Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json)
Hash identifier: nHAQzILpdAdEE3qcB1tF6Ls3fypTfVqOn3YaRYK3S1A=
Subject key identifier: 7E:DC:49:D4:F1:04:F5:EB:D3:61:3A:9E:34:54:93:36:46:97:AD:25
Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Certificate serial: 0194C46357F4276251C3B877131FF548DE89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
Manifest number: 05EC
Signing time: Sun 02 Feb 2025 02:00:32 +0000
Manifest this update: Sun 02 Feb 2025 02:00:32 +0000
Manifest next update: Mon 03 Feb 2025 02:00:32 +0000
Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: w/pRrV9M0R+hT7BYl4EtAAH3cDso+3YBCypJOcgPTfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:57:f4:27:62:51:c3:b8:77:13:1f:f5:48:de:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Validity
Not Before: Feb 2 02:00:32 2025 GMT
Not After : Feb 3 02:00:32 2025 GMT
Subject: CN=7edc49d4f104f5ebd3613a9e345493364697ad25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:33:2d:3d:97:7e:13:56:ea:75:ef:fc:a7:0a:
cf:4e:61:e9:93:b2:5b:e1:d8:28:d0:de:4d:91:2d:
33:38:a2:9f:32:ad:50:43:b8:b6:55:1e:dd:e2:00:
8b:dc:d5:d4:54:68:01:34:2a:5d:28:88:60:6c:2f:
c8:fa:ca:b0:77:e7:73:14:f2:ac:3f:5d:60:af:f7:
96:36:3c:d5:f0:fb:23:db:f6:64:bc:d4:68:6f:ef:
6d:d6:59:72:4a:08:06:ca:ae:bf:9c:6d:62:74:68:
80:b5:0b:1f:3e:a4:2c:fc:2a:88:ae:13:b8:24:ce:
e8:4d:bd:4a:30:b8:43:a0:65:aa:4e:d5:67:88:93:
7c:18:87:83:50:36:17:92:40:d4:cf:57:c5:ac:38:
5b:f7:a8:d3:77:ee:b9:80:ae:b1:2a:54:32:6e:fb:
8a:b1:0d:d7:71:1c:54:23:2b:b3:33:5f:65:c9:bf:
77:c8:d7:0f:c4:03:bc:cc:34:f8:0c:a8:11:86:a9:
59:95:73:71:7d:76:0e:b3:fa:de:5c:50:e2:cc:83:
42:54:c7:c2:ed:9c:db:07:79:af:73:ae:2a:a4:a6:
59:e3:ea:e1:bc:07:97:21:e2:da:50:f6:62:c2:2e:
6f:fd:37:b0:9c:06:f7:4c:05:66:cd:66:f4:20:13:
b4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DC:49:D4:F1:04:F5:EB:D3:61:3A:9E:34:54:93:36:46:97:AD:25
X509v3 Authority Key Identifier:
keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:48:6f:c6:30:6c:9b:24:c9:46:bc:8c:e3:f8:a7:87:ee:9f:
b9:bc:01:4c:5d:d0:b4:fe:c7:6b:40:c8:89:1c:84:6c:c3:1d:
ef:73:95:2a:be:51:fc:2c:29:92:65:c4:a0:20:de:98:19:39:
e0:30:53:43:73:c1:34:64:53:a4:8c:f0:00:68:50:09:6b:2a:
cf:17:c6:4c:9d:9c:3d:9c:ae:11:4a:7f:f2:26:f3:12:20:05:
6f:47:de:3d:90:9e:da:fc:3d:e7:1f:34:c9:3d:0d:d6:fd:b5:
77:12:30:4d:db:9c:0a:50:04:6c:2b:54:0c:71:97:61:97:76:
28:ab:7b:bb:fd:c1:ff:ac:72:d4:0b:b8:5e:a2:0f:cc:3e:50:
1f:0a:aa:fe:22:a8:03:74:16:38:61:8a:36:14:99:a1:41:9d:
7f:f7:e1:d3:0e:37:e0:9d:cd:db:94:c6:69:dd:ad:85:9b:b4:
3f:a6:48:5d:3d:d2:03:79:6c:f7:50:87:fb:7c:1a:1c:bb:43:
1c:56:c3:5c:64:2f:07:6e:67:af:2c:11:61:6d:ca:0d:8a:d6:
d6:6a:59:97:cf:3b:ea:c2:58:39:6a:1c:b3:48:41:3a:ce:4a:
be:cb:3e:98:5f:8c:3b:8d:af:54:de:d4:f7:fe:44:83:57:5b:
8a:ac:28:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:10 2025 by rpki-client