Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: DQ0Ikx41InEeeILdTMBtHy6LVYpQDoXI+OG3KVvHLCU=
Subject key identifier: 0F:D7:5C:3E:F8:E4:5E:FD:6D:26:0B:CB:B0:87:7E:FB:94:D7:8A:79
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019511D9738374EE0257E6650C7F21824582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0A25
Signing time: Mon 17 Feb 2025 03:00:18 +0000
Manifest this update: Mon 17 Feb 2025 03:00:18 +0000
Manifest next update: Tue 18 Feb 2025 03:00:18 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: i22Rq9BTty/ZzBQlq1Wc4sqd6SKw5dNEkuw/mr2hlr0=)
2: nyss7FejNtDGTUXRBz8EpK-bUtQ.roa (hash: 1YbJTbv2jhWedSFo8tfV4w9Efzyk/as9DY0FQwn+kas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:73:83:74:ee:02:57:e6:65:0c:7f:21:82:45:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Feb 17 03:00:18 2025 GMT
Not After : Feb 18 03:00:18 2025 GMT
Subject: CN=0fd75c3ef8e45efd6d260bcbb0877efb94d78a79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ce:26:d7:7b:3e:f2:ab:7b:1f:5f:d4:e0:79:
e0:37:95:eb:e0:e2:23:e8:cf:ee:e7:f4:c2:1e:58:
ff:b8:a7:8c:00:37:c9:0d:d6:c0:c4:79:b2:c8:70:
9a:16:c3:89:34:8a:09:b8:1d:7d:e4:5d:2c:2b:4e:
31:47:a7:f6:cd:f6:bf:c5:4c:96:9a:1d:fc:aa:d8:
2c:48:dd:70:ae:93:e6:8b:f2:17:84:eb:90:35:fb:
4c:a5:ac:e2:5e:88:2a:68:45:be:3a:db:af:2e:87:
66:45:0f:c1:22:c2:ff:82:24:87:b0:16:5a:b9:21:
24:fa:cb:91:8c:cf:f1:18:df:4a:05:c6:b8:6e:e8:
14:7c:8a:9b:74:d6:e5:59:28:e1:7a:29:b1:bc:a9:
dd:fa:f8:39:8b:86:74:40:e0:64:fd:d7:87:5a:4a:
12:a1:5b:5b:27:f6:b3:71:65:f0:6c:d2:e9:52:fc:
2b:85:4b:ba:3a:b0:7a:50:ca:5f:f5:86:92:94:c2:
70:16:a9:02:0d:fd:04:d2:87:ce:7c:65:98:46:e7:
db:50:6c:1e:b5:c6:31:7b:c9:3c:9a:3e:f7:7f:d2:
3c:d2:2d:fd:0a:34:fa:2b:91:eb:02:29:90:83:24:
86:cd:4b:ad:a4:95:df:04:a2:5a:9d:44:b8:e1:0c:
a1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D7:5C:3E:F8:E4:5E:FD:6D:26:0B:CB:B0:87:7E:FB:94:D7:8A:79
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c4:4d:b7:e9:95:2d:c0:2c:17:b9:4c:95:fe:b3:4c:1c:a1:
08:62:af:fe:01:47:ef:ea:e1:6b:bc:75:d9:e7:dd:e6:88:61:
2d:d0:5d:09:72:a8:e5:cf:71:8a:5a:22:6b:ee:20:00:e7:be:
05:3c:3e:ff:56:d0:f6:a5:a4:e9:1b:f6:a6:3e:52:a3:85:2e:
76:0f:3e:2c:a1:9a:81:43:14:41:33:e4:67:30:d4:21:85:74:
87:56:f5:ea:28:e9:56:fd:00:b9:7f:a2:39:b9:ef:41:00:85:
c2:57:6f:08:6b:17:c7:ef:a1:59:a1:a8:0a:22:0c:66:bd:5d:
5d:cf:cf:49:74:38:4e:f7:b0:55:66:88:54:2e:8c:15:5f:26:
58:e2:9e:2e:31:ad:2d:7d:e8:5c:fe:40:d0:33:ca:2d:5e:d9:
1d:5d:e8:09:21:01:8d:22:fd:f8:eb:6f:e3:ae:25:cf:42:37:
9a:f4:0e:85:b3:13:ce:16:a6:63:5a:4b:bf:da:56:23:09:e0:
a6:ff:a0:b5:4d:7f:3f:59:fb:94:92:43:70:49:fd:a1:89:dd:
0d:bf:57:ef:39:9e:4c:2e:87:ee:bd:92:3f:2b:c7:bf:02:e1:
e0:2d:14:16:21:3d:02:ee:b9:c4:2a:f8:d0:b0:c7:c2:df:b5:
41:2e:f2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:08 2025 by rpki-client