Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json)
Hash identifier: +5GvUaRiUK37e4zxIoTVhB3uxL0VfvXzgzI54HgH+oM=
Subject key identifier: 4F:EF:F1:33:DD:59:6D:99:44:0F:91:8A:31:27:00:4F:79:AD:F0:23
Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Certificate serial: 0194C49A26A7E76AD24F9CC3792A4CA461AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
Manifest number: 9D
Signing time: Sun 02 Feb 2025 03:00:24 +0000
Manifest this update: Sun 02 Feb 2025 03:00:24 +0000
Manifest next update: Mon 03 Feb 2025 03:00:24 +0000
Files and hashes: 1: 32WtKH3EfM7-S6v7tTmyQcU-a9s.roa (hash: Fn/80HetfWjEwrwQy2saw9cqkA9VjrY/6O3eDGyjCbw=)
2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: 1Uup3IP+VzTFeNdZOjblecDKCNMLvMUQTqj2b2++ARs=)
3: ef1K6dC6_lGn3rxGTHxMT8fcB0w.roa (hash: KYKxli5ZRinkaBImEiWWBBcr8lpZPoWAqbzOeddaU7I=)
4: pLMH0ozDSiYZXzqiHdSEzphkheE.roa (hash: CFbM9K2hMJ4HkUaVbEdJq2H47xHqfonXY2RvABtKsw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:26:a7:e7:6a:d2:4f:9c:c3:79:2a:4c:a4:61:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111
Validity
Not Before: Feb 2 03:00:24 2025 GMT
Not After : Feb 3 03:00:24 2025 GMT
Subject: CN=4feff133dd596d99440f918a3127004f79adf023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5b:c9:8d:6d:50:42:db:cb:38:fb:65:23:1e:
b0:01:d5:b6:b9:55:c9:66:fe:d1:c3:44:17:a2:7d:
32:be:ab:1e:46:1c:ca:94:0d:2a:3b:c7:89:2b:a7:
d3:90:72:ee:fb:39:44:fe:de:f2:65:0c:76:ee:78:
7c:d2:8a:fb:4a:42:f2:c5:06:4f:f1:e0:32:3e:b2:
28:34:0b:ad:56:59:77:bd:b7:10:54:cb:53:0b:9a:
82:fd:45:8b:5b:0b:26:68:33:82:f7:f2:aa:af:06:
af:f1:01:c7:f4:67:f2:03:ed:26:13:cd:9c:53:06:
f1:c7:bf:a3:42:68:5a:a9:1b:f3:5c:45:13:52:95:
e7:16:9f:ed:19:c2:7f:e4:ce:ca:49:48:6a:07:75:
c7:72:99:81:a7:d6:b0:16:b9:06:ec:b8:07:8d:f9:
07:8b:e9:35:67:2d:b0:86:06:ac:a8:3d:e1:cf:34:
12:a5:ac:8a:58:c3:7d:a8:fe:be:f1:e4:1c:52:62:
55:c4:de:79:a5:31:20:e9:94:8a:53:e6:61:8a:ea:
63:e9:ca:7e:c9:08:bc:f1:6f:2a:6a:e9:62:73:c1:
65:6a:7e:33:ce:d8:44:b7:21:8c:f0:2e:74:07:90:
5a:06:1a:be:43:d7:28:d2:e3:99:81:93:2e:3d:71:
96:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EF:F1:33:DD:59:6D:99:44:0F:91:8A:31:27:00:4F:79:AD:F0:23
X509v3 Authority Key Identifier:
keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:11:47:5d:a1:6f:c3:e1:d1:c8:97:f0:e4:83:3b:88:47:f3:
8b:4d:64:81:8f:75:83:f0:65:93:a2:e8:30:b4:7d:84:11:c2:
03:15:98:5a:f1:b8:78:c7:7f:82:1f:a5:26:a9:b6:40:22:ea:
bf:fe:ce:8d:15:dd:5f:95:bc:97:bd:10:c7:ec:91:08:b2:f3:
d7:6b:66:70:e9:04:5a:85:3a:2f:c6:b1:02:40:67:3e:da:e3:
88:2f:80:cf:ec:99:9e:1f:5c:49:e3:8e:7f:19:77:f7:4a:0b:
02:34:2d:8b:c7:33:e9:7b:d3:c8:e5:28:8d:c4:42:ad:af:be:
04:ff:73:d3:a9:d9:ee:b6:74:44:d6:4d:0c:c8:15:69:6d:38:
78:58:b4:7b:b5:6e:41:02:a0:88:14:52:12:fe:90:4c:a7:ff:
bf:ca:02:24:bd:99:4e:15:59:25:0e:18:c1:21:a4:6a:81:a3:
e8:ec:1f:a7:2a:f9:bd:fe:42:99:b1:04:f9:e4:23:6f:d6:00:
ff:ad:8b:34:c6:95:cd:b7:36:1c:9e:03:39:15:e2:ec:88:88:
fb:ba:83:a6:0c:7d:e7:0f:61:83:d6:5e:d8:ad:9d:23:e7:c2:
47:d0:7c:a5:a4:27:f7:88:fc:94:d3:2e:49:bc:c8:7e:c5:69:
4e:f5:25:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:48:03 2025 by rpki-client