Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json)
Hash identifier: kF5+cJMdggLkPEXYQhfBKvuIv1SOWsZE+gJWKiG3pjo=
Subject key identifier: 0D:A9:E5:EF:B1:DB:D8:E2:A2:1B:D0:E3:BB:B6:F2:9C:79:46:FA:84
Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415
Certificate serial: 0194C3F575A6E9E0AF1F9B2E6C00DA46B9FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
Manifest number: 142E
Signing time: Sun 02 Feb 2025 00:00:31 +0000
Manifest this update: Sun 02 Feb 2025 00:00:31 +0000
Manifest next update: Mon 03 Feb 2025 00:00:31 +0000
Files and hashes: 1: L587eFkH5wYc14IkuF8E7of-x9o.roa (hash: qZjZeJL5jZ5Dikm84ADOgn1QShjJOm5n3wbg8yoD9PY=)
2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: Te6i+QyaLWzoZ/zmxrGNnSJrowiDCFNuz8aQOkh6YmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:75:a6:e9:e0:af:1f:9b:2e:6c:00:da:46:b9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d16240897b01305681c9425fe523f58fab27415
Validity
Not Before: Feb 2 00:00:31 2025 GMT
Not After : Feb 3 00:00:31 2025 GMT
Subject: CN=0da9e5efb1dbd8e2a21bd0e3bbb6f29c7946fa84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:10:83:1a:62:64:95:a3:ce:72:32:5f:d3:6e:
14:7f:62:2a:fc:61:bb:20:75:7b:3a:b4:9f:db:a5:
ab:4f:3c:38:a6:10:64:e4:43:6e:60:da:28:de:1c:
75:c0:1e:1e:8b:b0:85:81:6b:67:2b:46:d7:8a:b2:
fe:02:13:b4:74:d9:3d:9c:a6:e7:49:59:db:f7:14:
3c:2f:6f:53:54:9f:7d:d8:b0:07:fa:a9:34:11:f5:
8d:d7:7d:87:f0:8f:60:29:b3:0b:65:d5:da:9a:43:
68:b1:84:f9:4f:cb:61:fa:db:cd:aa:a5:27:0f:f8:
43:9d:e6:75:ca:50:6b:e1:72:33:e9:7d:b3:6c:d7:
7e:54:60:51:3c:ec:16:21:7a:8b:01:ab:18:98:11:
f6:06:f8:92:41:de:5a:fe:de:fb:f2:d9:4e:51:7c:
49:eb:1c:68:8e:87:53:b7:02:3b:67:d9:23:59:b5:
76:54:f5:95:92:74:e6:00:0b:5b:63:56:3c:df:2d:
6f:cd:1b:14:d1:42:dc:8c:e9:61:f7:0b:8f:b6:9f:
b5:45:1a:58:b2:d6:0f:4b:c5:fc:47:4e:e6:3d:42:
2f:00:02:9d:de:43:de:53:ea:6e:73:4c:a6:ef:b6:
a2:bf:7d:78:72:fc:79:dc:13:c7:19:ee:f7:0a:ee:
b4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A9:E5:EF:B1:DB:D8:E2:A2:1B:D0:E3:BB:B6:F2:9C:79:46:FA:84
X509v3 Authority Key Identifier:
keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:a0:28:87:ea:65:3b:77:20:de:f8:8b:47:eb:32:7a:fb:58:
2e:39:83:55:59:2d:02:a5:80:ba:b9:d7:60:76:66:ad:d9:69:
b6:fb:2c:60:88:3b:29:d1:7f:e0:18:e1:b5:1a:60:26:5c:d9:
79:91:8e:34:c8:23:cc:cd:48:ad:e6:36:74:d3:49:80:89:1a:
d7:bc:11:dd:96:5a:8c:2e:64:c0:5c:da:89:3d:c3:85:e3:97:
a6:b1:8f:78:1c:c9:1f:c0:4c:a4:61:dc:1b:56:d6:83:82:63:
36:2c:b1:3d:72:c3:7e:cb:91:21:cf:ed:48:7d:a3:16:33:2e:
da:a5:a9:33:48:1c:cb:ab:25:c6:77:62:a5:fb:e7:f2:a3:94:
6a:78:be:4f:e3:0a:bc:34:71:b0:e7:53:ed:7e:85:5a:f2:e5:
ea:b9:6b:93:ea:88:12:06:c5:e1:b1:3f:c7:3c:fa:2b:99:70:
9c:49:ff:3a:76:b9:7d:7f:7e:39:68:bb:86:a9:4d:fe:16:c1:
58:81:5d:8a:b0:c7:54:4b:09:62:8c:99:40:b9:c2:3f:60:3e:
f6:92:71:a0:e9:9d:c7:1b:24:62:db:6b:c4:29:0a:55:8c:98:
6c:56:a1:02:ce:99:ff:8c:67:3e:28:72:da:b4:76:03:6b:a3:
5a:ca:63:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:05 2025 by rpki-client