Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
File: UnB4bxfEG9AWJvctsjnyCLUYm7A.mft (raw, json)
Hash identifier: axeZ9t+7ncEudJv0M7+4XsFZM6lqMQIcgG96jAeh4uQ=
Subject key identifier: BF:9A:F9:22:B1:B5:57:F3:33:FC:06:A4:EC:AE:03:7E:95:FA:BD:0D
Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0
Certificate serial: 019511D9B4244AFBC17882C724C8EED818EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 03:00:34 +0000
Manifest this update: Mon 17 Feb 2025 03:00:34 +0000
Manifest next update: Tue 18 Feb 2025 03:00:34 +0000
Files and hashes: 1: DmHJvnXYNCZG6CwLW6LsQtmujI4.roa (hash: x67qTlyXrzA3beyYfkqEGco6s6alggLnNjlSZnKsSr0=)
2: UnB4bxfEG9AWJvctsjnyCLUYm7A.crl (hash: Chqvvt3EUUEPy5YsyBljQq9wz/4noI3iWHMMJKZjm+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:b4:24:4a:fb:c1:78:82:c7:24:c8:ee:d8:18:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0
Validity
Not Before: Feb 17 03:00:34 2025 GMT
Not After : Feb 18 03:00:34 2025 GMT
Subject: CN=bf9af922b1b557f333fc06a4ecae037e95fabd0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b0:17:33:55:cc:73:ae:30:9e:5a:55:28:c0:
e7:57:eb:95:a1:d0:1b:55:e6:6a:bb:52:05:09:79:
50:fc:c4:16:d2:4e:9a:4a:ed:43:d2:b5:6f:eb:f7:
db:42:48:fa:a5:8e:df:c6:3c:43:19:a6:c8:1c:e2:
d9:4a:bc:9d:8f:71:cf:83:73:15:d8:de:2c:79:e2:
9e:82:60:c3:97:47:1f:93:25:a6:60:f3:97:45:31:
60:d0:86:da:e3:00:be:c1:16:f3:74:c3:46:07:3b:
36:2d:fd:ee:3a:b3:79:bf:e2:b6:a3:58:60:57:c2:
7f:6f:05:fc:ec:29:c0:20:7d:0f:7d:4e:87:48:fd:
e2:1e:c7:ea:f5:5f:25:05:3e:e2:25:05:b3:16:8f:
d7:2d:1c:f6:9c:29:59:f1:d3:28:d8:c7:9a:7f:25:
35:45:d3:ad:a3:39:0d:f9:90:c3:9f:b4:b3:e6:6b:
a5:51:ba:20:33:27:c3:75:b4:4a:26:54:c0:27:9a:
2b:c2:34:52:7e:99:0f:2e:cc:65:01:6e:71:41:fe:
72:3c:66:a4:f0:b2:83:b5:bd:d3:15:cb:3c:ed:51:
3c:5d:67:7c:f0:a1:87:e0:46:60:2d:74:41:03:78:
c3:73:86:f1:1b:34:8c:29:b4:73:5c:0b:bd:a1:91:
9a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9A:F9:22:B1:B5:57:F3:33:FC:06:A4:EC:AE:03:7E:95:FA:BD:0D
X509v3 Authority Key Identifier:
keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:43:67:0a:6d:29:9e:b4:d9:a0:f0:cf:74:19:ab:99:fb:cb:
79:a2:c3:be:a5:cc:52:fa:1e:1b:df:98:4e:a6:25:f1:6a:14:
96:e3:aa:61:b5:0e:40:07:09:3b:58:43:ff:b7:af:27:fe:e7:
b7:9e:b4:62:52:d2:90:a3:a7:44:45:83:8c:a6:bc:4a:9e:a0:
e1:d5:55:dc:f9:c5:1d:87:57:9a:e4:9f:a5:bd:5a:4f:e3:30:
aa:e5:f9:81:33:e5:81:ba:5a:86:c0:59:bc:19:6c:82:24:b2:
3f:82:f5:23:0d:b5:d2:82:7b:ca:a6:fc:03:65:85:55:58:87:
d7:99:55:bc:58:f7:86:09:a8:f0:80:d7:c4:74:89:71:04:50:
7e:2a:86:81:ac:90:36:68:9a:5d:88:60:2c:55:2c:59:a2:53:
b7:b6:b3:83:24:6d:c8:f7:78:2c:91:e9:3f:d2:6b:8a:9c:44:
75:20:89:20:9f:f2:10:f1:f2:ec:30:6f:19:94:08:00:df:14:
b5:a8:91:49:7e:8d:d6:17:c9:f4:7d:f6:9f:ee:ef:93:ab:5c:
06:be:11:c3:80:f9:f2:5b:28:c0:ba:a8:03:3c:94:0c:9b:d9:
57:dd:3a:7f:a2:4d:d8:1a:ce:66:d0:01:83:4f:bd:d1:d4:87:
7a:58:59:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:05 2025 by rpki-client