Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: 4gSWiOrn3vhSmBAIFt30uHntlQeLy2K+lsQpMLC6hKk=
Subject key identifier: 9D:AB:44:EA:FB:15:7E:8D:93:00:D9:54:67:4A:07:F4:60:65:3D:DA
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 0194C4D184586FB4934AD1802FC630CB7354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 074B
Signing time: Sun 02 Feb 2025 04:00:52 +0000
Manifest this update: Sun 02 Feb 2025 04:00:52 +0000
Manifest next update: Mon 03 Feb 2025 04:00:52 +0000
Files and hashes: 1: 5iUoguj_iK1nNW8vHsVzOldAdSU.roa (hash: pKY+cX83EfJeSDoR6xrNZru3sgyhL3gHqEm0luVXgrc=)
2: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: JvujAj7SimrkeUCwhkviMYq25VcVpadJN9qpkDP0+kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:84:58:6f:b4:93:4a:d1:80:2f:c6:30:cb:73:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Feb 2 04:00:52 2025 GMT
Not After : Feb 3 04:00:52 2025 GMT
Subject: CN=9dab44eafb157e8d9300d954674a07f460653dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9e:06:39:cb:9c:84:18:c1:a1:ae:3e:c8:4b:
5e:40:78:25:3a:2d:ba:5a:3f:d6:51:af:32:44:43:
5e:d1:6e:1b:51:19:65:44:6c:68:eb:eb:11:7c:01:
61:ab:e9:27:14:81:d3:c3:63:4e:f6:d9:59:bd:1d:
8c:74:58:4a:c6:0c:d2:ce:3e:fe:6b:ce:dd:3b:7d:
47:5a:49:df:dc:5f:d7:b0:f6:b4:ba:95:4e:c8:da:
28:52:da:17:d1:a6:9b:74:8b:e6:7d:b0:97:db:00:
3c:19:4e:e1:fc:5f:21:d3:24:0c:5c:09:1f:43:00:
71:f8:01:64:12:4c:50:97:3c:6a:8e:72:c1:82:19:
c6:06:7b:76:38:57:0e:72:8e:7c:28:0b:2a:10:b3:
9a:ff:8c:00:eb:bb:42:78:8a:6a:a1:3b:7c:87:70:
f3:4d:86:f3:fd:e7:9b:30:c6:40:10:26:fd:5b:04:
70:c7:4b:d6:bc:02:50:23:11:db:89:10:94:bd:13:
19:46:88:a8:28:92:f9:a6:58:d8:48:6c:5f:b5:63:
a5:43:75:dd:0c:a2:f4:b2:6e:9b:c1:aa:ec:cd:d4:
f3:2a:4b:4e:6e:75:99:dc:be:84:c2:9d:45:94:f6:
fa:cb:c7:92:ca:a8:13:f1:b7:77:36:ed:25:2b:28:
2b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AB:44:EA:FB:15:7E:8D:93:00:D9:54:67:4A:07:F4:60:65:3D:DA
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f1:a5:2f:38:12:bb:d9:b2:b7:30:17:51:ae:79:14:b6:00:1d:
87:de:d5:03:34:8e:63:6b:c8:c3:47:fb:b0:07:ae:6d:46:a1:
84:22:f4:64:a9:9a:cd:78:a6:99:57:2f:d6:a8:08:0b:42:ce:
0b:87:97:04:2e:e7:8e:1f:ea:ee:55:48:17:f2:dc:99:87:6b:
a0:8e:a7:7c:9f:ac:b8:2e:fc:53:6e:fe:78:a2:5d:68:1a:d9:
a4:48:89:a2:57:9f:05:c9:b0:72:14:f1:f2:b4:6d:06:de:88:
1d:0b:75:3c:69:38:e4:5a:fe:77:de:fa:32:8c:48:dc:bc:88:
5c:26:42:b1:50:9d:8a:6a:32:b2:6a:69:38:7b:58:62:e3:78:
78:dc:78:92:7a:71:cc:6f:c3:5d:2f:a8:49:51:ad:60:e5:be:
d2:63:fd:76:f7:20:f1:6b:25:f4:3a:f8:17:92:12:2a:52:41:
88:29:32:a3:71:f7:8c:35:49:2e:73:55:20:1a:be:24:18:ca:
b8:a4:2d:0c:39:54:2c:3a:6c:b4:b9:b4:0d:91:ef:4b:41:ea:
f8:ad:54:0e:39:77:1c:9a:4c:80:90:ec:04:b1:d8:20:53:4b:
a8:ae:8b:39:fc:0c:f2:4c:be:5e:68:ec:45:ef:9f:4b:2c:a8:
09:fd:97:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:01:47 2025 by rpki-client