Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4869b6-9c67-492c-b15e-3744b48af1a8/1/sFJPZVujycpdmLBXwkwPCLcZ1Kc.mft
File: sFJPZVujycpdmLBXwkwPCLcZ1Kc.mft (raw, json)
Hash identifier: bWkekhNnXAQ+YcGQ6t3w1l6PPPht9BpfqPY1oAKx4LM=
Subject key identifier: 5A:9A:0F:B0:2C:FA:A3:79:5E:F0:C9:CC:D4:92:28:A8:14:4A:69:24
Authority key identifier: B0:52:4F:65:5B:A3:C9:CA:5D:98:B0:57:C2:4C:0F:08:B7:19:D4:A7
Certificate issuer: /CN=b0524f655ba3c9ca5d98b057c24c0f08b719d4a7
Certificate serial: 0194C49A23FC6681DECCFB0A06962F01DB20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFJPZVujycpdmLBXwkwPCLcZ1Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4869b6-9c67-492c-b15e-3744b48af1a8/1/sFJPZVujycpdmLBXwkwPCLcZ1Kc.mft
Manifest number: 0170
Signing time: Sun 02 Feb 2025 03:00:23 +0000
Manifest this update: Sun 02 Feb 2025 03:00:23 +0000
Manifest next update: Mon 03 Feb 2025 03:00:23 +0000
Files and hashes: 1: sFJPZVujycpdmLBXwkwPCLcZ1Kc.crl (hash: YPoKZ/5awrMLx5vuOIakyamYZXLezybVemrKd4gKM2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4869b6-9c67-492c-b15e-3744b48af1a8/1/sFJPZVujycpdmLBXwkwPCLcZ1Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4869b6-9c67-492c-b15e-3744b48af1a8/1/sFJPZVujycpdmLBXwkwPCLcZ1Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFJPZVujycpdmLBXwkwPCLcZ1Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:23:fc:66:81:de:cc:fb:0a:06:96:2f:01:db:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0524f655ba3c9ca5d98b057c24c0f08b719d4a7
Validity
Not Before: Feb 2 03:00:23 2025 GMT
Not After : Feb 3 03:00:23 2025 GMT
Subject: CN=5a9a0fb02cfaa3795ef0c9ccd49228a8144a6924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f6:0b:99:c9:27:ea:1f:42:5e:32:1b:53:80:
07:fd:a7:c8:4a:4c:d4:1d:71:9f:f7:e4:d1:d6:53:
00:97:61:12:d3:67:f8:04:ad:35:cd:40:e8:cf:a6:
ac:59:fb:8f:41:cc:28:cc:75:cb:78:1e:a2:b4:48:
8c:14:03:c4:18:ae:1e:ba:eb:6d:e8:4c:40:55:0c:
22:30:a8:91:ce:1b:1a:50:f5:fc:6c:ea:b8:31:2e:
b0:a5:1c:cb:2f:9a:63:f5:a6:85:cd:65:0b:74:06:
6f:7a:64:cb:5e:bf:61:4f:08:49:52:1c:36:79:e2:
ef:52:56:94:9a:cf:f6:97:22:fa:9f:c7:64:f8:10:
cb:ed:35:09:6f:d0:43:9a:1f:fe:f4:dc:57:2d:4f:
b5:ea:bb:bd:df:87:75:b9:13:74:ed:e0:f0:26:54:
26:3b:72:15:3e:0c:2d:d3:13:0a:a6:03:e0:58:80:
a1:2c:a2:58:5f:a0:cf:18:1a:38:d5:76:7d:bf:fe:
65:89:1c:3d:4e:f9:69:11:19:b0:83:aa:d9:41:4f:
98:22:07:91:6e:ab:15:cd:cf:26:c8:4b:a1:c2:f0:
5c:b7:9d:f7:cc:13:14:eb:25:ec:83:2d:61:dc:e5:
47:01:c6:87:96:91:bf:fb:63:e5:4a:50:59:98:37:
66:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9A:0F:B0:2C:FA:A3:79:5E:F0:C9:CC:D4:92:28:A8:14:4A:69:24
X509v3 Authority Key Identifier:
keyid:B0:52:4F:65:5B:A3:C9:CA:5D:98:B0:57:C2:4C:0F:08:B7:19:D4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFJPZVujycpdmLBXwkwPCLcZ1Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4869b6-9c67-492c-b15e-3744b48af1a8/1/sFJPZVujycpdmLBXwkwPCLcZ1Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4869b6-9c67-492c-b15e-3744b48af1a8/1/sFJPZVujycpdmLBXwkwPCLcZ1Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:3c:9f:42:7a:11:1c:10:13:64:31:a2:dc:12:0a:ee:8d:df:
dc:07:8e:7a:19:41:aa:4a:4e:24:71:e9:3a:68:e3:7c:fa:ce:
87:29:8f:aa:1a:3e:6d:5b:fe:02:65:9d:fa:4a:9b:04:12:03:
34:33:8f:99:14:91:eb:34:10:5b:b7:53:44:b1:fa:5e:91:52:
c0:e0:92:1d:ca:75:27:a8:8e:4b:55:be:ff:ec:54:cf:34:13:
e1:36:ec:3e:61:e0:53:07:82:25:ce:70:25:80:10:76:34:28:
9d:7e:14:ee:5d:e5:98:8d:bd:90:7d:50:31:73:e0:06:52:f0:
ea:de:f7:a3:12:94:d1:e2:a9:f1:be:55:7a:21:d6:49:0c:7a:
8d:38:27:43:88:af:61:53:f7:fb:2b:ee:3a:fc:75:0f:ab:53:
f7:f2:b5:d7:87:0a:84:26:9f:8d:7c:21:33:80:0d:80:75:95:
4a:15:ed:16:69:e3:95:0d:5f:4d:48:9a:0d:ff:2b:e5:64:47:
a2:56:1d:b9:a8:6c:9c:74:c5:31:11:1b:3d:12:a2:02:aa:4b:
84:ed:67:bc:a8:58:ce:7f:0f:03:1d:54:8c:32:fe:1b:10:3a:
7d:c9:40:ab:a4:ed:af:15:cf:cb:c8:d2:90:bc:17:d2:27:ec:
7d:34:fc:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:10 2025 by rpki-client