Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json)
Hash identifier: UXawBTr+CaKcgN2hBJ6CGB9/zTgY0NnKboHADi0+YvA=
Subject key identifier: 58:B1:98:17:29:25:52:1A:56:CF:59:8C:1A:C0:CE:9E:8D:AE:AF:30
Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88
Certificate serial: 019511D9670AA62BB0DDFA85A3FE98520F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
Manifest number: 0782
Signing time: Mon 17 Feb 2025 03:00:15 +0000
Manifest this update: Mon 17 Feb 2025 03:00:15 +0000
Manifest next update: Tue 18 Feb 2025 03:00:15 +0000
Files and hashes: 1: Ck9V105I1WzILyho--HhjxtMhOo.roa (hash: n/nSiTnqvWrHsmL1agIClZLa+JDSNKpvkkGREC8GFbY=)
2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: hWHUZeNb0gl74Bcaw+biUqOpdQyN/sCdtu+MtF6uxts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:67:0a:a6:2b:b0:dd:fa:85:a3:fe:98:52:0f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Validity
Not Before: Feb 17 03:00:15 2025 GMT
Not After : Feb 18 03:00:15 2025 GMT
Subject: CN=58b198172925521a56cf598c1ac0ce9e8daeaf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:9c:2d:cc:11:ad:ba:fe:4f:9f:4d:14:58:
c5:d9:ba:09:41:05:45:af:32:5b:da:45:23:08:ee:
55:95:0d:a6:d3:93:db:ca:f7:c2:19:9e:d2:06:41:
c7:6f:ae:2b:6b:7c:2d:28:33:8f:b1:b6:a6:93:fa:
f0:02:0c:b0:5d:80:db:8d:6d:fd:db:f5:a0:8f:7b:
d8:72:43:8e:d4:19:6e:ea:a8:e5:fb:cf:d3:1e:22:
23:43:df:23:e3:94:3c:9b:9e:a6:6b:0b:40:2f:bb:
d9:50:44:41:b2:ab:fc:c8:7b:f8:b6:da:c1:53:b2:
5a:77:0b:52:f9:9b:b9:62:e3:67:5a:8f:20:64:92:
fc:b9:b0:e4:9f:36:72:97:b4:6d:f0:ba:02:a7:36:
de:73:c1:30:1f:69:40:a0:6d:46:a5:3c:8a:92:12:
16:0f:aa:35:94:44:fb:db:90:80:2f:12:8b:9b:db:
d0:6d:24:76:13:0e:cf:eb:80:01:ef:3b:d2:7b:38:
b8:a4:ed:e3:ec:c6:7f:95:6c:21:62:99:d0:50:0a:
e6:2f:9a:b5:f0:5d:d6:f9:54:87:c0:1d:dc:98:09:
8a:33:89:00:86:72:d7:dc:18:96:ae:2a:47:6d:16:
47:53:c3:3c:14:34:36:7b:2d:96:87:43:46:0e:a5:
c3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B1:98:17:29:25:52:1A:56:CF:59:8C:1A:C0:CE:9E:8D:AE:AF:30
X509v3 Authority Key Identifier:
keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:38:45:34:bf:6f:ff:e7:c7:82:0f:63:01:f1:9a:9e:05:b7:
f0:ac:e0:32:2c:b4:bf:fc:09:54:b4:3c:a1:8c:29:1f:45:02:
01:09:36:69:1b:05:ea:ad:62:a4:48:d0:9e:e7:f6:b8:ce:cb:
ff:33:21:c9:74:b3:ed:4c:62:e6:dd:cf:f9:58:5c:94:54:09:
47:d6:8d:64:34:29:c3:16:3c:40:e0:74:fa:8d:a8:ab:fc:a5:
b8:24:58:d6:7a:a1:da:0c:19:df:71:73:3b:31:66:fa:15:87:
b0:60:49:fe:28:e8:9e:fc:df:92:88:40:8b:51:a5:e7:07:52:
34:78:89:1e:e7:d4:06:de:05:8c:96:29:47:bd:ac:d1:eb:be:
ab:16:35:ec:a0:7a:be:3d:24:02:5e:5b:1b:5c:a0:14:be:93:
a3:81:19:74:3f:f7:4e:ee:f0:12:f9:f5:be:74:7f:93:48:14:
e0:21:6e:b4:19:56:df:4a:30:fe:58:88:65:a0:2e:c4:66:80:
9f:42:6f:1d:44:00:78:ba:1c:76:82:f4:bf:26:b6:ee:26:84:
1a:d5:eb:b0:ac:a4:c0:0d:77:f0:5d:7d:d9:20:9e:b2:84:d9:
93:19:52:bc:be:81:c9:22:3b:0b:ca:c6:68:a2:bf:78:96:d3:
c4:e1:ad:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:29 2025 by rpki-client