Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
File: ij8nyT77e7wLCv6OzCT3A50nUQg.mft (raw, json)
Hash identifier: G9Wa7q4HhB0oaZr2IwxuD2gOvOp6lnDbcRrbB7F6qBc=
Subject key identifier: 25:5E:33:01:1D:34:E0:55:64:C2:29:3D:A8:1E:53:75:E6:F6:8B:F7
Authority key identifier: 8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08
Certificate issuer: /CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108
Certificate serial: 019510900C0DE3D45DDAAC8780AF784D17E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
Manifest number: 024C
Signing time: Sun 16 Feb 2025 21:00:30 +0000
Manifest this update: Sun 16 Feb 2025 21:00:30 +0000
Manifest next update: Mon 17 Feb 2025 21:00:30 +0000
Files and hashes: 1: 4mtjo1wkfTbCTW9KNexHpaJfxb4.roa (hash: NNFjMP/4ryf3yqLdY/nlmC6UZkGbjTY7ealoIUdpyCw=)
2: ij8nyT77e7wLCv6OzCT3A50nUQg.crl (hash: aWFJj8PEvOaNPL0w5Cq2DWmbq7pEN3EzQqLIIrhI3y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:90:0c:0d:e3:d4:5d:da:ac:87:80:af:78:4d:17:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108
Validity
Not Before: Feb 16 21:00:30 2025 GMT
Not After : Feb 17 21:00:30 2025 GMT
Subject: CN=255e33011d34e05564c2293da81e5375e6f68bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:8f:17:d8:32:46:dc:03:05:49:45:b5:7a:
e5:96:00:7f:5e:5b:05:cb:4c:bb:aa:44:0e:30:66:
df:02:1c:d3:98:f5:47:1f:21:46:82:6a:cb:2c:13:
9b:84:db:75:a3:39:79:25:be:19:18:1a:6d:b3:41:
cd:6e:69:ff:df:50:dd:b9:69:7b:06:1b:ee:bd:14:
df:6f:ab:78:8f:00:9c:0b:c8:a3:74:02:33:70:b3:
47:a3:63:f1:98:01:1b:37:5e:34:80:8b:98:55:ad:
b7:20:18:45:7a:1e:52:19:34:f3:9c:f0:02:40:05:
0f:eb:fe:ba:96:ea:46:f7:ec:af:3b:52:5f:93:da:
a6:81:46:79:d6:cf:3d:77:7a:2f:a8:5f:7b:0c:60:
96:e2:28:6b:22:26:13:80:c4:fc:43:43:66:af:e2:
db:88:71:99:5b:f2:09:12:c6:46:e3:5f:f2:f2:3e:
dc:3e:81:06:ec:66:93:46:4c:ff:34:e7:31:27:4f:
da:bf:4e:e1:28:23:9f:16:ec:e4:4a:21:d4:71:85:
5c:1d:c2:f8:f6:12:06:76:8d:68:30:18:d8:4b:be:
20:89:6b:4e:54:f8:33:e4:68:6a:a3:a2:75:ab:d0:
ac:b6:0a:fb:af:5e:a5:9e:8d:03:3b:b5:84:cc:8d:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5E:33:01:1D:34:E0:55:64:C2:29:3D:A8:1E:53:75:E6:F6:8B:F7
X509v3 Authority Key Identifier:
keyid:8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:b0:43:57:10:d1:42:de:c5:cf:2a:6b:b7:a7:99:e9:8e:2f:
0b:4d:b9:d5:0c:ee:fe:cf:63:f5:92:c2:ca:b9:a2:c0:03:ed:
6a:fc:87:53:4e:8e:1d:fe:65:dc:71:d0:c4:22:af:15:e1:4e:
1e:21:4a:f7:68:6b:76:0a:4c:b3:1f:79:16:7b:dc:29:cc:64:
7a:e3:04:87:98:01:25:00:60:60:98:3a:ae:4b:47:a9:55:02:
de:10:37:f2:fe:07:83:db:02:4d:84:c5:01:f7:3f:04:50:c9:
72:ed:c7:b4:6b:94:d2:de:c8:b9:c0:6e:66:aa:18:29:ae:60:
6b:b7:54:40:21:6d:d6:ea:c4:fe:1f:fe:f2:9e:f8:ae:b6:cc:
11:bd:81:e2:93:d7:6e:d1:95:3b:d6:48:73:34:da:b5:be:51:
c3:e2:ef:9a:10:c4:ef:fd:02:9f:50:5c:2b:3a:2b:2a:b1:23:
b0:54:4e:67:50:5c:b4:54:3a:a9:d7:fa:34:9b:b7:a7:18:8d:
1c:eb:a7:09:19:9b:b2:24:e0:9d:15:8d:63:b8:21:1c:59:11:
27:5a:52:c5:a8:15:77:87:b0:6e:40:fb:b1:88:39:99:61:b1:
86:81:6c:91:1b:86:8c:c3:ff:ac:a0:a0:b6:cd:dc:08:37:a8:
53:d0:74:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:46 2025 by rpki-client