Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json)
Hash identifier: OES789crse6/jGIlFHS2GkWKt0h/fW+Gyw3YemKQoOc=
Subject key identifier: 73:D9:16:74:AE:F6:B0:75:4B:E5:15:2D:34:70:0D:39:34:BD:5A:FE
Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Certificate serial: 0194C3F62CF6B10B371200225B927567AEE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
Manifest number: 111B
Signing time: Sun 02 Feb 2025 00:01:17 +0000
Manifest this update: Sun 02 Feb 2025 00:01:17 +0000
Manifest next update: Mon 03 Feb 2025 00:01:17 +0000
Files and hashes: 1: 3U4MivbAgZFFTzpri9v9qzr-9Dg.roa (hash: OpxoqQJPTPV/7nPesTeS09o0jfmFmQcqEJLqODzVTIM=)
2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: iZ34JRyiWCXbFUTBcCPjMTtGJaVgxqw2Xt2YRXdURR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f6:2c:f6:b1:0b:37:12:00:22:5b:92:75:67:ae:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Validity
Not Before: Feb 2 00:01:17 2025 GMT
Not After : Feb 3 00:01:17 2025 GMT
Subject: CN=73d91674aef6b0754be5152d34700d3934bd5afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e5:07:38:8c:35:a2:71:26:2f:10:e4:b8:c3:
1d:ba:f8:cc:63:51:17:1f:a2:86:7c:3e:8c:e2:42:
ad:66:70:f5:93:81:df:1d:f5:61:ac:fa:e8:09:ee:
77:49:84:c0:6f:8d:c7:af:74:c8:fb:c9:8d:5a:37:
6e:fd:50:3c:4d:11:1d:7b:ce:79:bb:f3:ad:3d:95:
c4:81:25:f7:68:aa:bb:40:4d:9b:f4:94:5c:a1:b0:
22:27:db:3d:0f:16:ec:08:b1:0e:6a:11:45:32:b7:
02:04:30:49:00:d0:a4:52:5d:44:8a:0a:35:ad:1d:
5e:9b:9a:30:c8:af:74:05:4c:de:7c:f2:63:45:1c:
c4:22:18:04:5a:4b:a4:6b:da:72:c4:0a:f4:4c:f2:
92:f6:0f:ae:2b:c1:e8:46:9b:8a:9c:90:94:2d:66:
e1:d7:80:00:11:a1:03:3a:03:66:17:19:bc:9b:f2:
bd:2b:56:aa:9d:dd:8e:0e:02:28:f5:5d:d7:de:7c:
b2:25:e5:a3:2b:a2:12:96:c6:9f:7e:06:a5:cc:85:
f5:3f:84:9c:e0:34:69:4f:d9:a4:f0:99:de:89:55:
19:e1:61:ec:f4:3a:be:ed:a9:80:bc:2c:b6:9c:19:
30:51:80:e7:c4:45:3d:05:a9:cf:7c:6e:34:e3:22:
50:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D9:16:74:AE:F6:B0:75:4B:E5:15:2D:34:70:0D:39:34:BD:5A:FE
X509v3 Authority Key Identifier:
keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:77:0a:36:91:d9:44:80:4a:a6:89:00:ef:f5:3a:95:76:d6:
31:08:6d:7f:8c:7b:8f:15:82:6b:4b:3d:30:0e:02:5c:9c:f7:
03:dc:3b:69:32:67:90:a8:38:3c:42:c4:c7:e6:76:fc:c9:f7:
28:1b:38:79:d6:16:34:fe:60:6f:f6:94:d3:4f:e8:1b:7e:42:
93:86:50:fa:58:7b:31:be:c5:86:7f:fd:1b:2d:3d:32:5c:88:
7f:96:02:a9:ef:13:bd:e3:ac:23:d9:2e:7b:13:69:91:18:eb:
e4:70:ff:c1:b5:3a:67:ce:88:2d:cf:59:28:1d:c1:12:6c:55:
86:15:9f:3d:f6:10:2d:ab:8e:df:a8:f9:b0:ad:79:67:66:0f:
14:e1:00:2e:e0:4d:39:6a:ee:f5:95:0a:da:6d:86:3b:c1:f9:
5d:bb:e2:1c:11:0f:e6:14:42:33:64:67:f5:50:ee:03:fb:a8:
a5:e5:40:18:d6:25:31:99:3e:18:19:77:b5:cc:3e:42:57:c4:
09:53:fb:97:83:d5:98:b5:1f:cf:38:5a:c9:9c:96:ad:77:78:
77:87:a4:63:23:70:56:bf:e4:7b:cc:1a:ff:06:9e:ff:4d:b7:
02:fc:49:0f:df:58:3e:0e:be:a4:c9:4b:be:3e:b4:51:a7:e8:
12:45:e6:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:43:35 2025 by rpki-client