Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
File: lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft (raw, json)
Hash identifier: Ct9SaOUWmFhf24aMRSwvdjYUeRuxlyc0uylUyuQMKtc=
Subject key identifier: 7C:F3:A8:2C:1F:BB:36:46:B4:01:B8:D8:DF:6C:DC:02:54:CF:CA:EE
Authority key identifier: 94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
Certificate issuer: /CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Certificate serial: 0194C46319475521E4D2ADE6C1AA220CCA99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
Manifest number: 13E9
Signing time: Sun 02 Feb 2025 02:00:16 +0000
Manifest this update: Sun 02 Feb 2025 02:00:16 +0000
Manifest next update: Mon 03 Feb 2025 02:00:16 +0000
Files and hashes: 1: G39ME0xFxZesqQwqos2EdI8n7qo.roa (hash: 8k5VE0uXEGXbMB9ED4RCnZSTVNYbIG3+AEXwxhVpiyI=)
2: lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl (hash: RBJKLaYxCIemt2jD1CUs48O9QejmZwWuAlx8pZEJUuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:19:47:55:21:e4:d2:ad:e6:c1:aa:22:0c:ca:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94282a6078ba98fb4a6e343e7603a960e7a63442
Validity
Not Before: Feb 2 02:00:16 2025 GMT
Not After : Feb 3 02:00:16 2025 GMT
Subject: CN=7cf3a82c1fbb3646b401b8d8df6cdc0254cfcaee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:03:43:57:f6:8a:37:ad:39:b3:e2:16:f5:0b:
80:b1:c4:2a:b4:61:55:9d:f5:83:a6:cb:1f:57:d0:
d3:51:60:84:a0:2b:e5:f2:36:81:ed:e7:e8:25:6e:
8a:da:fc:ee:3d:e0:7e:a6:c6:a2:2b:f6:e8:7f:5d:
81:33:d6:7c:5e:a7:08:31:43:9a:08:fb:d9:54:1a:
af:03:4d:5d:cc:d9:a8:c2:db:ce:30:58:fe:76:05:
fa:00:48:c4:ed:a3:97:8b:25:13:c5:bb:b7:11:96:
44:bb:8b:98:e0:28:3f:0d:d6:01:e4:73:d5:20:ad:
74:e7:96:00:7d:97:10:fa:e3:29:25:ed:c5:e5:91:
10:e3:c0:ab:bc:fc:df:8b:fb:8f:02:f7:c3:b6:9e:
87:c3:36:60:2f:6b:97:89:e8:9f:fe:61:8f:e6:dc:
d1:ac:71:61:5d:cc:68:00:b9:6a:8a:c0:79:3a:3b:
fc:e3:6a:3f:bd:04:3c:4d:61:72:e5:0c:d7:13:8c:
c6:59:5b:25:4d:35:03:9e:e0:da:3c:20:43:fa:e4:
07:a2:06:be:d3:b9:fd:97:ad:48:ea:ba:1e:ae:91:
ee:07:55:56:b0:ba:c8:d4:ba:dd:cf:7d:49:67:8e:
4e:d2:72:b6:2c:13:c9:a0:e8:15:0b:68:f0:13:fe:
43:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F3:A8:2C:1F:BB:36:46:B4:01:B8:D8:DF:6C:DC:02:54:CF:CA:EE
X509v3 Authority Key Identifier:
keyid:94:28:2A:60:78:BA:98:FB:4A:6E:34:3E:76:03:A9:60:E7:A6:34:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCgqYHi6mPtKbjQ-dgOpYOemNEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2a96b8-046d-4ac3-b23d-d819794a32a3/1/lCgqYHi6mPtKbjQ-dgOpYOemNEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:1d:ef:cf:5a:25:55:dd:6f:11:29:b8:0a:fe:c5:8c:8b:3e:
56:2a:b1:94:cf:c0:3c:a3:68:d7:9a:f8:b6:db:40:24:02:74:
01:d6:52:24:c1:65:ae:9c:06:80:9a:90:39:21:ba:49:a1:90:
41:a3:36:76:67:fe:ef:05:03:16:b1:26:56:e4:72:2f:44:f1:
84:b6:6f:4a:4f:38:93:97:6a:52:19:52:a1:de:72:f7:cb:30:
2d:72:c1:33:6b:dc:bf:14:4a:2d:3e:4a:18:6d:13:71:8f:3b:
98:19:c2:50:1f:4a:4f:7f:54:d1:91:b2:ea:66:fe:ac:68:65:
c9:32:65:96:73:3a:b7:58:f2:ab:3b:03:53:0a:7f:bf:9d:63:
b1:80:90:a1:3a:a1:e6:d6:a8:84:52:3e:7c:93:ea:a5:87:a8:
9d:a2:e4:21:cb:e0:86:ed:27:81:5c:b7:f9:de:d1:64:ea:0d:
20:de:b1:5b:9d:48:2b:54:59:47:0a:bf:bd:b3:a7:3d:ed:e1:
ba:e9:5b:79:db:fd:7f:75:2a:7e:6c:8c:f7:71:2b:69:4a:a2:
c3:f0:bb:83:57:cd:a5:32:f3:34:62:93:59:71:34:15:c6:4a:
75:fe:41:36:d0:46:6d:b8:1b:81:94:c5:9c:c8:e7:19:d6:11:
61:e9:b1:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:06:20 2025 by rpki-client