Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: 51UFdVCtf7PJajms+J5mXpWvHwqMhwx/jxYSxfU1Vfg=
Subject key identifier: F0:86:53:3D:E4:D2:49:DC:72:A5:2B:AD:F1:62:B0:D9:03:E7:46:2C
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 019510FE15561AC1BF98BE86001B168A7306
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 0CC3
Signing time: Sun 16 Feb 2025 23:00:41 +0000
Manifest this update: Sun 16 Feb 2025 23:00:41 +0000
Manifest next update: Mon 17 Feb 2025 23:00:41 +0000
Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: 4zSWf4DTBmf2SQahu9eVPuG5JkQprrCNUw00UqBesnA=)
2: nCO98tc8B201HK59o3LGsGaIbRQ.roa (hash: 5XD9s6utrTJgO6HcLNBLSP37yElvartuHWVrwWT7jxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:15:56:1a:c1:bf:98:be:86:00:1b:16:8a:73:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: Feb 16 23:00:41 2025 GMT
Not After : Feb 17 23:00:41 2025 GMT
Subject: CN=f086533de4d249dc72a52badf162b0d903e7462c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:7b:3c:54:2e:68:37:77:b0:01:52:17:52:
d7:9c:ac:40:9f:64:cb:ea:88:97:2c:3b:38:61:e1:
79:7f:fb:48:54:4b:a0:4c:41:51:f8:d6:e2:c4:11:
ef:ab:e7:62:81:8a:9a:43:e4:a7:e3:b8:73:e5:6d:
f3:8e:bc:73:35:48:89:c1:02:f5:4a:52:3d:6a:cc:
f7:72:65:d6:17:77:0e:3b:de:ff:89:c4:ea:48:5b:
cb:4d:c6:46:3e:49:55:47:d5:97:30:9b:a8:c6:e9:
f3:89:a2:0b:c2:88:98:b2:2c:6f:1a:95:2d:31:1e:
56:bc:56:82:05:5e:ba:1d:34:a3:13:30:19:77:a0:
03:c2:85:33:82:ab:1e:69:17:38:24:cf:ed:5a:b0:
de:94:13:08:5c:95:a4:c1:0a:e9:2d:96:d4:19:88:
1d:91:03:45:2d:f7:f6:77:8a:ad:f3:17:aa:67:9c:
ca:e6:8a:18:71:1d:0d:f0:66:92:14:8a:06:fe:1a:
0d:a4:1f:44:58:f3:c9:8f:2c:4c:a1:52:e5:86:5c:
b0:d9:e7:e8:21:5b:83:88:2d:65:3d:d9:2d:2c:f6:
94:dd:e8:7b:22:1f:14:ee:8f:16:0f:e5:e3:8d:41:
dd:de:ea:02:59:52:b0:bb:8d:c7:7a:bf:19:3f:55:
30:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:86:53:3D:E4:D2:49:DC:72:A5:2B:AD:F1:62:B0:D9:03:E7:46:2C
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:60:a6:af:d2:1f:88:97:37:15:ff:5e:25:ba:55:ac:97:da:
e4:24:20:67:4a:86:11:d4:86:c6:89:94:2c:db:16:e4:84:a6:
b7:35:a8:c3:d6:4b:4b:85:04:a9:1b:e8:15:be:fd:87:84:cc:
74:20:33:0f:af:10:26:81:06:4c:fc:f9:42:f1:47:30:4f:82:
03:5e:82:b3:ac:63:11:7d:81:b0:21:99:66:e3:84:23:3e:25:
9d:5f:d3:b9:a8:8b:9d:da:36:1a:dc:52:44:f9:28:cf:27:b1:
bc:cb:21:b1:8c:37:9f:b2:08:dc:c4:32:72:be:56:70:06:d5:
32:8e:e3:c2:cd:a3:77:bd:c6:1e:7c:95:5f:c9:cb:24:f8:57:
55:26:bc:5a:8f:a5:9e:5d:74:b5:ed:dd:85:5d:b0:d7:f8:58:
f4:c3:02:e0:ad:12:c5:58:c7:a4:27:69:ac:d1:79:ff:f5:0f:
42:21:d0:c5:05:e3:40:9c:82:c9:7f:f1:dc:cc:2c:c4:ba:d7:
8e:84:da:aa:75:42:b8:20:f5:e9:fc:3e:27:c6:ac:1a:e2:8d:
3a:aa:82:a4:a5:39:3c:bb:17:81:bb:37:21:3a:ff:4a:5e:d8:
50:56:b6:84:bc:88:c3:1e:59:47:90:70:c6:c5:0b:c2:18:94:
2c:e7:59:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:29 2025 by rpki-client