Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
File: s90R00a2O7HrIqB8JswSkaKgaJU.mft (raw, json)
Hash identifier: 7FOgqqrz7hWighdME/EqCbpLxVeMySObzwUUwE0NnSE=
Subject key identifier: 01:D9:7F:08:01:55:5B:5B:08:20:7C:D9:1D:8C:B2:39:B6:0B:02:21
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 01951210412978F22AA64E1ED911A41E1AA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
Manifest number: 0C62
Signing time: Mon 17 Feb 2025 04:00:09 +0000
Manifest this update: Mon 17 Feb 2025 04:00:09 +0000
Manifest next update: Tue 18 Feb 2025 04:00:09 +0000
Files and hashes: 1: DUVtp5rmZWhjlPTwXejQEd3V8J4.roa (hash: qTcPo/VJaQTji8d15MDDjiWvnKJ389xtHOegN0VgXp0=)
2: s90R00a2O7HrIqB8JswSkaKgaJU.crl (hash: 2iHLYZ5JOfuIef8vFeBSOTCzR/gAY9vr51kSlgxE4bI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:41:29:78:f2:2a:a6:4e:1e:d9:11:a4:1e:1a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Feb 17 04:00:09 2025 GMT
Not After : Feb 18 04:00:09 2025 GMT
Subject: CN=01d97f0801555b5b08207cd91d8cb239b60b0221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1f:dc:56:32:48:8a:f4:da:8b:de:44:46:a6:
2f:71:25:de:d7:c9:26:19:0b:e6:e9:de:19:15:d1:
94:44:f4:eb:25:0b:d7:1f:7c:e8:ad:56:6c:96:61:
1b:03:cb:be:8f:39:9a:89:ab:b4:cd:73:ba:47:e2:
32:46:74:73:09:ea:2a:da:e4:aa:f8:84:e6:6f:99:
c9:55:bd:76:68:78:9e:7a:27:9e:a3:4d:89:a9:ea:
96:df:d0:dd:14:d4:88:94:e1:88:1f:6e:a9:54:63:
d3:95:45:1d:2f:a0:85:7a:17:d9:9b:2f:c4:84:99:
11:82:cb:37:18:0a:6d:0d:f1:13:20:2a:2d:40:27:
4a:7d:fe:22:c4:12:36:69:a6:fc:95:54:21:49:6c:
54:f1:99:38:9c:62:21:84:91:95:b2:5f:a4:aa:a9:
4f:c8:5f:9e:24:28:28:97:23:1a:51:a8:48:d8:a0:
ca:1b:98:ac:be:cf:4f:ab:e1:d5:9c:3c:1c:9f:6c:
a3:ee:22:79:2c:de:a0:3d:1e:36:41:07:7e:92:51:
b6:7a:3d:72:40:97:a2:3c:db:d1:a4:c4:6a:3d:d7:
bb:88:d9:f5:c2:25:57:61:6e:7d:26:f1:f2:ef:e1:
8c:17:85:03:02:fc:01:1d:8a:6e:90:d2:40:c1:6c:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D9:7F:08:01:55:5B:5B:08:20:7C:D9:1D:8C:B2:39:B6:0B:02:21
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:af:3a:9e:57:08:f3:ea:a2:43:26:cc:99:e2:4a:53:ff:6f:
f8:a9:75:f4:a1:fb:72:d1:87:34:dc:86:23:85:27:e5:a0:36:
b9:0b:59:59:d8:0e:ac:fd:38:00:32:72:86:34:87:a7:35:0d:
ee:32:e3:44:e4:df:9f:e7:0c:15:f2:97:7c:af:c6:db:f5:38:
7e:07:e1:98:8d:d7:9a:3b:32:c8:5f:b6:31:53:ba:65:96:47:
ff:8d:3f:33:80:0e:43:ee:80:ac:3f:69:18:b7:40:b7:8a:9d:
48:0b:f8:6f:31:53:34:22:53:03:15:31:fd:97:61:77:71:f1:
ae:bd:73:66:76:9d:36:7c:3c:35:86:c7:30:97:d8:ca:f2:5d:
d6:e9:6c:6b:80:36:9d:46:1b:f3:b1:e4:d4:49:3c:a1:5c:01:
be:51:62:ff:67:0e:b4:f2:2b:b5:0e:20:6f:97:3d:6f:23:cd:
78:c8:bc:48:33:a1:0d:b2:2f:3d:79:da:5e:f9:a1:c9:23:9a:
13:ce:bb:23:e2:e4:e5:8b:89:3e:06:7c:51:e5:b5:ad:40:8d:
ba:1a:a4:b5:a0:ca:35:60:04:3f:74:b1:30:c5:8e:3a:33:bc:
d7:fd:ed:41:c2:82:fd:08:2c:aa:88:13:7c:2f:4c:fb:58:47:
86:74:9c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:24 2025 by rpki-client