Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: 7zGb9dIfmL5TnIP8Y/LfcwQgwX/mlMDvLR12ZNoIA0g=
Subject key identifier: C5:5A:FB:EC:16:8C:6A:26:39:2F:30:45:9A:B5:B5:87:E7:46:64:4A
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019510C75DAB0D07423FAF0A3F69B64664C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 145A
Signing time: Sun 16 Feb 2025 22:00:55 +0000
Manifest this update: Sun 16 Feb 2025 22:00:55 +0000
Manifest next update: Mon 17 Feb 2025 22:00:55 +0000
Files and hashes: 1: 92biv5HuF4-MCYX3-JYKsYM_9oQ.roa (hash: lEdkt5OxgfIQLcK/b1IaxhpYCzESUh8WNTGGBlxICaA=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: NLAQG0PE2t56E7b/dacYmPp+GMHJpfmOGFM4BJXDtO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:5d:ab:0d:07:42:3f:af:0a:3f:69:b6:46:64:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Feb 16 22:00:55 2025 GMT
Not After : Feb 17 22:00:55 2025 GMT
Subject: CN=c55afbec168c6a26392f30459ab5b587e746644a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:49:81:8a:6a:ee:95:f3:1b:a7:90:3c:c6:6b:
1c:c4:39:c4:54:5a:b3:7e:25:9a:2a:26:d0:ec:b4:
51:27:3b:5b:5d:ea:11:5f:f3:2f:34:d0:e1:cf:79:
bc:04:68:bd:1e:04:57:5e:10:19:8f:29:e5:cb:05:
98:d9:ea:38:98:5f:0f:7f:4b:4f:7f:74:53:4d:31:
9c:e4:0f:58:2a:af:8b:ff:35:76:36:43:39:e1:7e:
20:86:dc:f6:7f:7c:03:ae:06:70:30:d3:60:68:d2:
c1:0c:f0:96:e7:7f:82:3f:2d:1f:9c:e4:9b:6c:08:
cc:b4:ac:3e:c6:a2:c7:78:26:b0:1c:df:a6:03:fd:
9a:6a:3f:95:e2:4f:2c:16:3b:80:37:49:65:b1:b8:
ea:62:30:8e:78:f1:30:51:21:43:36:11:04:65:d4:
3e:34:ab:c2:c1:38:7e:8e:36:02:f8:7c:82:06:e0:
b8:39:5d:68:8e:44:e2:d3:c2:e9:5c:09:f4:80:86:
d1:70:3c:22:19:73:6b:2b:94:ea:48:26:44:2d:cd:
36:9a:7e:59:5f:3d:ce:34:f1:8c:e2:32:1e:23:14:
79:56:e8:4b:93:0d:7b:12:18:f8:bb:18:4a:76:69:
b6:c4:e6:72:af:37:d4:0e:64:de:31:ca:66:ab:b9:
35:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5A:FB:EC:16:8C:6A:26:39:2F:30:45:9A:B5:B5:87:E7:46:64:4A
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3c:bb:69:ac:eb:ca:77:82:f1:3e:e0:db:c0:ce:83:f9:43:
10:bc:ee:c6:30:74:0e:82:d2:90:66:ae:07:a7:90:a2:ae:43:
bb:bb:1c:a9:60:b8:2a:31:e6:e5:71:28:9e:6e:3d:ea:89:c8:
61:0d:f0:66:26:39:a7:f0:a1:28:b7:0d:99:4a:a6:d5:22:98:
de:21:9f:b0:f4:ea:30:61:12:fa:63:06:3d:55:ec:93:bd:71:
b3:52:ae:9e:f7:0d:6a:4e:a4:c1:4b:98:34:f9:50:f4:f9:c5:
f4:2b:f6:eb:36:8c:b6:39:0e:cf:67:bc:cf:92:2d:27:0a:34:
79:d9:37:15:8b:f1:e4:2b:71:b3:6c:3b:a8:61:d7:b1:f7:ed:
30:07:a0:6e:39:3e:a8:51:10:29:2d:91:cd:5f:20:a3:ba:85:
88:cd:55:be:8a:b9:82:a0:a8:ef:0e:1b:f6:f9:85:37:e9:69:
81:72:83:62:c2:ac:f4:54:fc:80:b7:78:84:38:57:39:ed:ec:
1f:78:c4:09:02:cf:8f:ad:75:18:16:3b:c7:ae:0b:e4:ca:af:
fd:60:80:5a:25:5e:fd:42:d8:8e:88:43:ad:ee:93:ba:d6:fe:
53:83:de:fa:f7:76:b6:85:32:eb:a8:e9:49:8c:2a:d8:6f:c5:
9a:33:9a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:29 2025 by rpki-client