:9f:ed:0d:68:ce:b6:76:10:e2:b2:
5b:73:be:44:a1:bf:10:27:e2:1d:80:43:22:e8:cb:35:8c:a8:
6d:fc:02:8e:37:74:7e:bd:17:18:82:9e:29:70:9f:bd:e7:bc:
8a:ba:1c:3e:f5:e3:b5:11:99:e8:30:80:d8:77:75:3d:82:e4:
01:34:7e:41:64:b3:3f:a1:3a:9f:ee:84:bd:89:ef:eb:84:89:
5d:40:c0:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:43 2025 by rpki-client