Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: SoX6UG2T2p1M266fWoIxSm/DvF/PBAwbW1XWC6EYWHk=
Subject key identifier: 0F:3C:55:AB:C2:81:9C:58:4B:20:EB:D2:75:86:DE:AB:9C:9C:87:AC
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 0195116BB78E00682E5399433925DF6BFAAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 0419
Signing time: Mon 17 Feb 2025 01:00:26 +0000
Manifest this update: Mon 17 Feb 2025 01:00:26 +0000
Manifest next update: Tue 18 Feb 2025 01:00:26 +0000
Files and hashes: 1: BkDrM4-atcp10Br--qbvg_yK1zg.roa (hash: OQTXLqdYWvwdj8zXSXiFu8x5dJlCSPxgy4/Qhi1Yohc=)
2: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: yjR7E9OaKRlSQcp/92cp+Tr5I12+QSwiX+4RFENeOIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:b7:8e:00:68:2e:53:99:43:39:25:df:6b:fa:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Feb 17 01:00:26 2025 GMT
Not After : Feb 18 01:00:26 2025 GMT
Subject: CN=0f3c55abc2819c584b20ebd27586deab9c9c87ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1d:0c:a7:0a:12:e2:cf:fc:70:6c:f9:df:f6:
a6:d4:27:95:7f:2d:4f:17:04:66:65:1d:b3:b1:ab:
02:c2:3e:b8:e8:4f:53:79:fc:af:f2:5a:2c:33:c2:
a9:e4:31:1e:3c:09:bd:e5:48:b9:25:d5:c1:3d:6d:
60:64:f1:da:c8:71:d1:12:07:e8:d4:03:60:19:8c:
05:6c:67:b9:39:f4:27:98:37:0f:63:b1:a6:4f:a6:
4c:e1:a3:65:05:96:cb:c6:6d:b9:54:d8:9e:ce:a5:
c9:0f:88:2a:7c:7f:72:75:fd:80:a8:69:88:9a:67:
24:ed:07:40:c2:b3:c2:e3:bd:4e:eb:32:6a:52:cb:
6c:14:3d:54:d2:33:b1:52:24:3d:59:65:6b:b9:43:
5a:b8:07:1b:6e:44:14:5e:d2:3b:ed:02:67:16:cc:
d4:1f:5c:bb:bf:76:38:e9:86:2f:77:78:a7:ac:16:
fd:ec:1f:36:66:b2:8e:e8:14:5c:21:b7:d2:72:77:
ea:da:18:cc:ca:42:f5:7e:4d:f1:e2:e7:b6:67:eb:
dc:90:de:66:8d:03:7f:1d:99:dc:2f:73:f8:8a:bc:
07:8b:d4:18:54:8d:14:35:c4:a9:af:2c:fe:66:56:
e5:a9:98:71:fe:61:f7:2c:28:8d:e9:7c:6a:ae:b3:
3f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:3C:55:AB:C2:81:9C:58:4B:20:EB:D2:75:86:DE:AB:9C:9C:87:AC
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:09:55:d5:3e:08:89:56:95:91:10:da:87:05:07:72:0d:8e:
26:d0:28:78:df:cc:59:79:68:24:3c:0a:96:1b:0f:28:4e:29:
26:1b:05:98:c5:b5:9f:20:1a:f2:92:ac:98:dd:9f:45:55:1d:
d2:66:24:da:69:21:ee:0c:75:b6:2d:23:1f:87:2b:c5:09:76:
6e:e2:12:f1:d1:9d:89:4e:14:35:97:12:35:44:06:16:c6:b3:
a0:07:ff:22:ab:23:78:e1:3a:dd:ce:bb:34:dd:5b:5e:06:9f:
8b:cb:be:95:ac:8e:35:04:e2:5c:a5:48:41:6b:4f:b7:fc:1d:
d8:3e:8d:fe:ae:46:42:11:42:45:67:a8:ce:b7:e5:51:ca:3a:
90:ca:ea:a5:16:f9:e6:dd:0c:09:d4:59:f8:cd:f3:b1:69:f7:
94:67:71:54:2a:4d:ed:90:f0:c4:0f:8c:e0:05:c3:b3:7f:3b:
f8:66:c0:b3:54:4e:b5:7e:5a:19:86:03:35:2a:af:3c:5f:ec:
3d:e1:1f:8f:87:ad:1b:5c:98:26:57:c4:21:bc:17:f1:08:70:
40:f1:fe:aa:77:4b:00:61:4d:29:03:ab:ec:11:a9:5f:fc:a4:
50:a6:c9:54:d0:ef:d1:40:d4:48:9e:ee:0e:49:b1:dc:b4:e6:
ca:5f:69:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:18 2025 by rpki-client