Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
File: 1ftSajPzZqqJRhiOXTJr3ORuLEA.mft (raw, json)
Hash identifier: Qn+EjPic4LVgRKfFTu3Cs3zJtS3l7cKWeSIHC+HkEkA=
Subject key identifier: 42:BE:57:6A:52:9D:9C:7D:51:AD:70:25:A9:60:57:1B:22:9A:D0:63
Authority key identifier: D5:FB:52:6A:33:F3:66:AA:89:46:18:8E:5D:32:6B:DC:E4:6E:2C:40
Certificate issuer: /CN=d5fb526a33f366aa8946188e5d326bdce46e2c40
Certificate serial: 01951134B6FDD85E761FF49B67D058DB62C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
Manifest number: 06C0
Signing time: Mon 17 Feb 2025 00:00:22 +0000
Manifest this update: Mon 17 Feb 2025 00:00:22 +0000
Manifest next update: Tue 18 Feb 2025 00:00:22 +0000
Files and hashes: 1: 1ftSajPzZqqJRhiOXTJr3ORuLEA.crl (hash: Jb8M+3Pv6D5yQXo65VOsp08pwWEz6AsKk98vIBq5KFo=)
2: qfUgWmjDBIJJxDCL7jiouOIMq6E.roa (hash: 8LoPzts8EEAcumqZ7LuONp4lduak/H5FziwN8+pOFJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:b6:fd:d8:5e:76:1f:f4:9b:67:d0:58:db:62:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5fb526a33f366aa8946188e5d326bdce46e2c40
Validity
Not Before: Feb 17 00:00:22 2025 GMT
Not After : Feb 18 00:00:22 2025 GMT
Subject: CN=42be576a529d9c7d51ad7025a960571b229ad063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:27:4a:90:32:b2:b8:73:93:57:16:00:2a:
00:df:08:d7:53:fc:34:cd:89:1f:a4:86:1f:d6:6e:
34:7f:32:c4:a7:ad:06:22:a6:87:82:0c:f5:a8:38:
8d:39:06:bc:37:42:9b:5c:1e:be:10:37:5a:76:16:
63:f6:7a:2c:09:a4:30:be:01:43:d3:ad:67:65:50:
0e:26:ba:ae:99:2b:da:ed:5c:75:b4:41:fd:33:71:
e1:77:55:31:52:b0:25:ae:30:f4:d4:6c:b3:5e:da:
d9:de:5c:54:b4:30:a3:12:df:bd:f0:41:c5:fb:33:
df:f6:b6:44:a8:dd:ae:95:3e:27:03:f0:e5:ea:ab:
6a:ab:6a:87:28:3a:1e:6f:67:ec:c8:ca:af:7f:44:
a4:2e:18:d1:fe:9c:0b:c8:16:b0:f3:8c:75:e2:f9:
c0:bc:b0:96:80:53:eb:ae:e4:28:97:e7:61:bb:fb:
e9:b9:3d:c6:bf:1f:2e:e4:37:aa:95:59:42:ee:53:
38:66:b6:4d:7e:49:33:d1:5f:0e:f6:15:d1:67:d8:
c1:7e:23:cb:4e:93:41:8d:c0:9c:85:88:d0:57:4d:
4b:fb:df:3d:dc:7c:b1:51:c6:7d:95:0c:f5:51:ca:
58:e4:c3:cb:1e:1d:f1:e5:7a:c9:3d:2f:05:e6:43:
f6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BE:57:6A:52:9D:9C:7D:51:AD:70:25:A9:60:57:1B:22:9A:D0:63
X509v3 Authority Key Identifier:
keyid:D5:FB:52:6A:33:F3:66:AA:89:46:18:8E:5D:32:6B:DC:E4:6E:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:9a:9a:d2:90:68:66:a5:9e:df:31:3d:9e:4a:7a:6d:f0:75:
1b:1c:21:93:6e:d6:5e:ef:84:d2:4f:a0:a3:e4:58:f1:2c:4b:
53:56:88:82:b1:4d:4e:ad:a5:d7:d8:20:9a:4b:bc:e4:29:2c:
22:d6:20:ad:27:58:29:ae:f4:00:32:e2:8b:06:19:24:39:10:
28:42:d7:82:39:9d:ce:4c:5a:83:89:bd:fa:71:a5:01:78:23:
1d:f5:72:7d:5a:6e:f9:c2:86:1a:bf:bb:c2:74:cf:67:79:59:
e8:58:7b:77:12:e9:91:95:d3:88:bb:2f:8c:1b:73:4b:fe:0c:
bf:da:ce:dd:3e:84:f1:c5:50:2b:e3:a2:40:28:62:15:4e:d8:
2f:57:09:f8:3f:85:e7:27:d9:9f:e3:cc:4f:05:ee:27:9f:f5:
de:02:f6:f5:6d:f0:44:fc:50:71:40:1f:23:83:90:c6:24:67:
c0:59:e1:64:68:61:75:e4:ae:66:06:ab:3e:00:32:9a:e6:3c:
cb:13:55:a2:ce:75:47:05:d8:28:68:ae:4d:a3:84:d1:11:2d:
09:4e:03:79:92:66:32:cb:38:f2:31:2f:bd:52:4e:a2:9d:9c:
e3:c3:1e:11:06:76:cd:4d:86:c5:35:34:cf:90:f1:c8:5f:bd:
09:a4:37:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:04 2025 by rpki-client