Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier: H3HNr+qmI6uLJnOGUOnJ4LhgmZEqOb/U49FZRMYbLFw=
Subject key identifier: 4F:BA:00:D9:0A:49:24:25:C8:80:42:A4:4F:D2:E8:09:90:B9:4D:9E
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial: 019511D9BA34B9F399D8AF0A76D28D7AC88A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number: 0A52
Signing time: Mon 17 Feb 2025 03:00:36 +0000
Manifest this update: Mon 17 Feb 2025 03:00:36 +0000
Manifest next update: Tue 18 Feb 2025 03:00:36 +0000
Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: y5guYcSBfPgs5mfy7QenmHScNeLINJHOmD57bNp+LWk=)
2: kzypufx1A54QL9RnefA55meWSPM.roa (hash: cK+sc1FxI2UgckK1YuVxFsSFuYcOk8chhmHAVw1PhQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:ba:34:b9:f3:99:d8:af:0a:76:d2:8d:7a:c8:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Validity
Not Before: Feb 17 03:00:36 2025 GMT
Not After : Feb 18 03:00:36 2025 GMT
Subject: CN=4fba00d90a492425c88042a44fd2e80990b94d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:81:be:be:e9:20:6d:60:72:a4:c1:b7:8e:51:
65:0c:22:07:3c:5c:72:1c:e7:de:08:82:a0:f7:16:
06:42:8c:5d:8b:ab:c2:99:47:82:0b:5c:b8:87:e4:
ab:73:5d:a5:93:be:98:96:fb:fb:11:b1:8e:6f:c1:
60:77:a0:78:53:d0:54:ad:f4:4e:86:fc:22:9d:4b:
c5:3f:ef:74:1b:ee:41:41:9e:82:bd:79:fb:f2:f1:
af:39:39:8f:b5:41:6e:bb:68:07:f9:a7:24:12:73:
23:a0:41:6e:67:a2:7a:d6:48:2a:07:ca:68:0c:24:
e7:0b:dd:a4:16:71:76:47:ff:3a:68:99:94:ad:a6:
6a:e2:41:d8:7b:78:39:63:d2:1b:1e:91:c7:14:3f:
a5:98:fd:78:0e:24:90:48:ec:75:c7:c7:5b:88:86:
19:db:b5:27:6e:5f:86:03:8b:8a:3c:42:30:4e:0b:
62:36:df:55:2e:23:2d:0c:9f:f7:48:64:00:6a:03:
75:e4:e8:58:ef:49:1a:e2:88:d9:44:16:6d:ce:73:
b9:5a:e2:34:15:6e:42:42:09:24:f0:bf:e9:fd:4a:
3b:72:81:68:64:8d:c0:bd:e1:cf:bc:37:20:02:79:
43:15:3b:87:66:ec:1f:e2:94:2f:a3:59:4a:67:fb:
9c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BA:00:D9:0A:49:24:25:C8:80:42:A4:4F:D2:E8:09:90:B9:4D:9E
X509v3 Authority Key Identifier:
keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:7b:b0:12:03:06:2d:67:68:70:3e:4a:f3:84:7e:dd:4a:bd:
61:cf:04:72:5e:46:8b:41:8e:29:a2:5f:24:47:cd:1c:c8:bd:
b6:96:19:f9:ef:30:f5:27:52:8d:25:ac:bc:97:6a:25:76:ab:
89:85:97:77:1a:18:36:cd:0a:66:81:2b:48:f8:23:96:66:4a:
4f:9c:01:c2:2a:46:24:90:11:a1:47:c5:15:ad:33:6b:54:9b:
fd:69:19:da:1e:57:42:eb:cb:ef:18:b1:86:bf:8f:7f:13:78:
5f:eb:17:87:04:74:2c:95:e9:59:af:d7:fc:53:53:46:e2:b8:
0d:0d:2c:06:53:33:6e:6a:03:9e:f2:26:37:2a:03:14:aa:ee:
dd:bb:33:04:4f:d1:4a:8c:44:23:3c:d4:8b:9d:35:5b:11:18:
91:16:bb:bd:ad:c7:52:ae:f1:f3:c9:aa:46:e7:6d:20:ee:d3:
6c:de:ab:6a:ad:e2:fd:9d:0d:ce:c2:a7:c7:88:dd:f4:10:7b:
59:fd:d1:c4:15:04:96:b6:72:27:14:1f:46:6b:d4:d4:be:bc:
5e:bc:f8:7e:99:24:ce:37:5d:e6:55:e3:69:dc:d2:2d:6f:ff:
f0:cf:ee:35:e3:f8:22:4d:b9:a5:f6:26:f3:4a:55:32:59:d3:
14:72:c2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:25 2025 by rpki-client