Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: iUutbz3cEj/3Hy5RLH2vq+Q/uS6kji5cePlqcWu8h7s=
Subject key identifier: 85:AC:6A:E3:1A:CA:F0:C3:75:8B:A1:1E:AE:B6:AE:93:DF:14:ED:EB
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 0194C4632F255C3C7FFA29B2B82D6F9DD399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 0EBB
Signing time: Sun 02 Feb 2025 02:00:21 +0000
Manifest this update: Sun 02 Feb 2025 02:00:21 +0000
Manifest next update: Mon 03 Feb 2025 02:00:21 +0000
Files and hashes: 1: GWI9kIBnfoOZnDj32hv9bUtOynA.roa (hash: c2UfLQdx04a/beHhDQErapqY073fDoBPTLRr0TnaQS4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: MMmI8fu2hshuFOkg53NmKFMwlgoxGW0Jc4y5qHcqZwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:2f:25:5c:3c:7f:fa:29:b2:b8:2d:6f:9d:d3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Feb 2 02:00:21 2025 GMT
Not After : Feb 3 02:00:21 2025 GMT
Subject: CN=85ac6ae31acaf0c3758ba11eaeb6ae93df14edeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:6e:5c:84:d8:bd:35:66:8f:6c:9c:df:5d:0d:
f2:2a:77:9a:91:7b:bf:97:f0:12:ba:69:2f:72:43:
e0:31:38:5e:95:62:c2:5b:f2:75:7b:5a:ee:a7:29:
00:01:fd:8c:a9:38:fa:16:f2:29:dd:d0:b1:3b:83:
0b:bd:1d:96:fa:dd:3f:ad:c1:07:65:f3:2a:b5:32:
46:3f:ed:13:b9:62:27:d9:88:62:44:0e:fe:a9:5c:
40:31:7c:f0:e4:90:a2:ed:76:79:5c:87:17:ef:14:
b2:f6:bd:bb:a6:8a:bd:d0:50:d1:3f:d1:87:e0:77:
4e:e7:b4:41:d4:ab:ef:4e:29:45:0e:bb:f2:05:10:
62:46:95:6b:f0:fb:ff:08:4d:68:02:ad:08:0f:51:
e6:c2:35:f3:30:12:41:a8:5f:5c:54:7a:07:f8:60:
18:1d:e2:97:b9:18:e7:e6:39:b7:60:09:6b:77:ea:
a0:b4:de:82:25:80:65:bb:28:b8:d3:fa:d3:e3:7b:
44:b4:9e:a4:1d:97:3f:68:a0:7b:ea:72:46:54:d7:
48:7e:9a:10:f1:bb:ff:6e:9d:a8:e6:79:dc:d8:bc:
08:32:ef:34:96:e9:38:fa:9c:ad:e3:f1:e7:ef:aa:
d9:00:3f:44:01:f8:3e:38:5a:f7:53:2b:22:49:0f:
97:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:AC:6A:E3:1A:CA:F0:C3:75:8B:A1:1E:AE:B6:AE:93:DF:14:ED:EB
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:a6:96:d1:0b:18:a8:fc:a9:79:48:35:78:f1:b3:05:ac:f9:
10:bd:56:36:95:78:b1:8c:ad:c6:7a:c2:08:03:db:9f:49:1f:
dc:e5:c7:c1:80:c3:f5:ae:8d:7f:44:33:d7:6c:2a:c0:f9:07:
0f:b5:ec:16:bf:11:f2:d2:86:13:ae:f9:b5:be:43:46:07:8e:
f7:d0:c1:d6:84:46:51:4e:f3:0a:b6:34:3b:60:00:13:1b:74:
74:34:e8:ea:c0:72:aa:69:50:26:f2:3b:ea:5f:7b:99:2f:1a:
ce:3d:c6:7d:a3:03:19:89:0a:74:0e:34:84:80:c0:2d:37:0f:
df:f7:bf:38:10:d9:6e:03:87:2b:92:b3:8a:d4:09:2d:be:5a:
2b:90:d5:02:09:70:48:8d:ff:4e:c3:72:0f:50:34:6d:81:3c:
4b:ed:8a:f9:30:57:46:68:5b:02:c0:a2:b8:2f:02:5a:6b:f2:
5d:3b:18:9a:07:0a:75:6c:26:7a:ce:bf:ef:b1:cb:d4:2a:3a:
ae:60:7e:9b:71:54:8d:f0:c7:57:97:0f:d3:04:c8:10:89:5d:
18:ea:97:41:ea:4c:bb:85:0b:b9:c2:32:6c:de:3d:b1:4a:59:
24:71:fd:63:37:b6:eb:4e:12:5f:1a:31:77:f6:54:55:68:39:
1d:79:e7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:40 2025 by rpki-client