Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
File: 70QOE80mESzLWVF2D8-y1JFtcSc.mft (raw, json)
Hash identifier: doqln+B766Q184zrTLJnY2vhSYSuJ0B6DtLkJ6EdVPw=
Subject key identifier: 72:28:CA:D7:0D:91:3E:4E:04:5C:74:C2:71:2C:53:0F:18:49:D1:27
Authority key identifier: EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
Certificate issuer: /CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Certificate serial: 0195121057DB2FC1BF204D06F6BDA95E81E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 04:00:15 +0000
Manifest this update: Mon 17 Feb 2025 04:00:15 +0000
Manifest next update: Tue 18 Feb 2025 04:00:15 +0000
Files and hashes: 1: 70QOE80mESzLWVF2D8-y1JFtcSc.crl (hash: UJF0Eisvey068ps8WvL3REq/XpGKw6IoZAb9RXAI4/w=)
2: W0KEQ42eAsjOaTiDlKrXfXSH1aw.roa (hash: MjWN2D0Y+IB6RDhAWue+MqeEjuWUWzQKaH29Oe4TfRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:57:db:2f:c1:bf:20:4d:06:f6:bd:a9:5e:81:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef440e13cd26112ccb5951760fcfb2d4916d7127
Validity
Not Before: Feb 17 04:00:15 2025 GMT
Not After : Feb 18 04:00:15 2025 GMT
Subject: CN=7228cad70d913e4e045c74c2712c530f1849d127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2d:55:73:26:49:71:09:15:29:c2:b9:2f:4a:
ae:08:dd:44:77:9c:01:46:08:c5:8b:97:09:49:e8:
09:bd:77:1c:70:87:15:72:4f:96:d9:3c:8b:87:a8:
2c:5e:40:d3:00:c9:90:b8:85:43:ef:72:3e:78:ac:
45:4e:6d:d0:c0:ad:7d:23:29:97:94:16:7a:c1:2b:
d7:f7:54:9a:5b:5b:35:60:82:85:44:a8:43:9d:1b:
c3:f3:13:45:38:2c:63:9e:ad:20:b1:e5:8d:a2:26:
9c:1f:f9:1e:f4:77:89:e5:1a:2f:1b:a3:d6:52:08:
98:2d:e7:3e:47:9c:29:d5:41:ce:2f:6f:e2:c7:2b:
b8:2d:13:c6:42:98:9b:1a:38:b5:c9:ef:93:96:64:
5e:d0:84:01:5f:54:d2:d8:22:43:17:18:6a:10:68:
66:18:cc:2a:e1:ad:95:33:ed:a9:36:f5:05:4f:86:
fa:9c:03:02:b0:4c:01:34:3c:c1:be:91:e4:7d:24:
58:f8:03:d7:23:ce:56:9d:2b:1e:05:78:25:c6:c9:
1d:09:b2:83:ab:18:59:56:0d:1b:8b:8c:6d:23:e6:
d7:ca:38:15:8b:0e:c9:e2:5e:5a:c7:ce:16:60:d0:
32:f9:a7:30:a7:4f:ee:e6:85:0e:d1:79:c0:fe:45:
e6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:28:CA:D7:0D:91:3E:4E:04:5C:74:C2:71:2C:53:0F:18:49:D1:27
X509v3 Authority Key Identifier:
keyid:EF:44:0E:13:CD:26:11:2C:CB:59:51:76:0F:CF:B2:D4:91:6D:71:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70QOE80mESzLWVF2D8-y1JFtcSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/59831b-de8a-40ac-a949-7a836800e9f7/1/70QOE80mESzLWVF2D8-y1JFtcSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:95:85:46:b9:f7:11:cb:df:f0:22:22:df:43:f8:fb:97:4f:
85:04:e0:bc:71:08:49:2a:fc:16:f5:d0:f1:10:7d:78:9d:53:
1a:6b:90:42:78:81:0f:1a:34:df:04:4b:96:1b:7a:c6:f9:3d:
b3:22:3b:7f:b1:4f:b0:04:df:c4:2d:b1:c7:5f:86:ca:8d:91:
5c:8c:e7:5c:bb:79:a7:e9:3f:89:d8:6d:85:ad:17:5a:e7:f9:
c5:77:58:ee:26:69:7a:a9:fc:d9:0c:b5:8d:2b:ca:60:b7:0d:
66:94:5a:72:97:50:c1:30:0d:a7:28:63:83:95:97:59:27:f2:
55:a4:c7:53:f4:c6:10:b0:ad:37:67:70:09:bd:32:05:39:9c:
7a:aa:0e:2c:31:22:c1:5a:c0:4d:60:0f:e6:fc:74:5a:da:31:
b1:c8:8e:2b:ba:c9:4f:ad:96:1c:1c:6d:04:ad:d4:22:75:75:
a6:a8:6d:30:37:24:5f:4c:18:ea:bb:38:14:da:b6:3f:0f:5a:
12:3c:c3:8a:7a:9f:80:7a:31:b7:19:dd:cd:32:38:88:5e:e3:
47:8f:c5:be:ac:c8:85:f4:8a:b4:af:97:7b:06:3f:6b:a6:4b:
04:09:3d:4f:be:91:c2:8a:ff:5f:97:63:90:bf:e7:a1:ea:7a:
a7:4e:72:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:46 2025 by rpki-client