Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
File: sPiohfd3bSq5m7TyDoTTBuA5SqM.mft (raw, json)
Hash identifier: GP3S38lEwVAx5BXH71aRfh0xVW1T7U975FHSSb3IY4s=
Subject key identifier: 8C:D7:77:53:29:36:FD:8E:EF:DF:AD:DF:3D:2E:B0:E4:85:E0:4E:6B
Authority key identifier: B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
Certificate issuer: /CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Certificate serial: 019512473C86F5D9910FF3ABD4667D92CAE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
Manifest number: 11EA
Signing time: Mon 17 Feb 2025 05:00:13 +0000
Manifest this update: Mon 17 Feb 2025 05:00:13 +0000
Manifest next update: Tue 18 Feb 2025 05:00:13 +0000
Files and hashes: 1: SvV3htVhXEPI7wFXdPP_R5R2jOo.roa (hash: ADbpdowWW8HzIQ0XmIe2lqnPixhQxjU2ME36RexdQ8I=)
2: sPiohfd3bSq5m7TyDoTTBuA5SqM.crl (hash: fvRHi41VxNZKndw2JkE8rbcxex5wMDJz9jM5w/CqQvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:3c:86:f5:d9:91:0f:f3:ab:d4:66:7d:92:ca:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Validity
Not Before: Feb 17 05:00:13 2025 GMT
Not After : Feb 18 05:00:13 2025 GMT
Subject: CN=8cd777532936fd8eefdfaddf3d2eb0e485e04e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:d1:44:48:99:29:d2:c3:8d:d2:30:80:69:
73:c6:55:5f:8a:32:72:da:4a:8e:4f:d2:73:a5:44:
17:83:7e:8b:2c:93:fa:79:46:d8:ae:0a:1a:45:d0:
66:88:80:86:88:96:8b:d1:35:00:27:ce:ed:bd:4f:
55:f3:44:f3:09:da:5a:48:14:b6:4c:b3:95:72:49:
49:97:d2:13:b2:87:aa:f2:5e:94:ee:05:eb:e5:13:
f4:52:bb:80:95:84:43:96:d9:da:02:b0:8c:9f:d8:
c5:66:52:2b:b9:82:fc:db:9c:13:c7:5b:bf:6c:ed:
c2:8c:9e:af:3a:df:64:17:33:b1:a9:3e:df:7c:87:
05:fb:0a:96:3f:7c:48:36:b4:5b:00:18:f1:50:65:
90:2f:63:86:30:07:f6:dd:24:99:e1:e8:38:b7:3a:
15:f6:b1:8b:e4:11:09:0f:cd:33:61:97:a4:2a:08:
04:64:83:c7:6f:05:f9:b6:4a:1e:3f:5a:8b:68:47:
38:7b:57:b5:2e:0e:f0:64:51:b3:90:93:99:04:a6:
ad:79:28:78:da:af:4c:27:53:f1:37:9f:eb:7c:c8:
96:fc:fa:e2:2e:d1:9c:c8:c1:7d:d4:ed:41:5d:31:
e8:9d:fb:8d:c7:06:f4:f0:41:a6:68:51:ec:b1:61:
1f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D7:77:53:29:36:FD:8E:EF:DF:AD:DF:3D:2E:B0:E4:85:E0:4E:6B
X509v3 Authority Key Identifier:
keyid:B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:c1:29:90:02:ae:7a:34:ce:52:db:bf:ae:4a:62:24:99:bd:
7b:de:61:5e:1d:9a:88:a2:d9:9e:6f:93:dc:b3:94:d6:b6:da:
27:cf:73:4f:fd:3f:76:60:a4:f9:b1:0b:e2:0d:57:39:33:84:
7e:e1:6a:f0:c1:59:7f:c6:31:95:78:da:c9:44:7e:8c:ec:4d:
c4:09:45:d7:78:90:77:87:61:b5:a3:3e:2e:4b:4b:68:ef:ca:
b5:83:17:1b:21:3a:18:06:80:94:2e:cb:0c:2d:b3:74:af:52:
ad:2e:47:f4:62:f9:f2:bc:89:ef:ab:0c:3c:d6:f5:0f:a8:07:
cf:f7:7e:8b:54:2e:f2:0f:d4:5a:a8:cd:e7:0d:8f:ea:65:2e:
1e:76:da:e4:de:eb:48:3e:d9:6c:63:df:f9:c5:df:9b:13:0c:
61:6f:93:40:87:82:10:44:12:da:ce:97:9e:0a:fd:4b:ce:0d:
7c:f7:db:57:67:8f:7f:04:c3:69:e7:d8:09:f7:9d:7e:b0:e3:
f0:48:f3:bc:3e:d8:71:b0:ed:4e:cc:77:65:1e:0e:e0:c3:ca:
1d:11:07:bd:eb:63:8f:9b:ce:fa:46:16:13:66:c9:ce:3f:e0:
7e:1c:ca:d1:74:6f:dc:4a:2a:c4:9c:a6:50:08:40:e1:72:56:
c8:a8:2d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:47 2025 by rpki-client