Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File: 7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier: BJVmy6I9pn9fOAY4jV83DGkWqq1Nb4vUrXyeAzgzJQQ=
Subject key identifier: 3E:17:35:EB:76:31:06:A9:C4:44:86:C4:78:94:6B:DA:5C:1E:0A:DF
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer: /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial: 0195113562F52F226D25F15AF1C09C852710
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number: 1452
Signing time: Mon 17 Feb 2025 00:01:06 +0000
Manifest this update: Mon 17 Feb 2025 00:01:06 +0000
Manifest next update: Tue 18 Feb 2025 00:01:06 +0000
Files and hashes: 1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: mjRuK3aSkyNFnRP2ZXowQItabETcmRB80oaRRiwk7Jg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:62:f5:2f:22:6d:25:f1:5a:f1:c0:9c:85:27:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Validity
Not Before: Feb 17 00:01:06 2025 GMT
Not After : Feb 18 00:01:06 2025 GMT
Subject: CN=3e1735eb763106a9c44486c478946bda5c1e0adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:13:59:e0:71:b8:da:fd:34:00:48:75:06:93:
50:87:aa:9e:82:57:87:36:fe:90:60:4b:85:40:16:
de:fa:f4:36:1c:aa:6a:9d:a2:13:f8:0d:e9:43:1b:
ca:47:04:fd:26:f2:4b:6b:6b:fd:cc:22:98:0a:04:
41:5f:ce:a4:b7:6a:fb:16:49:aa:a7:ca:42:89:54:
96:39:6b:16:a5:8f:02:34:25:88:57:92:01:11:72:
02:03:0c:99:a1:35:aa:fb:81:da:d4:77:54:d5:a7:
65:96:c9:f8:fb:42:4e:3e:8a:c9:08:9f:98:ba:2e:
6e:7f:2c:8a:21:f2:d3:7d:2b:05:85:71:c3:7c:59:
78:8f:d6:d3:03:56:32:35:e8:6b:af:17:80:d3:de:
0d:53:35:50:c2:69:a0:c6:31:4a:64:e0:39:36:d3:
bf:18:e4:b4:fa:b2:34:ab:5d:f2:6f:92:70:ad:3b:
ab:0d:78:83:2a:52:4e:66:f1:d8:59:f3:c0:51:49:
15:4c:68:7d:84:7d:a2:e2:30:ed:34:b0:70:c1:40:
6e:4c:bb:cc:90:ea:8b:62:8b:55:af:9b:10:09:7e:
31:38:0c:05:da:c7:06:82:30:3d:9d:11:ac:df:e7:
93:ec:07:50:ba:94:34:cb:3b:8a:3a:d8:0f:c3:3c:
36:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:17:35:EB:76:31:06:A9:C4:44:86:C4:78:94:6B:DA:5C:1E:0A:DF
X509v3 Authority Key Identifier:
keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:7c:82:9e:a0:60:e5:e1:e0:cb:e0:b2:a7:bb:57:0d:f5:eb:
1e:34:40:88:f8:ff:99:58:83:4a:27:bf:95:50:2b:de:ef:78:
70:24:9d:53:fa:80:8b:82:49:bc:2a:0a:bb:f6:c8:0a:79:39:
b5:f0:b0:04:6e:e4:81:7a:e5:50:f8:9a:3b:d9:86:35:5a:e1:
a4:e5:c3:de:50:c3:19:2e:7a:d1:11:b1:c3:b2:0d:42:b4:53:
0c:41:a4:86:95:86:69:2c:8d:a2:77:b6:7d:fc:ca:56:97:ee:
d4:ed:2d:47:4c:07:b4:23:5e:3e:40:80:15:4f:7e:79:18:21:
47:00:02:08:6d:b7:3e:76:4a:33:bf:c5:dc:99:50:46:81:da:
9c:78:9a:cc:1d:5e:13:56:fd:eb:26:ba:24:80:ef:bb:99:8f:
b7:7c:42:d3:97:35:a9:c5:1d:9d:1e:2b:e8:74:0d:44:de:80:
25:4e:05:4e:26:7f:5f:b5:36:8e:39:be:54:fd:cd:c0:38:bc:
cd:21:00:a5:11:24:e6:ff:32:a6:04:ff:7a:38:f7:08:85:77:
b1:fa:0c:be:76:07:ee:12:60:5e:06:97:e9:1a:3b:d6:47:f8:
1c:0b:7e:d0:96:48:31:3b:41:60:bb:77:87:60:0a:1f:5b:b5:
44:a1:ac:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:03 2025 by rpki-client