Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: fa539MRMycU4nnHilWAwaWl95btmmh0lXCs+gH8n6uI=
Subject key identifier: 67:17:CC:03:BA:18:13:39:99:C6:56:A9:BF:0A:B6:22:09:18:60:AF
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 0195124774863BF570C9DB150491008C6DD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 0F30
Signing time: Mon 17 Feb 2025 05:00:27 +0000
Manifest this update: Mon 17 Feb 2025 05:00:27 +0000
Manifest next update: Tue 18 Feb 2025 05:00:27 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: CJB6Xubq5vP57LD0NqYgKPl+aXLecaUXecfr40bh2Gk=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:74:86:3b:f5:70:c9:db:15:04:91:00:8c:6d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Feb 17 05:00:27 2025 GMT
Not After : Feb 18 05:00:27 2025 GMT
Subject: CN=6717cc03ba18133999c656a9bf0ab622091860af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5d:fb:dc:f0:97:db:38:31:ec:f2:ee:ab:02:
e0:fc:12:e0:a4:61:6d:0c:06:88:ba:db:c9:8f:be:
a5:09:c2:03:10:9b:74:97:ec:d7:53:b9:0a:32:1e:
1a:7d:ab:d2:40:e4:09:74:ce:26:ad:f8:dd:bc:42:
a6:23:d2:40:db:48:66:68:b9:5f:1d:36:56:9c:8e:
0e:50:7e:37:e0:1f:97:59:9c:a0:b7:b3:7c:5e:a0:
9f:db:66:f5:0c:83:0a:4f:e8:84:16:00:c4:e1:20:
1d:ad:e7:01:35:e7:85:95:04:18:5f:80:2c:8e:18:
88:c3:e9:98:6a:f8:e3:9c:11:81:da:5a:8d:69:e2:
68:42:16:de:21:ee:77:92:6d:7a:21:52:de:cd:c1:
58:ea:8d:82:23:ee:52:24:dd:d4:bb:77:c2:02:8c:
30:af:e9:84:fe:ad:77:ec:f7:e9:2c:fc:e1:60:89:
17:dd:fa:61:28:a6:12:f3:45:ed:cf:d3:7a:06:95:
92:5e:7d:76:a3:42:f9:6b:34:c2:15:53:ba:be:b5:
a0:22:77:8a:6f:c3:6f:e2:0b:92:b9:b3:ae:0c:9b:
b1:1e:df:b6:c3:a1:59:81:cb:9a:ea:93:df:a1:af:
2f:35:15:0b:49:99:df:ca:4a:b4:1d:81:2c:22:02:
2b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:17:CC:03:BA:18:13:39:99:C6:56:A9:BF:0A:B6:22:09:18:60:AF
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:2c:fd:51:59:00:72:f9:48:95:56:fd:b4:fd:0e:35:83:17:
b7:81:5f:72:c7:cf:43:41:26:54:8f:3f:a4:9d:33:e9:cd:cb:
65:f8:94:35:a2:26:60:df:1d:ac:ed:2c:0f:7c:e7:73:ce:d3:
73:cc:7c:a0:ef:9c:28:0b:84:f8:8d:dd:07:24:4d:57:ea:4f:
18:ea:06:a6:dc:43:0c:7c:6a:d0:c1:a4:a9:df:a1:52:0f:aa:
8b:bf:29:60:67:86:3e:5e:b6:6a:ee:bf:d4:c6:dc:09:56:2c:
f7:8f:6c:5b:67:f5:f4:fd:57:3d:23:56:ac:81:b7:b5:5c:9c:
85:72:d3:3e:50:f5:a5:1e:5f:4b:27:63:33:75:e9:4c:0c:59:
42:0d:95:7f:8d:4b:b5:f6:60:f5:76:4a:b7:8a:94:d2:73:99:
81:bc:94:4e:0e:ee:43:51:9a:6a:c9:a8:08:b0:c1:74:5d:9c:
8f:43:5c:28:b5:8f:67:35:40:5c:26:84:90:b4:52:a4:99:4b:
e0:76:b1:91:62:c1:6e:19:d4:48:60:4c:78:2b:e3:49:44:18:
49:2d:1d:65:bc:ad:59:61:66:d0:c6:39:33:9a:12:62:56:a8:
6b:c8:d0:3e:de:60:ff:54:2a:28:3d:17:fc:0c:8b:07:c9:e9:
a8:7c:8a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:36 2025 by rpki-client