Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json)
Hash identifier: JvXLuLmQt9PkSFDApPYDJ5JwPnlQc20HuBSjqGx1BH4=
Subject key identifier: 55:3A:2E:3F:84:F0:04:91:FD:16:9B:1C:DC:C3:1F:B2:87:8D:29:08
Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929
Certificate serial: 0194C3BE3BEEA1CC00E3D968F9BE52A69947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
Manifest number: 3E
Signing time: Sat 01 Feb 2025 23:00:11 +0000
Manifest this update: Sat 01 Feb 2025 23:00:11 +0000
Manifest next update: Sun 02 Feb 2025 23:00:11 +0000
Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: D1YMjgWmhnb+zgpwHgLPFDyINomtOIIN1TYiqT5WNAI=)
2: qST1YzpfG0Aj9HfkTwxj9U8CUhI.roa (hash: wruCCghr0kJqtbuyZdJFoTZhRH+nhRjwzTxdaCBX4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:3b:ee:a1:cc:00:e3:d9:68:f9:be:52:a6:99:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929
Validity
Not Before: Feb 1 23:00:11 2025 GMT
Not After : Feb 2 23:00:11 2025 GMT
Subject: CN=553a2e3f84f00491fd169b1cdcc31fb2878d2908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8a:14:e8:fb:6d:65:b0:19:7e:6d:28:22:34:
fb:c9:26:49:a4:e4:f2:d1:71:e5:64:c9:c4:56:62:
ff:cf:c7:69:f2:66:da:eb:79:15:ed:e1:09:db:91:
f2:5f:13:f8:f1:08:ca:fb:b4:be:37:bc:02:ec:68:
75:04:5e:fc:5b:b1:16:20:77:4b:cf:f2:b0:6f:04:
4b:15:74:a5:92:4e:93:60:44:66:62:69:df:19:f0:
8d:c4:77:89:e3:f2:fb:e8:0b:e4:da:8f:17:48:23:
69:8f:0a:82:bf:ab:9c:f0:f4:d7:5f:44:f9:6b:88:
bf:cc:4b:34:6f:e5:79:bf:e9:05:47:20:a6:22:d3:
2b:81:bd:14:09:5a:fa:63:91:ec:94:87:5d:8d:0e:
f7:00:76:cf:06:19:97:8f:b8:68:87:ab:db:1d:87:
16:a2:a9:c1:72:9e:28:a0:ff:23:1c:07:5e:59:44:
8c:1b:b7:d8:59:3f:3a:37:95:be:eb:86:dd:a6:61:
5f:9f:3f:c7:51:3c:0e:21:b9:b9:4e:f3:df:d1:1a:
34:00:eb:e0:80:7b:6b:e6:bc:9d:99:dc:18:b7:69:
77:70:22:85:3d:5b:ee:7a:41:ad:76:a0:b8:ad:ff:
0d:19:ce:a3:ee:09:cf:81:87:78:76:74:99:28:37:
92:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3A:2E:3F:84:F0:04:91:FD:16:9B:1C:DC:C3:1F:B2:87:8D:29:08
X509v3 Authority Key Identifier:
keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:fa:23:6c:2e:13:75:c9:dc:f9:52:88:06:36:32:7c:82:cd:
1c:d7:69:23:fd:d9:0b:f8:f9:71:67:36:02:27:60:06:eb:90:
4e:8a:16:61:51:e3:e3:7c:b4:0b:f4:7c:3c:52:18:10:b5:a1:
36:c0:d3:df:51:a3:16:8b:43:0e:61:ad:3e:68:89:07:80:83:
14:61:5d:2e:32:a8:7f:5a:a5:af:09:6b:3a:44:e9:31:42:d1:
ab:87:21:0f:e2:80:37:c9:07:53:00:79:2d:40:75:ef:ac:fd:
9d:48:cd:bb:3c:2a:fc:97:89:16:c3:30:5d:2a:f8:fe:75:9f:
4f:e4:9f:e3:96:40:85:2a:c9:c9:0e:bf:b9:4b:e0:f1:ee:84:
aa:32:25:4e:4b:06:62:c8:9f:49:b7:b5:6a:6c:f9:9a:ed:84:
04:1a:2d:06:bc:d7:f5:55:93:a5:48:a3:6d:e7:bf:0f:1e:eb:
1d:78:f4:83:5b:4b:6f:28:e9:cf:24:64:cc:7c:4c:f7:c7:48:
5d:91:a3:79:77:20:c2:c5:00:fa:72:d9:4c:6c:fc:3b:9d:68:
63:3f:bb:ae:df:26:42:ea:dd:d5:68:84:85:14:12:4c:ac:7b:
b8:12:de:e4:7f:03:d9:38:37:1b:54:d9:56:93:77:3c:1b:9a:
20:f7:ed:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:32 2025 by rpki-client