Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: VmBk53fWHoHYM7PqfMMNcBsazvK/Gs8B2ilEhW4/8+M=
Subject key identifier: DD:2C:6D:93:D4:73:62:38:B9:C5:2E:7C:56:24:4D:6E:7D:53:4B:AF
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 0194C42C74ED59F6C7738A826D24CB9C8783
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 28
Signing time: Sun 02 Feb 2025 01:00:35 +0000
Manifest this update: Sun 02 Feb 2025 01:00:35 +0000
Manifest next update: Mon 03 Feb 2025 01:00:35 +0000
Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: DbHKMkHuD/3laR+HzQKCHQnp3TwITwIEiJDYQH9EFdE=)
2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:74:ed:59:f6:c7:73:8a:82:6d:24:cb:9c:87:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Feb 2 01:00:35 2025 GMT
Not After : Feb 3 01:00:35 2025 GMT
Subject: CN=dd2c6d93d4736238b9c52e7c56244d6e7d534baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:15:eb:1c:f8:c6:0d:77:21:08:26:7e:e4:c6:
15:33:30:51:d7:dd:9e:dd:63:b5:8d:90:63:d0:42:
c6:b0:30:25:d7:1e:32:f3:58:1f:ce:d9:61:89:f6:
10:95:41:c5:e4:c4:30:c4:1c:19:ba:86:20:de:c2:
3c:65:87:b8:2b:d7:4b:6b:7f:49:91:0f:5b:b1:3c:
ca:b9:ad:5c:c9:19:7a:de:6a:56:04:55:be:4c:70:
35:5a:e7:33:16:0e:5e:c7:9b:ab:04:ff:44:16:27:
70:b9:cd:53:8f:cc:4d:d5:77:50:d5:d0:09:72:2f:
49:cf:ac:e3:38:72:75:5b:a3:a0:49:47:a4:e8:2c:
ba:d8:12:67:e6:dd:af:47:68:61:dc:8b:f5:79:c8:
85:62:0e:83:79:89:dd:97:76:a9:80:63:cb:a9:7c:
ce:bb:40:a3:5d:a4:5c:e0:99:bf:38:5f:ba:38:50:
fb:af:2a:75:eb:0b:31:2a:ac:44:8e:95:4a:7c:f1:
03:d4:dc:b4:83:57:a8:43:af:bb:11:6e:c7:2d:21:
fa:f3:b6:62:80:43:a1:92:b2:36:61:43:5c:c7:39:
b5:d8:22:e5:77:46:f7:45:c4:44:16:a3:98:b7:19:
36:6e:5d:1b:0d:8c:ef:85:da:06:48:39:9a:57:80:
bd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2C:6D:93:D4:73:62:38:B9:C5:2E:7C:56:24:4D:6E:7D:53:4B:AF
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:f2:9d:3d:39:07:78:2e:bd:8c:2b:ec:c1:68:5b:20:ad:22:
96:75:81:d1:bb:87:eb:a9:b8:40:8d:07:f1:f4:34:16:af:e0:
a8:22:d2:53:87:56:a8:f3:e7:b4:a0:4d:45:fe:2e:af:46:b3:
a6:e9:58:11:4f:91:cb:d2:07:67:66:5d:2a:9c:7a:fc:1e:4d:
ce:3a:81:c4:b2:2b:6d:10:4a:fc:37:3e:10:0c:ac:ef:bb:a2:
a2:d0:90:a3:b0:35:f0:ab:82:81:df:fd:24:25:91:ce:80:1c:
75:65:60:34:f4:dd:7a:ee:31:82:fa:4e:e8:67:d7:53:68:ff:
8e:c4:d6:61:9a:99:b2:d6:bc:f1:cb:5d:dd:63:03:a0:2c:b3:
7f:34:47:f3:78:bc:af:02:b2:9e:ff:82:f2:5d:2f:b3:6a:3a:
72:26:ea:eb:5b:05:ba:14:8e:1c:70:9e:ca:27:7a:a7:9e:41:
ac:e6:d2:5d:fd:c1:4d:66:b6:6a:ec:63:5a:7b:be:6f:69:07:
59:4b:bd:7f:c3:d3:ef:6d:8e:56:35:17:37:63:5d:cd:e6:c8:
6e:48:67:11:fc:3a:eb:98:9c:12:46:97:d2:3e:c1:2a:d4:b5:
fc:82:bf:44:1c:ae:a4:b7:5a:84:b4:cb:16:3a:6e:e0:0e:bb:
5e:bc:96:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:46:25 2025 by rpki-client