Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json)
Hash identifier: 0lPfKQKtdzxlIbloGFWAQ/SXJUfzBav45TFB1aeLi88=
Subject key identifier: 7B:03:F2:26:C3:1B:06:49:BE:EF:88:6E:F2:61:6A:0F:25:05:44:94
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 0195127E465D445624F56E091F34FC6DBBB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
Manifest number: 08C0
Signing time: Mon 17 Feb 2025 06:00:19 +0000
Manifest this update: Mon 17 Feb 2025 06:00:19 +0000
Manifest next update: Tue 18 Feb 2025 06:00:19 +0000
Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=)
2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: sy6R/e7pcwmMrAA87Z2lBE0+y2XUuSa+p8r406UOmIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:46:5d:44:56:24:f5:6e:09:1f:34:fc:6d:bb:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Feb 17 06:00:19 2025 GMT
Not After : Feb 18 06:00:19 2025 GMT
Subject: CN=7b03f226c31b0649beef886ef2616a0f25054494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c8:9e:7e:14:d4:d9:ac:ee:ad:1c:62:6c:c6:
72:14:a9:1a:ce:a8:e9:81:78:5b:59:23:57:c9:d2:
41:24:5d:11:d0:f5:d2:cc:36:f6:2b:8a:18:ca:76:
14:31:2f:60:ae:d2:2c:02:68:2f:1d:48:68:93:2c:
59:ed:72:de:75:01:ec:c1:77:7b:1f:3d:65:9a:5c:
21:23:18:73:ae:f0:bb:f4:62:b1:d8:5a:cf:9d:c7:
b1:79:d6:98:8e:12:e1:22:9d:4c:bc:d5:f3:e8:ae:
33:5d:62:fe:2a:0b:d9:5d:51:02:00:1f:f6:ec:e9:
9e:28:99:bf:92:bc:31:25:15:f9:7f:1f:09:93:b7:
15:5f:72:bd:5c:8c:98:66:4a:5c:c2:9e:ee:33:27:
37:78:17:26:30:9a:5f:87:e1:c1:cc:7d:97:42:a3:
1d:05:d3:85:02:6f:22:44:1c:aa:42:04:10:a1:bd:
cc:07:6c:22:3a:55:af:08:4e:aa:e7:5b:4d:73:27:
00:32:50:98:7e:15:54:56:fd:44:98:dd:17:ba:a0:
62:be:d7:66:b3:92:d3:68:ec:6f:5c:5b:55:8a:e4:
e4:10:b6:91:b7:73:86:72:63:3f:1e:ab:52:29:40:
b3:3d:8c:06:19:5b:a5:79:7b:bb:ac:df:7f:e9:d5:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:03:F2:26:C3:1B:06:49:BE:EF:88:6E:F2:61:6A:0F:25:05:44:94
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:f8:23:00:5a:a7:c2:45:54:1d:dd:83:19:1d:6b:a7:9c:d1:
11:c8:0f:04:54:2d:fd:78:57:1f:3b:d7:1d:87:f0:bc:31:4f:
d4:21:8e:d9:33:5f:ff:14:4f:d8:ac:43:d4:f1:f1:bf:7e:ad:
f0:f2:a1:12:0a:22:83:02:69:d7:bb:d4:62:7e:71:2b:f4:b8:
19:54:53:fe:b4:65:c2:60:52:6a:a7:55:4c:88:c9:eb:37:fd:
2a:85:0a:cd:89:d3:24:7e:2c:ca:46:9b:38:ad:cb:15:cc:6d:
58:ad:23:46:34:de:03:15:74:c0:2e:75:50:7d:68:05:ce:79:
23:cb:b7:05:7b:26:ff:57:7c:6c:95:bb:2e:eb:f7:4d:54:49:
f8:0b:96:d2:16:ca:40:fe:c0:0e:48:53:a9:ad:d5:af:32:90:
9c:03:6a:65:47:7c:1f:df:f9:a9:c5:94:db:fc:c6:d5:63:01:
1b:85:d8:33:08:af:3d:a0:02:90:06:2f:66:30:27:74:d0:06:
07:10:2f:82:ed:27:40:da:5a:ac:26:7d:1c:ca:61:03:45:2c:
9a:64:2b:22:d8:c5:81:88:7c:1a:81:2d:04:7a:1b:e8:6a:8c:
b3:ea:06:5d:e0:b5:64:9e:79:9a:83:de:87:cb:76:5d:f3:07:
c7:aa:dc:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:29 2025 by rpki-client