Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
File: mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft (raw, json)
Hash identifier: WjmkDM1IZaOPriK/jOOZ2/MdxLQjcEGui18GpSRT3O0=
Subject key identifier: F3:82:25:08:BD:8E:37:13:91:5E:FD:AE:1A:FC:A0:F2:84:8C:5A:38
Authority key identifier: 98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
Certificate issuer: /CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Certificate serial: 019510C690535A6B72727837939EF1767E57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
Manifest number: 0FEA
Signing time: Sun 16 Feb 2025 22:00:03 +0000
Manifest this update: Sun 16 Feb 2025 22:00:03 +0000
Manifest next update: Mon 17 Feb 2025 22:00:03 +0000
Files and hashes: 1: KkXU6YkVywPte3FQKPTwmXq43Jw.roa (hash: +grv15uxretevWYIDb50yFoisYnL85l43pH++WpX3xI=)
2: mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl (hash: qeuv9AQbx2y7CUGnt996kXnQNbPsCcVRMxTPqYSouUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:90:53:5a:6b:72:72:78:37:93:9e:f1:76:7e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Validity
Not Before: Feb 16 22:00:03 2025 GMT
Not After : Feb 17 22:00:03 2025 GMT
Subject: CN=f3822508bd8e3713915efdae1afca0f2848c5a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ff:00:72:c7:28:34:77:89:04:3e:2e:47:e1:
58:66:01:bc:ce:ad:10:d1:7d:e1:34:c9:d2:7b:91:
51:8f:97:df:dd:35:a5:5b:60:a3:bd:55:54:ab:6b:
09:b3:c8:24:64:ee:00:a2:15:32:5d:90:d1:4e:c3:
43:62:dd:bd:02:5d:dd:c8:19:93:73:dc:2f:89:32:
ef:b8:3c:01:b7:cc:41:cc:8b:52:71:be:16:d8:1f:
e9:b3:b9:26:b9:25:99:07:e3:1e:81:1b:85:77:4f:
d7:c6:bd:4d:1e:c7:b2:33:b7:0d:10:13:89:66:00:
31:77:ba:00:07:8b:15:52:78:ba:f9:f3:21:83:00:
79:11:84:ae:d5:a2:b9:0d:4d:c2:56:e2:50:3d:c7:
c5:9a:12:d6:fd:f6:65:39:08:b7:ed:7a:8d:07:d8:
34:0e:67:28:bc:b2:16:3a:54:48:e8:65:ee:4e:e2:
69:a5:bf:59:37:c3:7f:74:cc:09:69:94:18:fd:3a:
22:8a:01:57:27:21:3e:24:d8:43:14:03:30:8e:ae:
5b:86:64:73:66:8f:49:42:b1:2a:b8:fd:ec:a1:99:
65:e0:f9:89:76:ef:9b:fd:8a:e5:3a:49:5c:8a:62:
e9:ba:0f:a6:a7:91:d6:99:78:17:e4:b1:1e:fa:d5:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:82:25:08:BD:8E:37:13:91:5E:FD:AE:1A:FC:A0:F2:84:8C:5A:38
X509v3 Authority Key Identifier:
keyid:98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:c4:0e:d4:8f:2b:6d:3f:41:5f:6f:3b:80:7f:61:00:28:a0:
56:35:f4:9a:4e:6f:84:d4:52:fb:17:09:76:eb:b0:6c:96:c8:
d8:a0:e0:ae:f8:07:67:f9:91:06:b1:4a:8f:87:12:c6:2d:76:
92:47:e8:d6:2c:f3:20:04:ee:eb:06:e2:3f:83:30:7a:a2:24:
e9:88:1f:f7:00:e9:a8:fa:cb:ce:06:e7:8e:f6:f8:13:5a:5a:
53:7e:5d:3a:ef:a4:5e:00:bc:4e:44:e0:4e:a7:70:17:c0:aa:
5b:6e:a2:b4:9d:83:2f:1e:84:9d:a9:96:df:5c:09:79:9c:05:
6e:85:f5:66:ff:54:65:be:ed:0b:8e:79:33:21:ce:af:9e:06:
9b:ec:e9:14:13:7d:cb:9e:bb:b5:d1:69:6e:60:9c:12:04:8f:
bb:fd:48:f6:e4:c1:58:eb:b7:f0:a3:2a:1e:cb:c8:d5:61:28:
7f:09:07:81:d0:97:84:de:c9:fb:6f:88:53:2f:07:04:1b:e7:
03:69:f5:e1:c8:0e:12:5a:4b:21:2e:fd:19:d5:8c:a9:22:bf:
b0:fe:9f:11:93:1d:4e:85:bf:2b:31:d8:47:ee:3c:ea:54:70:
fd:c0:f6:a0:30:34:11:32:b3:b3:82:d3:06:f9:4d:d7:8e:1d:
cc:18:44:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:47 2025 by rpki-client