Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json)
Hash identifier: bYMt+dGM2WjbMtj+WixPMR+Q2nOGWEGvVmYctouwjXk=
Subject key identifier: 8B:87:0F:01:D4:01:B9:81:55:AF:20:66:39:C9:88:FE:2F:AF:EE:5B
Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Certificate serial: 01951134ADB63857DC4C4C138170CBC24DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
Manifest number: 145C
Signing time: Mon 17 Feb 2025 00:00:19 +0000
Manifest this update: Mon 17 Feb 2025 00:00:19 +0000
Manifest next update: Tue 18 Feb 2025 00:00:19 +0000
Files and hashes: 1: G8CSmYfNYEUpgaZJMXjNKwLCldA.roa (hash: Yuu5hUuvifstfVCRuLWU+r4+/uWTbuYyABHOqGGSlMg=)
2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: Xj7vHsM69OgEbPJmn9uSnhwBzR4CBjOPPVMrrQeQRik=)
3: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=)
4: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=)
5: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=)
6: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=)
7: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:ad:b6:38:57:dc:4c:4c:13:81:70:cb:c2:4d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Validity
Not Before: Feb 17 00:00:19 2025 GMT
Not After : Feb 18 00:00:19 2025 GMT
Subject: CN=8b870f01d401b98155af206639c988fe2fafee5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:52:96:fa:68:47:18:f1:aa:7f:5f:04:07:c6:
fb:c3:d2:99:dc:ff:da:c5:13:1b:ba:57:c9:29:0a:
b0:18:af:d0:50:c9:17:d9:be:b9:f2:fd:aa:34:b0:
c5:ed:3d:fb:99:84:ab:fa:29:e1:ab:59:34:fb:7d:
79:0c:af:a6:08:6d:f1:42:85:61:ad:28:9f:95:df:
21:60:ab:ac:6f:00:56:d2:3f:8b:8c:e0:48:11:ae:
7f:19:f3:33:06:f5:f0:c6:40:52:c4:c1:97:22:26:
44:5f:cd:72:ac:2c:55:08:2c:d9:f9:e4:0e:53:08:
69:87:94:24:b5:10:ca:49:fa:b7:cc:77:8c:f6:a2:
e3:bf:42:77:52:ba:31:1e:a3:96:4e:30:7c:2f:c7:
d0:a9:cc:3a:7a:10:6f:33:42:a6:fa:3e:68:c2:f8:
a5:47:ea:19:7f:b4:35:ba:a3:88:ca:14:56:73:7f:
b1:c9:9b:35:d3:9b:f7:33:cf:a9:23:8b:49:1a:e8:
89:74:f7:9e:cd:63:a9:14:66:f1:17:c0:c5:89:aa:
2a:41:bf:19:bd:9c:75:ad:43:f0:ce:ae:58:7b:81:
8a:8b:d9:13:ce:ec:fa:8e:8e:ba:29:be:f2:5b:a4:
fb:67:00:da:17:4c:fe:52:b6:d3:6f:23:22:6f:3c:
6e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:87:0F:01:D4:01:B9:81:55:AF:20:66:39:C9:88:FE:2F:AF:EE:5B
X509v3 Authority Key Identifier:
keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:99:28:8e:c7:e0:b4:b3:af:a5:19:48:e7:41:c5:46:70:27:
f2:02:e6:bc:57:fa:9d:02:e8:13:67:c1:12:49:8c:b5:ec:f2:
95:c9:c3:ed:58:1d:cd:63:80:8a:97:e5:79:30:c8:6c:a7:b6:
29:71:4e:71:a8:4b:18:d2:ca:84:16:68:fb:92:56:7b:0a:dc:
9d:b4:13:17:44:39:ca:77:6b:c9:9b:63:3e:a8:d8:b2:b1:22:
ff:f7:fd:70:c1:da:b3:a1:0f:97:88:f1:4a:c5:b8:1a:0e:5b:
85:ec:32:f3:82:6e:d3:0d:e8:ee:82:b7:73:52:e4:88:09:75:
24:ef:ba:46:85:2f:54:1e:28:d6:19:07:67:a1:18:a5:95:44:
33:da:6b:dc:46:7f:5e:66:2e:c8:5d:d1:5b:16:67:6f:17:77:
e3:3d:64:0d:17:b4:5a:a8:a0:f0:01:12:75:e7:cd:6f:39:86:
aa:97:0c:90:32:66:83:a8:ce:b3:ad:1f:ec:ef:82:c7:91:2c:
8e:b9:6d:ee:2f:94:ea:80:91:60:5e:dc:35:2e:33:06:a8:19:
70:21:13:15:cb:4d:e8:2a:ca:63:d3:1c:80:e1:a4:e4:f2:d9:
45:41:4e:f5:6c:7d:7e:a7:10:88:49:0d:8a:43:da:13:00:59:
d1:3a:da:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:12 2025 by rpki-client