Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
File: CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft (raw, json)
Hash identifier: GWUTnp77wVT+Ps4yPLrM/ABOcu6jdx1+Uzd03L9Uecs=
Subject key identifier: B8:75:EB:BA:8C:C2:57:71:30:6F:32:9A:C2:26:3B:64:74:4D:77:DF
Authority key identifier: 0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
Certificate issuer: /CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Certificate serial: 0195116BCB0B1326913DBA9A7FE8DF02CB99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
Manifest number: 1410
Signing time: Mon 17 Feb 2025 01:00:31 +0000
Manifest this update: Mon 17 Feb 2025 01:00:31 +0000
Manifest next update: Tue 18 Feb 2025 01:00:31 +0000
Files and hashes: 1: CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl (hash: dbXCKl2c0xY4egTPtuzNW2rsJclxkU4d4Xr/s1LF5a4=)
2: Wy1LhCK9kxP-C2UiE5R2K8JtffM.roa (hash: DYS7fnBaD9Os9bSnRtbqX/rsXfSVI5HQGNbOlzCHNGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:cb:0b:13:26:91:3d:ba:9a:7f:e8:df:02:cb:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Validity
Not Before: Feb 17 01:00:31 2025 GMT
Not After : Feb 18 01:00:31 2025 GMT
Subject: CN=b875ebba8cc25771306f329ac2263b64744d77df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:38:d1:38:dd:44:3a:00:4b:f7:cf:22:96:21:
c1:32:96:c3:58:de:c2:bb:ba:67:16:df:fb:de:ba:
d4:87:9d:65:59:32:cc:22:40:6b:11:68:99:4a:f4:
67:c1:92:82:8f:0d:48:a2:f8:b0:8e:c2:b2:c7:17:
b9:30:e7:7c:39:3a:d7:e6:ff:ba:b0:02:40:39:43:
c0:59:eb:93:d0:8f:25:b0:ea:1c:42:6e:fd:26:8b:
33:bc:f6:1d:64:13:a4:eb:31:01:c3:d3:b6:1d:0d:
ce:c2:19:e4:00:ed:dc:7b:6d:c8:76:fa:2e:be:df:
d3:d3:24:6a:ed:6a:82:87:cf:dd:84:96:fb:e5:0b:
ff:37:9e:ba:31:01:cf:fa:93:61:27:ce:91:e4:38:
0a:a2:7e:31:86:a2:70:e1:77:71:3d:ec:a2:b6:83:
ac:b0:fb:9d:43:aa:f9:ec:53:fd:0a:1f:a9:d2:a1:
cf:5f:de:b5:55:f0:2a:7d:27:6f:78:fa:28:fe:22:
55:8c:f6:48:a2:52:f9:c7:45:53:e2:7d:79:52:1b:
65:ec:c5:dc:c2:4e:cb:63:6f:32:7a:9a:5a:b4:a6:
5d:74:d5:78:95:2e:bf:e0:83:79:6a:b4:94:a9:1c:
fb:f1:ff:a3:43:7a:68:f9:16:43:2d:35:55:c3:25:
94:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:75:EB:BA:8C:C2:57:71:30:6F:32:9A:C2:26:3B:64:74:4D:77:DF
X509v3 Authority Key Identifier:
keyid:0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:3a:35:55:c3:73:1a:c9:7e:8f:0f:3a:8b:37:18:12:e9:2d:
a1:02:6d:96:b9:21:42:de:4b:fd:09:ce:22:81:52:1a:4b:4e:
3f:56:6e:91:e6:bb:28:ea:37:39:2e:0e:9f:12:ae:74:dc:43:
a1:d5:0c:ce:72:7f:70:26:83:21:81:d1:84:39:ef:5d:7a:5b:
6f:09:79:2a:67:98:ee:52:9d:11:c3:79:1a:71:50:ff:78:e6:
40:76:1b:74:48:c5:db:ba:08:23:f0:17:53:62:ef:22:24:fe:
97:51:13:e9:2c:20:cb:91:7f:06:4c:83:4b:fd:cf:1a:ce:91:
27:36:ad:03:73:81:8a:04:51:68:53:dd:5d:c9:bf:de:68:19:
23:f7:d4:7f:e4:31:9f:73:27:91:ea:ef:0b:84:46:d0:37:a6:
1b:37:67:00:96:61:6c:65:fa:cd:46:90:47:43:f3:c4:64:99:
9d:9a:f2:4a:0f:74:10:00:62:20:8d:ea:94:ce:4a:a4:50:2e:
bc:ec:f9:7f:10:64:fa:7b:ab:3f:dc:0d:2f:b5:6d:3e:fb:04:
4b:e7:a9:d8:3a:81:ce:80:9c:10:27:03:d1:bb:e4:5a:a1:84:
30:5e:61:ae:a9:55:5d:af:2c:44:90:24:e4:76:d4:4b:3d:a4:
7f:04:af:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:23 2025 by rpki-client