Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft
File: urwezBf2YNW9ieFhZ7nVAxv2oMs.mft (raw, json)
Hash identifier: 9FS6fXKxoQ2qAz83p2HjsQR71kPMtZTsqE3PL90e82k=
Subject key identifier: FF:E6:D8:ED:A2:2A:A0:2E:87:22:EC:91:0F:07:92:B8:84:91:84:8E
Authority key identifier: BA:BC:1E:CC:17:F6:60:D5:BD:89:E1:61:67:B9:D5:03:1B:F6:A0:CB
Certificate issuer: /CN=babc1ecc17f660d5bd89e16167b9d5031bf6a0cb
Certificate serial: 0194C49A32A28243F2B75950970877E60C9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urwezBf2YNW9ieFhZ7nVAxv2oMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft
Manifest number: 0795
Signing time: Sun 02 Feb 2025 03:00:27 +0000
Manifest this update: Sun 02 Feb 2025 03:00:27 +0000
Manifest next update: Mon 03 Feb 2025 03:00:27 +0000
Files and hashes: 1: 2mA9oJ3ejOWgdJjYgfXkHnMZSOY.roa (hash: rFBnJEg4/3ovWS1Mn/GxMWwNkECurmsywX62nk463FU=)
2: urwezBf2YNW9ieFhZ7nVAxv2oMs.crl (hash: QD3ZfDvBKd8ozDbAmeEYhdAGfXV73m3puSlQxWeyatg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/urwezBf2YNW9ieFhZ7nVAxv2oMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:32:a2:82:43:f2:b7:59:50:97:08:77:e6:0c:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=babc1ecc17f660d5bd89e16167b9d5031bf6a0cb
Validity
Not Before: Feb 2 03:00:27 2025 GMT
Not After : Feb 3 03:00:27 2025 GMT
Subject: CN=ffe6d8eda22aa02e8722ec910f0792b88491848e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ab:3c:3d:e8:c9:db:7b:fd:6c:3e:cd:49:6d:
93:08:19:09:ca:9c:84:cd:3d:fa:8b:0b:09:ff:79:
04:95:19:5c:ee:44:c5:54:fd:80:8c:30:be:24:73:
55:7c:2e:55:1b:76:53:a2:0d:bc:72:ad:c5:70:86:
7a:aa:f9:02:1a:56:3d:41:6f:0a:27:bd:ab:ec:5e:
e4:c3:6d:e8:e0:85:e6:28:49:62:af:cd:31:5e:ed:
d2:be:d0:33:5e:d9:e2:82:d9:68:e8:19:66:d7:e3:
3e:2b:77:38:50:00:db:31:13:d5:02:b2:f4:02:46:
39:d5:90:07:a0:d1:5a:59:c1:90:8a:af:d2:23:26:
d7:57:a5:f1:7f:92:18:e4:b7:20:af:50:36:9d:e3:
57:59:68:5f:d7:05:62:50:76:80:ac:f0:70:9d:55:
b8:f5:81:a0:cf:84:0a:06:56:a9:ca:fa:3f:4d:33:
3d:73:ed:85:84:24:b2:12:19:b0:27:91:c7:5b:1e:
b6:db:fb:d6:56:f9:3f:f1:bd:08:e8:7c:20:21:87:
1a:d4:2c:25:7f:ab:c3:17:a6:15:91:b6:a1:6b:d5:
32:27:28:16:d4:c8:f5:41:55:1b:64:bf:42:80:bd:
47:67:35:d7:00:1a:8b:41:09:e1:c3:0b:c3:dd:91:
6c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E6:D8:ED:A2:2A:A0:2E:87:22:EC:91:0F:07:92:B8:84:91:84:8E
X509v3 Authority Key Identifier:
keyid:BA:BC:1E:CC:17:F6:60:D5:BD:89:E1:61:67:B9:D5:03:1B:F6:A0:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urwezBf2YNW9ieFhZ7nVAxv2oMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:ef:3a:75:98:e2:04:0d:01:88:80:4f:94:b6:eb:45:aa:fe:
f4:5e:4b:24:6e:d9:53:09:42:34:fe:d9:72:74:6e:c5:88:c4:
0b:eb:b3:28:a4:39:f8:2b:1f:18:d6:5f:31:80:a2:38:e9:5e:
2e:25:e3:27:8c:73:ad:82:24:b4:58:9c:3e:a1:a8:b0:c0:9a:
0e:7b:37:ca:8e:a3:3c:0b:66:8d:77:d6:e6:41:c9:c3:c4:9b:
ea:8e:6f:fe:44:25:b4:d7:ca:03:02:90:62:a1:ab:73:db:b8:
b6:65:1e:99:a9:e7:42:40:be:d7:38:d3:27:55:36:bd:35:06:
00:45:6b:e2:a0:c0:5f:fe:7f:4d:56:e8:54:ba:aa:2a:ee:73:
0f:a1:71:d2:29:6c:de:28:1e:6d:f1:ab:27:d2:eb:26:79:15:
bb:46:51:ea:6a:29:a0:46:91:bb:eb:06:22:f9:f3:79:ae:dd:
74:5a:30:95:2b:2e:eb:06:d8:c6:81:6e:5b:77:f1:f7:24:cc:
2f:8b:52:ea:11:13:8f:bd:82:0c:c1:13:44:0f:80:a1:64:35:
ed:8f:bb:d4:09:d0:a0:30:cb:a5:49:71:60:98:d1:30:77:f4:
d9:65:3f:fd:db:66:2c:a0:06:77:64:f2:36:75:5c:b2:79:77:
15:82:91:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:24 2025 by rpki-client