Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: I8WtftJjlihl07utilFSc8RzT1DIM8WzTJZWDr2nfLU=
Subject key identifier: 50:14:DB:D2:00:86:60:22:E4:E2:92:4F:DD:D3:89:6A:15:CC:C8:6C
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 0194C49A403AE925C74608C6487457D10C87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 51
Signing time: Sun 02 Feb 2025 03:00:30 +0000
Manifest this update: Sun 02 Feb 2025 03:00:30 +0000
Manifest next update: Mon 03 Feb 2025 03:00:30 +0000
Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: YN7rsu7l87yYpBQxE9lQQvFyig9P8hqpQC1RqAYLAxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:40:3a:e9:25:c7:46:08:c6:48:74:57:d1:0c:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Feb 2 03:00:30 2025 GMT
Not After : Feb 3 03:00:30 2025 GMT
Subject: CN=5014dbd200866022e4e2924fddd3896a15ccc86c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e4:47:c7:1e:f5:28:c6:04:b2:b7:64:2e:62:
6d:57:95:ce:5b:72:9b:29:81:07:e7:ba:7c:2d:e2:
65:50:c8:75:6c:3b:07:6b:67:6c:4f:96:a6:5a:dd:
45:36:6d:68:3d:70:c3:7d:06:b4:6d:3d:5f:0d:21:
86:eb:22:b5:5f:4e:86:99:93:15:47:8d:14:8c:b4:
3c:de:d1:a9:c3:fd:bf:fc:e1:a6:e3:ae:34:41:9e:
4b:2b:92:71:54:37:b9:ed:29:fc:b8:d1:44:39:7e:
6e:57:72:8f:05:ad:7e:fc:7a:9b:83:ed:f3:0d:1d:
63:76:b7:fa:e6:16:ef:6f:a1:ba:a2:d6:3b:ea:c7:
56:ee:b5:07:64:2f:bb:74:cf:f7:a8:5f:ea:58:48:
01:a5:f2:cf:52:0d:e0:cf:c7:c4:7d:6c:12:13:44:
60:4a:d5:7e:01:59:8b:fe:a0:62:21:9a:e7:4b:1b:
da:66:ad:00:6f:3e:47:d3:8f:d6:1f:8d:0f:41:2d:
43:a2:b5:92:e8:64:9e:a3:53:81:8d:45:80:b5:94:
ef:da:ce:05:c4:3a:d1:37:09:31:45:04:b8:a6:ec:
ac:b6:ba:42:a4:1d:bf:74:5b:be:c8:f6:d2:70:3d:
14:4b:f5:9e:eb:f5:7b:30:1c:8e:3a:21:67:c6:cf:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:14:DB:D2:00:86:60:22:E4:E2:92:4F:DD:D3:89:6A:15:CC:C8:6C
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:97:f6:84:be:f6:9a:73:74:00:09:57:48:da:64:b0:fe:2b:
4d:4b:bf:4d:14:24:41:29:8a:3c:ae:c0:9f:7a:5a:28:f1:af:
76:01:8c:8e:e3:ac:af:06:d0:a4:68:a6:81:5d:eb:2e:2b:95:
9b:3c:70:62:3a:1c:38:96:6b:6e:54:eb:17:f1:1f:3e:ab:b7:
ff:ce:37:db:f3:7a:87:35:17:4f:4a:99:2c:45:39:12:f9:a3:
6f:a1:15:3f:8c:77:02:1f:39:f2:18:78:6b:50:01:b5:e2:52:
03:48:72:89:a1:d3:3e:a1:47:b4:e3:98:e7:b3:6c:87:3c:a5:
4b:c6:f5:23:5c:18:4b:da:b7:62:96:a7:cd:e8:bb:ec:c5:ee:
74:19:b4:c8:8d:9d:16:7d:c8:6e:35:16:aa:f8:a7:ea:7f:23:
f6:60:1e:b0:97:79:73:69:43:23:2d:ae:bd:61:b0:f4:b2:67:
1d:6d:ba:e0:da:b0:28:57:48:95:76:58:a5:fa:e8:ce:21:c6:
1f:6e:21:fa:75:79:08:34:64:d8:75:b5:02:7c:f4:42:f3:b0:
b7:43:71:7f:e9:f8:0b:10:92:2a:3a:f4:91:d6:1e:ea:a4:8c:
b3:1a:fa:b7:5d:ca:98:e9:7b:48:48:c7:ff:8c:7c:59:8f:d9:
be:14:d6:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:00:04 2025 by rpki-client