Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
File: fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft (raw, json)
Hash identifier: 2rKuH3+sBLnyYSaq1XY1mpCBcM3LA6Jdw7/uIL7zzmY=
Subject key identifier: A7:3D:3A:80:24:4B:7C:7A:DF:1E:5A:28:E9:19:7D:20:8E:C9:98:5C
Authority key identifier: 7E:04:DD:9C:82:B1:91:A5:F0:9D:60:6C:A5:50:C0:17:78:5A:EE:C4
Certificate issuer: /CN=7e04dd9c82b191a5f09d606ca550c017785aeec4
Certificate serial: 0194C38806B515955C47F54ED44BF65F37B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
Manifest number: 142A
Signing time: Sat 01 Feb 2025 22:00:59 +0000
Manifest this update: Sat 01 Feb 2025 22:00:59 +0000
Manifest next update: Sun 02 Feb 2025 22:00:59 +0000
Files and hashes: 1: fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl (hash: f8QPozrOLBVrPIxSKeIHMKmdMITAJaYm/9rd4gFu25w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:06:b5:15:95:5c:47:f5:4e:d4:4b:f6:5f:37:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e04dd9c82b191a5f09d606ca550c017785aeec4
Validity
Not Before: Feb 1 22:00:59 2025 GMT
Not After : Feb 2 22:00:59 2025 GMT
Subject: CN=a73d3a80244b7c7adf1e5a28e9197d208ec9985c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4b:26:52:50:35:e1:0c:68:af:aa:89:b1:cf:
76:aa:f9:c8:98:ac:17:89:a2:be:9a:54:3e:71:44:
b7:92:10:5f:d2:fe:2e:85:91:6a:b4:3a:d6:4e:72:
2d:49:ff:70:06:30:dd:3c:01:e3:04:44:77:d3:78:
fa:34:8f:1e:6b:48:f4:53:9b:12:db:af:f0:cb:a3:
b1:71:77:85:e7:39:ab:9a:9f:53:fe:cc:bf:8c:20:
a9:a8:4c:b5:45:e6:f2:bb:6b:da:65:0c:91:02:44:
56:d6:52:3c:1a:0c:73:4c:47:2b:4d:33:54:72:4a:
f3:88:dc:39:7b:e2:1c:8c:79:54:8b:2b:88:6a:8d:
c5:d0:05:ad:7e:39:e0:58:d5:82:a5:7f:0a:52:7d:
64:99:ec:04:7e:07:36:07:2b:2a:1d:77:d1:60:80:
d9:db:e9:cc:64:dd:9a:d1:31:1e:9e:aa:cf:ac:9d:
65:d5:a4:6a:d9:d5:5d:eb:58:7b:cb:1a:f3:04:cc:
d9:d1:25:e2:ad:f2:47:ae:fe:0f:ec:45:19:3e:24:
39:9a:85:21:c1:1d:1b:f8:95:7e:da:95:e4:fc:c4:
c0:65:00:a8:d9:c1:85:77:a8:6a:cc:c8:1b:9b:f6:
8b:bb:ea:c5:be:06:9b:30:fe:95:26:3e:02:e3:15:
c3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3D:3A:80:24:4B:7C:7A:DF:1E:5A:28:E9:19:7D:20:8E:C9:98:5C
X509v3 Authority Key Identifier:
keyid:7E:04:DD:9C:82:B1:91:A5:F0:9D:60:6C:A5:50:C0:17:78:5A:EE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgTdnIKxkaXwnWBspVDAF3ha7sQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55b8b2-18d4-4527-8f6b-56e44f9f9914/1/fgTdnIKxkaXwnWBspVDAF3ha7sQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:d1:b8:53:74:b9:ce:e9:07:90:06:df:52:b5:8b:c1:a3:81:
d2:77:42:d9:56:8d:f6:72:b8:f8:51:72:55:bd:3a:c4:b4:15:
dc:55:4a:6f:86:e8:87:78:34:66:2f:1a:93:d9:6f:74:c9:6b:
59:96:ae:ed:e3:b3:22:c8:65:7d:84:c6:f8:62:d7:ad:bb:f3:
4f:b6:05:f4:1c:d8:56:10:9a:fa:92:34:cd:e8:c9:06:9e:07:
ca:71:20:21:e5:79:e3:5b:ce:35:d9:ca:18:af:dd:7f:eb:47:
0b:d5:58:7b:4f:a9:af:ba:4f:39:e6:f4:18:dd:42:c0:d4:e8:
5b:ba:cb:bb:d1:a2:4a:2f:c8:88:c5:9e:5f:ce:06:eb:e5:ad:
b4:b8:5c:bf:a6:8d:7c:89:c4:0e:d9:c1:0a:9c:81:e6:f2:a7:
1b:9f:06:40:df:87:30:5d:88:fd:92:16:66:6a:be:cb:7c:e8:
94:57:76:c2:8b:23:24:cf:db:bb:be:c0:8e:4b:23:77:b0:99:
28:18:35:f6:4a:9a:37:64:3f:0b:3e:05:00:54:62:7d:18:54:
b2:11:e5:ef:c7:62:6d:87:27:8a:f9:b3:4c:eb:08:94:63:f9:
76:0c:29:eb:e9:73:36:9d:94:ee:74:a9:02:b9:be:1e:71:93:
1b:d5:7f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:06:08 2025 by rpki-client