Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
File: RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft (raw, json)
Hash identifier: umgVpIWVeU6G9uLY889gS2kNSQShwKljUHPQ9Lhoda8=
Subject key identifier: A9:14:34:9C:1D:F8:B7:4F:D4:F7:96:1A:3A:49:9B:28:B5:25:34:1D
Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Certificate serial: 0194C463372FD5F4A0C346765157904F36D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
Manifest number: 1431
Signing time: Sun 02 Feb 2025 02:00:23 +0000
Manifest this update: Sun 02 Feb 2025 02:00:23 +0000
Manifest next update: Mon 03 Feb 2025 02:00:23 +0000
Files and hashes: 1: RO-2xcQ-C0WrDSJ7Eu00WY23rS4.roa (hash: Avrv1nDidaSbZAK1I64G61mkaNMT6r8igSyRsacO8hw=)
2: RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl (hash: 73LH6pd4Ydtssz3o2e04+ijHCoRfnemGShexc7yLQIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:37:2f:d5:f4:a0:c3:46:76:51:57:90:4f:36:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Validity
Not Before: Feb 2 02:00:23 2025 GMT
Not After : Feb 3 02:00:23 2025 GMT
Subject: CN=a914349c1df8b74fd4f7961a3a499b28b525341d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:15:cf:59:7c:cc:13:64:c4:a4:c6:b4:e3:7d:
24:47:39:5b:72:ca:d1:28:4d:2b:43:92:88:b4:79:
e2:0d:4a:64:e0:f2:57:ea:cd:e8:3c:4f:86:3e:c7:
07:fb:03:44:fe:85:c3:d5:c8:ff:fb:4d:2b:16:0e:
68:e7:5f:23:65:fb:6f:8e:6d:50:6f:7e:2f:39:b6:
ce:95:a8:9d:b6:8f:df:3a:ba:7c:72:66:07:72:11:
ce:5c:51:8e:51:85:ff:28:03:53:64:db:39:6b:86:
f5:cb:86:72:74:c9:2d:59:82:76:ba:d7:fc:03:a9:
7a:e0:0c:58:6a:78:df:fb:f5:ff:ef:88:8a:47:37:
a5:a2:73:42:3f:ea:f5:c6:e5:b8:cf:32:4d:cb:f4:
08:b3:69:ad:50:3a:49:db:f7:8b:eb:db:96:b1:5c:
f9:fb:b4:a3:41:ab:4e:b8:68:c3:5b:34:c4:13:07:
53:0f:8f:12:1c:a5:90:03:cb:dd:6a:59:c7:94:66:
f4:df:e3:4c:ac:fb:7c:d9:31:3a:a3:56:70:82:57:
92:31:57:c1:d4:29:b1:48:e8:35:48:7d:54:73:27:
ad:f1:8b:64:81:eb:8e:af:d6:23:a9:e8:8a:91:9c:
ed:d3:0b:d1:8c:45:af:ca:2a:c1:dc:a0:69:b4:50:
a2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:14:34:9C:1D:F8:B7:4F:D4:F7:96:1A:3A:49:9B:28:B5:25:34:1D
X509v3 Authority Key Identifier:
keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:f1:45:7e:a1:d1:1a:96:b0:dc:ea:9f:cf:fc:bf:8e:1d:56:
cb:bd:4d:c3:9f:3b:a0:85:de:aa:d6:a8:f7:96:a0:0a:ba:1d:
b0:e1:5b:5d:cc:8d:f7:b4:52:15:d5:2e:90:59:5a:7f:c6:f7:
87:2d:79:b0:8f:23:31:d1:02:7d:4d:cf:e4:60:df:60:c7:9f:
d1:25:eb:aa:bc:6e:42:8b:05:a1:22:68:0f:09:71:1e:f5:6f:
4a:2b:e4:d1:39:9a:82:19:08:47:2c:a7:b9:a4:b5:42:0d:92:
1e:cd:23:01:17:99:64:1c:da:c9:12:fd:b2:7d:e5:18:86:f5:
fd:15:00:35:d7:02:6e:36:c6:b2:63:5d:96:5a:20:f9:6b:6d:
8e:8a:1e:62:df:a0:e3:28:e7:a7:d8:ad:62:24:9d:a7:e5:fc:
ee:02:08:60:39:7d:70:c4:59:8d:f9:54:da:e8:08:cb:bd:92:
69:b9:d1:85:97:c0:72:44:80:23:a6:05:28:be:da:a3:0c:2a:
a8:06:5b:7d:f8:ff:7f:f2:5f:d1:57:83:ed:72:df:4b:2c:b8:
8d:39:1e:19:17:5c:3c:06:bf:7d:9f:16:f7:72:d6:d3:31:e0:
42:ea:b5:49:05:4f:a0:e1:38:7d:f1:35:e5:e3:78:e3:a3:51:
c7:e8:5f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:57:58 2025 by rpki-client