Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
File: 3YqroPRrqhRP2wk46RwU-UxhZQw.mft (raw, json)
Hash identifier: EVH9M3/CqydYpcivQeSZGrYcWKTsO6Ph3nYIppCoPeI=
Subject key identifier: 60:A0:FF:48:62:9A:61:34:E9:2F:31:33:FF:FF:7F:6B:2A:0D:78:91
Authority key identifier: DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
Certificate issuer: /CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Certificate serial: 01951210438BE6DAA3D89E4E03B08DDF55C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
Manifest number: 0BB7
Signing time: Mon 17 Feb 2025 04:00:10 +0000
Manifest this update: Mon 17 Feb 2025 04:00:10 +0000
Manifest next update: Tue 18 Feb 2025 04:00:10 +0000
Files and hashes: 1: 3YqroPRrqhRP2wk46RwU-UxhZQw.crl (hash: CVe1yrbkVmBk4I5nxYIPfu/5SWRomWyjb92n7w9fUKU=)
2: jyRFM9_T_syhJNdrBbZtEXQjBxY.roa (hash: 3sN/6EgdGuf6mYlFqORSiJaf85S1hh85EE3f4pncjgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:43:8b:e6:da:a3:d8:9e:4e:03:b0:8d:df:55:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Validity
Not Before: Feb 17 04:00:10 2025 GMT
Not After : Feb 18 04:00:10 2025 GMT
Subject: CN=60a0ff48629a6134e92f3133ffff7f6b2a0d7891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5d:12:e0:c9:fb:ae:5c:d8:f9:29:76:ca:80:
31:7b:35:b4:ff:e7:c8:f5:f1:cd:5a:fa:09:b4:8c:
34:b6:7a:df:54:69:95:81:13:cc:86:90:13:72:f7:
5e:f3:b2:af:95:e1:ce:0d:be:81:7d:dc:02:ce:03:
88:e6:57:1b:3a:27:04:2b:cd:8f:ae:3c:17:43:c7:
97:55:eb:cd:10:e6:5a:71:90:8d:a4:22:c5:cc:81:
e7:7c:26:83:50:51:cc:e8:6f:eb:8f:16:f5:bc:50:
ad:24:7a:cc:92:af:61:ef:71:59:58:04:dd:3b:d1:
1b:9e:cd:c6:b0:85:30:65:4c:4a:e5:c1:53:8a:9e:
28:a1:55:95:72:e4:60:61:15:b3:ae:8f:10:58:a6:
37:0d:ec:3c:b7:60:1f:01:de:49:9e:86:d9:21:0b:
4a:64:90:f5:c1:61:b9:be:d5:25:56:d2:39:2c:04:
2f:b4:dd:1b:94:10:c7:6d:ab:7e:a5:06:b8:b7:cd:
65:98:d6:7e:72:e2:6a:02:42:b3:8b:a6:b4:18:08:
bb:32:cb:1d:46:f4:8f:b9:4a:32:35:d4:66:35:6a:
94:22:e7:9f:73:af:08:75:0f:d8:8a:59:ac:34:a6:
2f:85:fb:19:03:fc:15:14:81:e3:90:ab:35:7c:8f:
72:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A0:FF:48:62:9A:61:34:E9:2F:31:33:FF:FF:7F:6B:2A:0D:78:91
X509v3 Authority Key Identifier:
keyid:DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:41:7a:30:07:55:39:3b:5b:81:6c:f7:98:a9:cf:3f:c4:77:
34:16:86:c6:cc:05:37:9a:4e:66:b6:b1:2f:ac:69:72:0b:11:
e7:96:db:e2:a1:37:19:ed:9f:84:e3:ff:31:ad:3d:94:e1:9d:
0a:86:cc:90:87:b1:6d:dc:28:5e:cb:2b:89:53:ee:f0:3c:e9:
68:90:78:70:22:d3:f2:cd:d5:5e:f9:7b:56:6e:35:65:da:bd:
3e:a7:00:d2:db:90:b9:04:26:b0:12:33:24:dd:ee:ea:4d:a5:
7f:40:ba:65:fe:29:a2:75:cd:0b:a1:98:42:22:f4:46:a4:2a:
a9:37:ba:bf:b0:b8:d5:6c:e3:29:21:4f:30:fd:d9:56:2e:72:
28:05:87:f5:db:a9:39:01:e5:e9:8c:9e:ce:ce:00:07:c6:19:
c0:ee:26:9d:98:a6:36:c6:ab:46:91:c5:67:5b:09:11:07:9e:
a9:ba:ff:95:fb:66:05:46:21:55:d0:60:76:3e:e1:c7:2c:aa:
e4:f3:67:ba:b1:1e:9b:5f:d5:ba:72:bd:17:81:df:3f:15:2d:
a0:f9:d9:51:63:b6:3a:9a:9e:41:b5:e2:48:00:0f:83:d1:24:
bb:53:1d:e6:c5:89:81:eb:80:a3:d3:50:86:8f:38:63:1a:5c:
e5:a9:bd:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:14 2025 by rpki-client