Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
File: lWmTFkJJYHEcLo7LU2vdArxyT60.mft (raw, json)
Hash identifier: U8N7Uq5IlRmxoEleHqRKc/a0xzddhZ1sIvoqs5ce6NQ=
Subject key identifier: 13:3D:C2:27:9E:41:D6:71:04:C3:BA:51:C1:19:B0:CD:BD:48:FD:CD
Authority key identifier: 95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
Certificate issuer: /CN=95699316424960711c2e8ecb536bdd02bc724fad
Certificate serial: 0195116BE7FC97D08160271DAB10DFBCD955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
Manifest number: 02CF
Signing time: Mon 17 Feb 2025 01:00:39 +0000
Manifest this update: Mon 17 Feb 2025 01:00:39 +0000
Manifest next update: Tue 18 Feb 2025 01:00:39 +0000
Files and hashes: 1: QlwSz5QY3CNReEwoqy5_qdcxp7E.roa (hash: J1QwLI9Oak3umoZp+VK8k+3z4SfC016Ed6Yx+Y0FOX0=)
2: lWmTFkJJYHEcLo7LU2vdArxyT60.crl (hash: 0S8an2jmwI2PnjWJ7lHz4P/a9UgVRvC4mmoEzl81Hds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:e7:fc:97:d0:81:60:27:1d:ab:10:df:bc:d9:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95699316424960711c2e8ecb536bdd02bc724fad
Validity
Not Before: Feb 17 01:00:39 2025 GMT
Not After : Feb 18 01:00:39 2025 GMT
Subject: CN=133dc2279e41d67104c3ba51c119b0cdbd48fdcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1c:18:ec:01:85:2d:15:7e:1a:e1:38:ba:c3:
ed:92:1d:64:0e:1c:e7:b2:bc:eb:73:45:fe:f0:c3:
09:23:4d:15:35:3a:58:87:08:0a:47:ce:4d:57:db:
5b:31:bc:82:a1:0a:6f:76:05:8f:84:fd:3e:74:86:
52:b9:55:91:46:ca:5c:15:7f:f7:9b:2d:fb:3e:32:
8b:e5:ce:2e:1e:67:08:5d:93:5c:9e:ef:c7:90:ca:
17:0b:87:14:41:b9:75:1d:09:7e:5b:59:6d:9e:0c:
3b:f9:c8:46:17:fd:c5:3f:c0:4e:0e:47:83:69:a4:
fd:53:d3:bb:b9:d0:43:ce:27:57:2e:1c:3e:b2:47:
c9:4d:08:35:16:f6:c1:b3:37:79:42:2d:19:ff:46:
8a:61:b7:1e:e3:3a:cb:db:8a:b9:b7:33:0d:50:30:
8e:1a:60:0b:46:8e:06:25:02:3f:c7:5f:05:3a:7f:
16:19:d7:67:f8:69:d6:35:a6:89:c9:35:80:be:14:
b0:6d:ce:df:12:94:59:6d:a3:bb:a0:07:a3:b6:c8:
67:1f:f4:38:86:aa:cf:87:89:f3:40:3d:ce:46:a7:
b0:f3:36:17:34:b7:6a:7f:89:34:90:0d:19:71:49:
4f:e0:11:38:38:0c:cc:fa:bc:dd:ee:cd:6a:7d:b7:
96:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3D:C2:27:9E:41:D6:71:04:C3:BA:51:C1:19:B0:CD:BD:48:FD:CD
X509v3 Authority Key Identifier:
keyid:95:69:93:16:42:49:60:71:1C:2E:8E:CB:53:6B:DD:02:BC:72:4F:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWmTFkJJYHEcLo7LU2vdArxyT60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/320ef9-3541-4321-80ff-f85c60be340d/1/lWmTFkJJYHEcLo7LU2vdArxyT60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:57:b2:1b:1e:3c:dd:a8:eb:c8:6d:3d:69:59:90:49:4c:52:
78:65:3f:ea:53:26:9c:d4:97:11:42:9c:4a:3e:2a:46:73:1c:
c5:c9:45:f3:ef:f3:ae:ec:39:d9:77:d9:21:a8:2d:04:9c:29:
55:45:d9:5a:5f:b4:43:cc:e1:f7:4a:90:f6:cf:50:4e:f5:2c:
87:3e:ed:ba:74:94:24:c5:56:68:4b:18:19:cb:ff:04:a6:54:
6e:0c:f2:3f:fc:9c:d8:a9:a9:8e:8d:1a:24:b4:e3:c6:a2:b1:
6e:f8:d3:db:8d:1f:77:66:10:cb:b9:f4:54:27:59:3c:f3:9d:
96:49:a8:62:95:06:47:25:35:8f:44:05:f5:4c:75:01:f1:8f:
5a:f1:a6:a6:45:8d:06:4e:72:4e:12:c9:cc:57:e8:ac:52:02:
23:7e:f4:76:cd:52:cf:a3:b3:d1:24:99:aa:be:f0:87:bf:90:
76:4d:90:04:7d:13:c7:b0:33:32:f3:d4:e9:5d:1e:64:17:fd:
ae:7f:29:fe:81:24:1e:e0:2a:73:e4:51:3e:34:d8:04:cf:d1:
26:96:17:1d:87:e1:fd:10:72:fa:1c:ac:7b:59:57:cf:b4:7d:
2c:3e:19:fd:40:c0:05:14:53:e6:c2:25:52:22:fc:b5:ed:c0:
6f:d5:1c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:19 2025 by rpki-client