Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: tLuAwXAJ2bt0CSxmv4bzTPBNkthaEsnL/HzpK0d6cWw=
Subject key identifier: 19:49:99:74:CD:83:84:C5:A4:92:51:D2:D2:6E:82:6F:6B:24:6A:9A
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 019510C7857BD930829B1CC7BD1CCCAAC2DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 08CE
Signing time: Sun 16 Feb 2025 22:01:06 +0000
Manifest this update: Sun 16 Feb 2025 22:01:06 +0000
Manifest next update: Mon 17 Feb 2025 22:01:06 +0000
Files and hashes: 1: gQl4YCr829YOGRu3QQEM_8QNnRo.roa (hash: 468s9eqjwKzKxWWYEkQfsVXrMKlrp7YiLVsT2AanKV4=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: fzMCwsOIuFgOCu/aD1I61bIEU/pQnwyvZKsNpWrZ3iM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:85:7b:d9:30:82:9b:1c:c7:bd:1c:cc:aa:c2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Feb 16 22:01:06 2025 GMT
Not After : Feb 17 22:01:06 2025 GMT
Subject: CN=19499974cd8384c5a49251d2d26e826f6b246a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:21:b9:84:92:f1:a7:0f:46:ae:eb:d7:fc:ad:
35:25:6c:6f:4c:10:0d:0c:42:67:c0:1c:26:a6:87:
ca:e0:8e:e4:1a:dc:de:23:21:d4:99:57:17:14:81:
e2:89:71:c3:56:d6:e2:d3:51:11:47:a6:32:3e:a8:
d7:61:7f:4b:60:e2:c2:7b:bc:3a:d9:81:0f:f5:5a:
3e:44:31:7f:cb:12:f2:66:af:22:29:97:45:1e:8f:
52:18:21:1f:18:56:a5:cd:34:6a:69:3f:23:ac:20:
b7:e3:c2:e2:9a:38:89:d7:80:4f:42:7e:de:6b:01:
e7:41:85:b0:4a:cc:6a:f1:71:72:05:c0:15:91:0b:
47:c1:2e:d9:44:47:49:36:0a:23:6c:d0:0d:25:3f:
77:e2:94:9c:40:3a:8b:6a:5f:ca:ba:2b:53:c3:86:
23:28:b2:44:79:ad:12:17:48:d8:25:44:67:03:6b:
60:03:fc:cc:f9:3f:44:02:b9:45:6c:a8:b6:0c:b6:
9c:ea:d1:d1:3b:b0:68:e2:0e:05:c6:c1:e7:e2:5d:
b1:5f:1a:59:d1:1d:8e:24:6a:21:f7:a6:ef:4b:24:
2b:de:83:a5:b2:04:0e:e9:7d:58:f5:fd:e9:e3:b0:
3f:0c:70:4b:75:da:ee:af:85:54:85:cc:9c:53:be:
6c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:49:99:74:CD:83:84:C5:A4:92:51:D2:D2:6E:82:6F:6B:24:6A:9A
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:9c:8e:5c:40:bb:c9:83:74:3c:b0:7b:66:04:03:21:da:48:
cd:f3:e2:9c:ff:1c:3a:b5:d0:99:e3:b6:65:83:60:7d:af:94:
e7:80:b5:65:03:d6:a7:e9:97:dd:8c:d6:5c:4e:38:74:97:3c:
e3:49:74:52:cc:17:d8:63:c1:9a:00:d4:41:f8:30:46:01:9d:
f9:f9:8f:59:cc:dd:84:78:f6:dd:ef:5c:99:81:a1:59:be:bb:
c2:d3:e3:19:cf:e4:34:69:e1:a9:9c:31:61:de:a2:9f:bb:e4:
aa:62:3a:6f:fc:56:34:72:de:d9:39:02:cd:fa:69:8d:7c:b7:
18:51:18:0e:68:61:c3:f7:e2:7a:1c:54:71:28:5a:42:b0:35:
15:a4:46:1e:53:69:8d:c2:b4:12:b5:2b:17:03:75:82:0a:e4:
e7:1f:f4:c1:0b:69:b8:f1:de:34:47:98:c6:20:a3:76:de:09:
ca:d4:72:28:18:58:9e:21:71:72:f3:c7:20:d1:7d:50:96:48:
ca:dd:03:ad:e4:64:6a:0c:42:00:97:41:02:07:8c:ef:15:a2:
47:64:bb:18:37:a0:54:8e:32:97:a3:96:52:70:6f:c6:88:53:
2d:be:a2:13:24:42:07:62:40:1a:60:a2:aa:6f:de:a9:c0:a0:
f6:38:36:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:33 2025 by rpki-client