Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
File: SrfcA3ifWGIbJejdDZJdyRtKWqI.mft (raw, json)
Hash identifier: kAfYIzsAuYpv8vJkyv19fxLnST9n2sVvfJS/SQjeld0=
Subject key identifier: ED:A1:CB:B8:D1:64:33:A9:D7:BB:01:B1:C5:46:D7:D5:D9:C2:21:AF
Authority key identifier: 4A:B7:DC:03:78:9F:58:62:1B:25:E8:DD:0D:92:5D:C9:1B:4A:5A:A2
Certificate issuer: /CN=4ab7dc03789f58621b25e8dd0d925dc91b4a5aa2
Certificate serial: 019511348A313BB0807CAA9C724B1E97C33A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SrfcA3ifWGIbJejdDZJdyRtKWqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
Manifest number: 08FB
Signing time: Mon 17 Feb 2025 00:00:10 +0000
Manifest this update: Mon 17 Feb 2025 00:00:10 +0000
Manifest next update: Tue 18 Feb 2025 00:00:10 +0000
Files and hashes: 1: EmdE4lFlfaABPtiZtlnbFIKNWhE.roa (hash: xZDQuK6O09neLie5Q456W4oztNFuHLsLoArEyWHRJSU=)
2: SrfcA3ifWGIbJejdDZJdyRtKWqI.crl (hash: aruzPOdsdDk7PwAcEUfifOgVadNR38rYnN7CS8N2qeo=)
3: lCpE9-_9vA0HzQAwKrWQ7gX2Gi8.roa (hash: YkwTTveNH0IQGCLC0ZIMEDB0zjPdx3yFhcYm5gkoPpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SrfcA3ifWGIbJejdDZJdyRtKWqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:8a:31:3b:b0:80:7c:aa:9c:72:4b:1e:97:c3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ab7dc03789f58621b25e8dd0d925dc91b4a5aa2
Validity
Not Before: Feb 17 00:00:10 2025 GMT
Not After : Feb 18 00:00:10 2025 GMT
Subject: CN=eda1cbb8d16433a9d7bb01b1c546d7d5d9c221af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:26:3b:23:ae:95:d9:53:ac:7b:38:cf:a5:
8f:f8:f1:ad:36:46:99:a2:c5:24:49:b8:38:64:1f:
f5:e3:3c:68:b3:aa:b9:80:84:97:a5:8d:55:c6:80:
4d:35:12:41:67:3e:cc:5e:80:55:07:13:15:4d:45:
c8:d6:23:64:9a:f5:2f:fd:d3:68:f6:ed:3c:39:1d:
8a:36:53:e0:13:19:ff:6e:1b:05:75:b1:a1:85:8b:
1d:ad:df:19:fa:d9:77:2a:fe:66:8d:74:d4:a3:40:
65:55:9e:f1:b8:71:24:22:71:90:2a:c5:60:86:1e:
14:2b:f2:0e:e3:f8:5a:7d:15:84:1d:fa:c4:3b:20:
23:e7:54:0c:0e:db:53:19:15:34:e7:b9:a0:3c:c4:
3b:7b:6b:d9:3d:00:bd:fc:2b:e7:eb:31:0d:db:7c:
f3:48:3c:e0:8a:3b:63:a3:28:fc:4e:72:12:31:59:
5f:31:18:29:39:11:f8:39:7c:50:c0:40:3a:45:22:
03:31:43:06:9c:2f:1e:90:cf:a2:5a:e6:76:e7:5e:
85:6e:55:bb:a6:6a:3f:f4:7e:0b:63:6d:dc:68:18:
de:9b:9a:92:82:14:d3:55:14:2f:4b:b8:1a:73:c2:
63:16:5e:01:26:4f:4f:60:09:3c:7f:6f:bd:b5:39:
5e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A1:CB:B8:D1:64:33:A9:D7:BB:01:B1:C5:46:D7:D5:D9:C2:21:AF
X509v3 Authority Key Identifier:
keyid:4A:B7:DC:03:78:9F:58:62:1B:25:E8:DD:0D:92:5D:C9:1B:4A:5A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SrfcA3ifWGIbJejdDZJdyRtKWqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:c9:a8:f6:7b:32:01:06:32:20:1a:85:43:84:19:f2:9e:cd:
20:bf:3d:0d:d7:e2:c2:09:09:82:17:46:02:a0:64:39:b2:ee:
4c:5d:3a:5e:e3:60:98:c3:61:5c:e9:80:6c:07:bf:ab:9f:4b:
0f:07:98:d7:ce:9d:77:d9:8e:6e:73:9d:42:23:0b:4d:eb:2f:
3e:c7:95:da:54:1b:bd:d2:e8:3d:73:02:5d:06:fc:37:ac:16:
e9:5f:ef:a9:60:16:03:28:f3:d6:c6:7d:e1:1e:fc:95:5c:55:
2a:8b:19:98:2e:28:c0:30:4b:5b:27:07:ee:a4:af:84:1c:6e:
43:e2:12:84:3a:b3:58:b2:32:71:ad:0c:dd:dc:4f:b6:df:79:
38:85:08:76:4a:67:15:05:ee:e9:06:83:01:ac:e2:c1:93:3c:
ed:f4:81:01:52:c2:fb:bb:b2:0b:c0:5a:cd:d4:59:bb:39:8d:
d0:16:89:56:f1:06:f5:e6:be:87:67:85:7a:cb:4e:1e:b6:3c:
b2:59:8d:c7:32:30:57:f5:18:39:dd:63:9c:54:d8:68:19:91:
20:86:8c:f9:52:e8:2b:82:f7:62:ff:bc:af:c7:05:b4:65:cd:
cb:e3:b3:3d:13:5f:f5:9f:7c:37:c2:9f:26:65:83:61:63:b5:
57:88:c5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:28 2025 by rpki-client