Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: 55NTEVdzqZ8NGtaZcOmsEJKu+SdaRRPc4k1MJBwBhzA=
Subject key identifier: 09:57:B7:B7:32:D0:BC:C2:6B:C7:5F:2C:E7:80:DF:1D:E6:E0:57:6A
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019510FE2B37FD27D21C1FEDBE61CDDF790E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 119A
Signing time: Sun 16 Feb 2025 23:00:47 +0000
Manifest this update: Sun 16 Feb 2025 23:00:47 +0000
Manifest next update: Mon 17 Feb 2025 23:00:47 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: eYOS386aZEK5+U80hAWcnOtdUqQ7wwVVSR0Z3hVOlJk=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:2b:37:fd:27:d2:1c:1f:ed:be:61:cd:df:79:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Feb 16 23:00:47 2025 GMT
Not After : Feb 17 23:00:47 2025 GMT
Subject: CN=0957b7b732d0bcc26bc75f2ce780df1de6e0576a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2c:dd:f3:10:62:b1:e2:95:5e:2c:56:18:d8:
90:52:24:fd:70:cf:e6:fa:d6:cd:b1:4f:10:ba:2a:
a0:89:7d:96:b9:b3:d6:72:29:f4:0f:fd:b6:b8:c8:
40:8a:45:50:ad:b2:27:dc:d8:41:a7:ce:3a:2e:eb:
a2:de:eb:81:29:23:86:f3:9c:bb:67:1f:f1:2d:56:
57:58:27:d4:dd:70:b4:24:43:26:e5:b5:05:1e:da:
a0:40:1f:cf:eb:fe:84:5c:d5:d3:48:22:d9:f2:38:
90:ce:a7:a1:3c:64:6e:2e:55:c4:44:bc:af:74:50:
3a:64:83:00:9d:aa:73:e3:b9:a6:7c:c5:18:04:8a:
7a:cb:27:0d:6a:69:6c:ab:d0:52:c0:be:12:ba:bc:
6c:c3:72:67:42:e2:eb:04:c6:c4:7c:1d:91:45:f9:
67:4c:e3:64:70:85:c1:bf:e3:a7:02:37:56:1f:83:
56:8a:fe:3b:1a:9f:56:4b:eb:1c:c3:91:9c:ca:ff:
32:43:53:58:a1:af:60:c4:9b:6b:87:e5:61:9a:72:
89:02:3e:61:fc:11:2e:68:47:80:33:d6:df:e5:ed:
f0:ae:9b:8f:41:fe:90:27:c3:52:bb:65:c7:3c:0c:
59:57:e7:f3:05:81:a1:e0:d8:24:a8:60:c2:5f:fd:
0b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:57:B7:B7:32:D0:BC:C2:6B:C7:5F:2C:E7:80:DF:1D:E6:E0:57:6A
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:7b:3b:e4:e1:3d:a2:05:47:0c:dd:71:09:44:fe:c7:a8:c4:
d3:46:a6:f1:97:e4:65:84:17:a9:cc:1b:4a:03:a1:88:8e:e4:
58:9e:2a:4c:17:45:7e:c9:57:b8:4a:82:8d:c6:52:48:1f:5b:
fb:e2:ea:c8:f8:c2:dc:0a:77:83:8f:cd:9d:14:d0:40:b2:fe:
9f:e3:29:9b:0f:54:1f:48:9a:8c:29:6f:33:b2:2f:7f:01:ef:
8e:33:2e:75:ee:39:95:2c:31:61:19:14:81:78:eb:fc:78:c9:
5a:21:8f:3c:df:23:fd:f7:73:de:18:dc:69:2e:85:b5:e1:90:
1e:cf:38:3b:b5:7d:4e:3a:a0:25:9e:61:c4:f5:58:79:03:0d:
e9:3d:03:6a:46:70:6b:9a:06:59:a8:d0:ed:e1:41:43:22:73:
9a:a7:46:71:33:4d:f7:16:a7:9c:01:88:e0:c9:09:e9:ef:4a:
24:9f:e3:a0:40:38:ae:b9:0c:8d:c9:ee:de:07:8a:1c:35:fd:
b9:af:9d:69:ab:76:6e:cb:ff:96:08:a2:cb:9c:8a:99:fb:ef:
d2:7a:4d:6d:7d:8b:ef:c3:c8:aa:d5:b8:1c:2e:bf:7f:ee:9b:
ba:06:aa:7a:57:ba:03:67:34:35:12:82:bd:5a:ae:cb:6f:de:
67:3c:6c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:52 2025 by rpki-client