Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: lW0YefS+KuHvCc49ZSYLX/AwWa5FLCg3zWDWckUZC0w=
Subject key identifier: 1A:03:FD:87:B6:9C:44:74:0F:3C:AB:AF:78:26:B0:EE:A1:3F:A1:3C
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 01951247327AF136709DAD0040FA2B2D54D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0172
Signing time: Mon 17 Feb 2025 05:00:10 +0000
Manifest this update: Mon 17 Feb 2025 05:00:10 +0000
Manifest next update: Tue 18 Feb 2025 05:00:10 +0000
Files and hashes: 1: Qb83VG82QGzWbpalRRMPH518SYo.roa (hash: AiyxH3+S5rR7yJjoD/YrQHR/3h9nA1hJpL55scIpUTs=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: W28l8mcILw/0l5hjYQEmERqyLzhxB8fLm48USMJMacw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:32:7a:f1:36:70:9d:ad:00:40:fa:2b:2d:54:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Feb 17 05:00:10 2025 GMT
Not After : Feb 18 05:00:10 2025 GMT
Subject: CN=1a03fd87b69c44740f3cabaf7826b0eea13fa13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:fc:51:fd:82:8c:ac:6d:fa:80:5d:6a:85:5c:
85:3b:00:41:23:16:8b:12:0e:87:1a:b1:bd:2a:ed:
5b:bb:a5:3b:c5:f9:3d:1f:10:ef:c0:66:f7:8a:70:
07:64:c6:6e:48:c0:e7:31:9e:a4:61:2e:d7:41:cc:
29:d4:76:53:cd:c7:61:4b:af:4b:f9:b2:33:36:1a:
bd:86:8c:04:6c:5d:de:25:32:d9:da:22:c5:66:6d:
da:32:bd:f8:d2:64:2f:85:64:45:72:93:c5:9d:c1:
8a:69:15:b7:fe:15:05:6c:22:44:cb:5a:81:9d:e6:
cf:59:22:28:6a:64:08:00:ec:2d:4e:59:fc:be:29:
87:0b:b0:97:82:af:92:c1:3f:f6:f3:e8:60:ee:cb:
1b:5a:57:65:25:bf:2c:85:70:9b:01:60:71:0b:20:
95:60:6a:b2:e2:e7:7e:ea:6b:f4:8c:18:18:06:1d:
22:32:68:74:3f:6e:d0:1a:8b:71:c0:58:12:a0:6a:
b6:c9:04:b1:d3:60:ad:33:80:f4:4f:42:80:8c:ea:
40:a3:15:3a:7d:65:3f:24:e6:60:15:8f:d5:14:dc:
30:84:cf:8b:a2:55:d6:6e:c5:cc:d5:f5:68:cd:53:
de:f9:b6:f1:d7:92:81:76:83:a6:73:58:2f:b8:4b:
ac:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:03:FD:87:B6:9C:44:74:0F:3C:AB:AF:78:26:B0:EE:A1:3F:A1:3C
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:4f:81:8c:94:49:5c:69:8f:03:a6:d9:d0:1d:5c:c2:c9:f5:
3c:7e:3c:34:e6:f6:bf:c6:ce:d4:9e:32:66:d8:4b:32:01:1f:
73:3f:e4:bf:88:ed:10:00:40:2c:3a:d1:20:16:63:52:71:3a:
13:25:48:79:ca:48:13:04:76:26:ff:3a:0b:13:a2:32:e2:fb:
cd:59:04:00:e6:2b:f4:e1:d1:b9:1f:ca:a7:75:87:bf:3d:fc:
7d:e4:57:b8:12:c4:a9:74:54:88:a4:a4:49:98:7e:3b:94:36:
c9:5b:77:60:8a:f4:67:e0:d1:b4:b4:43:92:97:59:b9:88:ef:
58:68:94:5e:0d:73:a3:63:2e:ce:17:14:1d:61:9f:91:8f:d8:
33:65:9f:15:37:cb:ab:c1:84:56:c1:09:56:9a:19:af:9b:34:
7f:b0:4d:7e:a2:2c:8b:97:97:7a:bf:fb:7b:33:5a:b9:81:b2:
71:62:05:6b:39:ed:9d:62:d6:f1:7f:a9:88:f9:e6:24:3b:2a:
1c:4f:d8:05:21:99:67:27:d6:d2:12:20:09:bb:16:8b:de:10:
47:92:cd:0a:b8:06:f6:8e:65:78:2e:a2:6a:d8:b4:c3:33:ce:
9c:13:f4:5a:60:1b:68:a0:10:aa:7e:10:8d:3e:4e:5d:3b:c1:
5d:18:55:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:40 2025 by rpki-client