Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: sXXNbwZQnIFBmDxzivNo+PxCBFCYx3JZucmEZapL0Fk=
Subject key identifier: 2D:B4:FA:C9:8A:C5:B8:E0:75:C0:4D:EA:FC:A7:58:AB:3F:BE:74:18
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 01951210DAE7B7413FD5BBEDCF97772955BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0845
Signing time: Mon 17 Feb 2025 04:00:49 +0000
Manifest this update: Mon 17 Feb 2025 04:00:49 +0000
Manifest next update: Tue 18 Feb 2025 04:00:49 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: 9tSUeolTQ55ePuNpBqzJTkHxKdfkbobEUbv8dPjDvlA=)
2: bDkAt0CCYnB2xqRfpALpEK1gmgo.roa (hash: HzyjrIASJdGjjHtk6b54LHkaX+3Gt8eRcO+z/aYxOaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:da:e7:b7:41:3f:d5:bb:ed:cf:97:77:29:55:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Feb 17 04:00:49 2025 GMT
Not After : Feb 18 04:00:49 2025 GMT
Subject: CN=2db4fac98ac5b8e075c04deafca758ab3fbe7418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7f:33:55:cb:0e:ec:fa:ac:c7:4b:56:55:b8:
b8:03:09:ae:41:ab:d1:2c:54:f8:de:4e:c3:69:63:
12:16:95:9f:e6:24:9f:36:8b:47:ae:57:14:be:50:
cc:e3:d3:04:b0:43:53:32:b0:ef:23:d2:7a:38:e5:
4b:8c:3c:08:3f:88:ec:af:05:69:a1:02:d1:d9:8c:
29:a7:5b:32:bf:11:c8:a6:44:1b:65:f8:8e:da:98:
6c:92:79:1f:3e:55:7b:6d:cf:da:c6:a7:48:e7:50:
1b:ee:7d:6f:df:34:b3:92:7f:66:4a:d4:27:b6:03:
9d:e3:01:e2:ae:64:13:dc:86:d9:83:6d:a6:cb:6e:
da:e3:eb:23:b3:42:a9:ef:6b:56:df:71:5a:cb:ab:
a6:04:c3:77:3f:4d:12:96:86:0b:95:62:eb:e1:60:
f2:b4:57:7e:38:f7:46:89:cd:a2:17:cc:3c:d3:6a:
dd:7e:e6:af:59:d0:a8:c3:2c:4d:97:ce:c7:b9:2e:
db:75:cf:42:df:8a:79:bc:c4:59:bc:10:f1:c5:7d:
46:75:23:5b:60:cb:78:30:c1:ce:ab:4b:70:ab:9d:
5b:e0:a5:c7:bf:9f:06:8e:2d:39:f9:a9:e6:0b:d3:
02:58:b2:bd:fe:6c:ab:db:a4:86:41:ea:41:fb:94:
5d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B4:FA:C9:8A:C5:B8:E0:75:C0:4D:EA:FC:A7:58:AB:3F:BE:74:18
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:74:38:aa:89:42:f0:79:8f:e6:1c:07:4b:ab:10:fb:5d:81:
c5:d7:97:27:7e:63:fc:3e:6e:b3:35:2f:31:37:3c:e6:f2:c2:
fd:c7:fb:3a:56:90:97:5d:23:a8:c1:92:70:38:85:68:a8:0d:
15:69:39:70:4d:9b:cf:44:eb:89:21:a7:6c:53:a7:9c:c9:24:
fe:ee:4e:74:17:08:dc:2f:10:a3:e1:e0:d1:86:69:96:0c:4b:
ea:9a:67:4b:1e:b4:66:0c:6e:45:85:fd:77:f0:8f:db:c5:f8:
1b:e9:d3:ab:5b:04:02:4b:f8:c5:76:65:48:30:50:1f:01:f9:
d2:10:ff:cf:b6:c4:ac:e1:91:d5:4a:80:9a:2e:b8:3d:7b:cf:
ee:58:ad:d4:cd:be:d8:1c:fd:c3:64:e7:97:e3:24:2d:08:65:
ea:f5:45:ff:7e:ed:a9:ae:2b:25:ec:d0:1e:27:d4:c3:5f:d7:
17:7f:98:d2:61:fd:c7:3c:aa:f8:41:a4:bd:0b:60:32:e3:13:
08:b3:a5:86:64:21:e0:aa:0c:26:17:db:72:f9:99:54:bd:3b:
ca:d1:c3:70:e9:21:dd:c3:69:71:b8:13:e8:95:6b:e0:f6:ee:
30:f0:3f:e0:11:5b:73:f9:28:64:78:3f:5e:bd:da:42:c9:ca:
85:f1:ba:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:05 2025 by rpki-client