Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
File: cCFOfqyx0k4hHi8l_uStdX5sll0.mft (raw, json)
Hash identifier: sz5jr1yzHftP5VZ+zfwaqdYvpUFvv1GVZXZe4lu9CdU=
Subject key identifier: 0B:84:AC:F1:78:2B:B7:00:25:30:5E:13:6A:D3:73:90:45:09:8C:32
Authority key identifier: 70:21:4E:7E:AC:B1:D2:4E:21:1E:2F:25:FE:E4:AD:75:7E:6C:96:5D
Certificate issuer: /CN=70214e7eacb1d24e211e2f25fee4ad757e6c965d
Certificate serial: 0194C42C227F1D360827B6C7C97AA4D368C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
Manifest number: 03D6
Signing time: Sun 02 Feb 2025 01:00:14 +0000
Manifest this update: Sun 02 Feb 2025 01:00:14 +0000
Manifest next update: Mon 03 Feb 2025 01:00:14 +0000
Files and hashes: 1: Ur1p6KL9NTfFRBrJ7C7-zJCCRXo.roa (hash: lsHocd823a47v2/eGKZz1waiHC7kKATLJJz6RHG9Ic0=)
2: cCFOfqyx0k4hHi8l_uStdX5sll0.crl (hash: u+mORCITvBSJmXHjRBe7QprQlVpjXxV8IU+Cz3JgujE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:22:7f:1d:36:08:27:b6:c7:c9:7a:a4:d3:68:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70214e7eacb1d24e211e2f25fee4ad757e6c965d
Validity
Not Before: Feb 2 01:00:14 2025 GMT
Not After : Feb 3 01:00:14 2025 GMT
Subject: CN=0b84acf1782bb70025305e136ad3739045098c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:80:87:b7:d1:5e:10:0c:98:d8:a0:fe:db:ca:
d6:dc:a1:aa:b4:44:6f:17:91:2d:fa:3d:b2:07:2c:
8c:b6:10:90:27:4f:24:fe:aa:9a:30:08:53:f5:79:
79:77:65:cb:12:a3:ab:ef:95:7a:55:89:55:da:09:
4b:59:52:b7:fb:bf:3b:b0:7c:62:cf:06:86:f3:31:
97:93:94:eb:eb:05:3e:d8:45:b7:ab:88:b8:df:26:
0a:92:36:95:95:ad:f5:dc:17:4a:34:67:6a:d2:38:
2d:73:4e:6f:35:b0:c1:f8:69:30:d3:37:aa:50:06:
f6:9a:a9:c4:e4:ab:a1:1b:cd:ad:4b:cf:02:be:51:
9a:9f:5e:6e:b5:8d:f0:8a:e6:5e:1c:b7:e5:65:d0:
c6:04:05:ee:67:8a:95:33:eb:c6:36:7f:8b:96:c2:
b9:e3:e0:29:8c:9c:2a:db:bf:40:59:2b:da:56:b0:
26:8f:cf:bb:ba:73:e5:a0:97:5e:44:79:f3:d5:d5:
e2:33:e9:36:84:54:c8:e5:70:33:7d:6f:62:8e:4c:
3a:fe:33:a7:d7:97:e0:a9:7c:60:81:c8:1b:4b:17:
8b:d5:bc:65:8f:9a:81:1e:98:60:c2:38:ba:57:60:
4a:c4:0b:cd:e2:cc:9f:4f:3c:b1:fe:a0:c1:ff:7b:
39:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:84:AC:F1:78:2B:B7:00:25:30:5E:13:6A:D3:73:90:45:09:8C:32
X509v3 Authority Key Identifier:
keyid:70:21:4E:7E:AC:B1:D2:4E:21:1E:2F:25:FE:E4:AD:75:7E:6C:96:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:87:52:2d:25:b0:af:eb:89:18:8b:46:49:92:50:1b:9e:45:
23:35:6d:b6:ad:79:ce:ff:f2:81:bd:a3:79:90:bf:fb:92:00:
4e:26:2f:e2:79:fb:2e:81:7e:a9:79:97:19:48:27:17:20:9b:
58:18:c8:7c:69:ea:0f:90:62:e1:31:1b:9d:8f:ff:b8:12:98:
27:4b:2e:5c:b5:34:1d:a7:6e:ca:27:b3:ea:9c:27:95:1d:c0:
cc:43:ac:dd:27:87:a4:b5:08:c7:fc:d9:6e:c3:35:aa:74:1f:
eb:c3:c9:e4:fb:f0:72:85:9f:71:89:6b:ed:bf:12:3b:69:1f:
fc:06:fc:2e:6e:57:10:5b:8a:8a:db:00:1b:b0:08:bb:9c:aa:
7d:52:cc:b1:99:f7:51:38:fb:2a:1e:5d:0a:73:db:d7:45:93:
25:a7:5b:8c:b4:79:07:5f:ae:0c:ae:8d:6f:fe:56:18:24:9e:
09:73:7f:21:14:42:10:29:ab:e7:3c:66:3f:79:f8:97:a8:aa:
ef:54:e0:99:01:20:d1:f6:20:0d:8a:aa:4a:96:0d:8f:54:ae:
68:b4:91:b0:c9:a0:b7:01:5d:ce:6a:72:eb:4a:03:57:13:48:
5f:ce:e2:a7:e4:83:48:50:7a:d8:1b:59:e4:32:69:ce:f8:bc:
2e:98:75:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:22 2025 by rpki-client