Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
File: kNdTolR-A6Sw0vkccOnOTkRoBBg.mft (raw, json)
Hash identifier: xMih6te6j/GkDzPdsBtLEXR7VSDcM97Yz5sSjKGOFhk=
Subject key identifier: 7C:8E:2D:07:42:22:9F:EB:C6:FD:AA:96:50:A5:AF:C2:DC:14:39:E9
Authority key identifier: 90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
Certificate issuer: /CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Certificate serial: 019511A2836AD19AF3BF27A302DB1BCCD4EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
Manifest number: 08FA
Signing time: Mon 17 Feb 2025 02:00:17 +0000
Manifest this update: Mon 17 Feb 2025 02:00:17 +0000
Manifest next update: Tue 18 Feb 2025 02:00:17 +0000
Files and hashes: 1: g5z8NV4dmlaKd11s7v3mxc0KYqU.roa (hash: bnZ9DFLSZGC/zi7MlcnpGi6LDIICQO79p3wjfCQfT+E=)
2: kNdTolR-A6Sw0vkccOnOTkRoBBg.crl (hash: h8958vgBLcSVdagcTHZSv/0MJZGUyLJslVCrAPiDi8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:83:6a:d1:9a:f3:bf:27:a3:02:db:1b:cc:d4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Validity
Not Before: Feb 17 02:00:17 2025 GMT
Not After : Feb 18 02:00:17 2025 GMT
Subject: CN=7c8e2d0742229febc6fdaa9650a5afc2dc1439e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b9:c3:d5:12:0f:fc:41:12:05:fc:66:33:9f:
76:bf:9a:c8:c7:72:20:d0:58:1b:3e:21:cd:e1:ea:
f2:a6:6c:fb:4e:83:9f:e5:30:ec:ec:e4:c1:19:e8:
3f:0b:76:da:5a:89:f4:3e:17:d6:c8:86:11:a9:0d:
52:64:59:bd:70:32:eb:bf:b7:1f:b3:45:56:87:26:
3a:c1:80:c0:15:95:d3:88:f3:c2:d5:9a:63:da:5d:
97:f6:28:fe:52:fb:11:a8:2f:7f:7a:55:16:67:b9:
b1:94:fe:00:c0:0b:cb:31:fe:88:b4:25:c4:a6:0b:
72:3e:c1:eb:78:6d:32:9b:73:99:25:57:01:b5:89:
2c:fa:18:e1:2a:88:aa:4e:36:8d:85:98:b1:f8:cf:
21:dc:6a:c0:70:cd:df:c3:04:57:c1:ba:57:bd:f6:
fc:59:19:d0:fe:02:cf:a1:14:61:89:15:08:87:e2:
40:d1:4f:bb:cf:48:ea:4f:1c:01:c0:c1:fa:f1:b1:
7d:33:e9:71:07:26:2f:4e:b0:6a:99:8a:e2:b1:ec:
7d:fd:92:e0:c1:49:ac:11:56:15:14:ca:4a:b0:d2:
9a:81:99:8d:c0:a0:34:41:0a:8e:77:7a:02:36:76:
8f:f4:7a:d3:d3:13:bf:a3:52:e2:3a:83:99:c5:e6:
80:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8E:2D:07:42:22:9F:EB:C6:FD:AA:96:50:A5:AF:C2:DC:14:39:E9
X509v3 Authority Key Identifier:
keyid:90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f8:a2:da:b9:4e:21:a7:26:fc:ef:51:95:cb:25:7b:32:87:
59:83:87:79:a9:48:6a:14:3a:8b:38:6f:c1:16:65:2f:ee:48:
ca:b9:1e:29:ef:1c:d4:67:ac:a6:5d:f9:8d:25:33:95:97:4e:
d0:a0:43:81:e0:c0:aa:b5:29:32:c2:4b:ec:37:31:24:47:f6:
ba:6e:15:bd:66:41:56:b8:d5:0d:51:fa:da:b8:76:ea:51:b8:
d2:10:e6:27:0b:7f:c9:78:d5:5a:9a:4c:23:83:ce:a5:76:1b:
a8:70:c2:29:07:68:11:91:a2:a3:d2:05:b5:fd:32:49:5d:b9:
9e:b8:34:2c:99:d0:b5:58:85:46:72:97:fc:a0:16:e1:48:53:
e3:75:3a:69:76:f9:96:af:42:f6:19:af:02:3d:16:19:56:8f:
f6:44:ef:13:8b:2d:19:a4:26:87:ed:3d:1d:bd:fb:b3:00:45:
cf:cd:b7:0f:24:ad:e0:75:98:a2:61:15:34:aa:57:a2:ae:59:
ad:0c:7c:15:d7:64:4c:dc:cd:6c:20:75:8c:8c:d0:56:d8:0c:
a0:7a:a8:05:66:e4:cb:97:63:27:8b:75:aa:c3:4e:d8:54:c1:
e6:c6:66:c9:91:65:66:75:f5:bd:1d:5b:93:4d:c8:ff:79:0f:
89:95:41:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:00 2025 by rpki-client