Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: zEysMwPsPAMUvBc3J+S8RSDNpDiYqFhGsaiC1hN8onI=
Subject key identifier: 80:87:DF:10:19:B3:D0:30:08:1D:AA:B7:CE:A0:53:BE:55:F0:12:FD
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 019510C6FF2750E40994822BCA50E6EED7C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 044C
Signing time: Sun 16 Feb 2025 22:00:31 +0000
Manifest this update: Sun 16 Feb 2025 22:00:31 +0000
Manifest next update: Mon 17 Feb 2025 22:00:31 +0000
Files and hashes: 1: j0Asbb5ngsOWlyvv7kth_3yoBYM.roa (hash: O/JfF/netiv5OyRHt3hhhICYzLbMzCW+fJQdQl7HVfM=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: iWF4NYcGhm8LA+mLFDzpXVKvn0RQA/HU8GSW7XcpXL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:ff:27:50:e4:09:94:82:2b:ca:50:e6:ee:d7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Feb 16 22:00:31 2025 GMT
Not After : Feb 17 22:00:31 2025 GMT
Subject: CN=8087df1019b3d030081daab7cea053be55f012fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:93:19:bf:2c:dd:1d:d1:68:a1:77:69:0b:04:
8f:b2:f7:dc:5e:ed:6e:f7:0f:89:f0:ab:c7:de:99:
25:57:30:dd:c8:1c:f3:50:db:62:62:b8:ec:15:c4:
08:9e:15:0c:9f:50:b9:d9:f2:f1:4e:51:46:63:cc:
8f:09:e8:b2:44:22:38:5a:3d:53:3e:95:ad:95:7f:
bd:6d:3b:9e:a3:c7:45:57:5b:ec:31:a4:b4:c0:73:
09:ab:74:a1:42:52:d0:05:98:c3:62:2c:7e:ab:1c:
2b:f2:ae:d2:be:5d:27:11:60:41:67:fe:b5:fc:f1:
65:25:bb:12:ba:ff:70:c8:0e:f4:70:5f:9d:57:99:
22:2d:7a:84:e8:81:21:2d:43:c7:0c:22:d1:64:f5:
1e:6b:29:5b:1b:e2:cd:f1:3a:28:3d:5a:91:d8:7d:
c0:77:f4:41:5a:a6:d7:b3:91:9a:e1:ea:38:f2:4e:
ce:18:8b:77:e3:7f:05:0a:73:73:64:30:a3:ef:9a:
11:2d:76:b1:46:50:08:f6:6d:c9:7a:23:31:c7:e8:
13:55:bd:78:36:cb:eb:9b:3b:11:db:59:21:30:de:
a1:d3:fd:ee:e1:48:0c:13:a6:6d:ac:be:c3:23:8d:
78:c3:65:97:ee:03:d6:c2:7f:0e:ca:f4:58:47:c3:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:87:DF:10:19:B3:D0:30:08:1D:AA:B7:CE:A0:53:BE:55:F0:12:FD
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:cc:09:16:31:98:94:63:98:3a:7e:fe:0d:d0:d9:0f:87:89:
88:ef:cc:75:35:a2:00:12:ca:42:de:96:44:6c:53:53:ab:c6:
84:d8:e2:4b:b9:d0:ee:63:0a:51:ce:d8:d3:2f:fb:c3:b0:d2:
eb:a0:00:13:db:ea:49:b7:ec:8b:e5:6f:e7:63:77:b1:c6:ba:
d1:14:ed:73:55:48:e3:a1:7c:5a:32:e1:55:10:69:56:4e:d5:
51:02:2b:57:1d:62:12:50:28:4d:00:f6:41:2f:d5:ef:71:7a:
74:d4:ce:af:b7:3b:c1:7a:6f:33:94:3b:ce:cb:9f:94:69:c1:
24:27:fa:f7:a6:b0:00:6e:23:60:5f:bf:01:a0:0f:fe:e6:69:
db:ae:28:48:ff:39:3e:81:9e:7e:76:79:f4:3b:28:2c:a2:93:
a4:14:f6:c7:17:23:5f:be:f6:df:44:70:4e:1b:b8:4d:ff:ed:
b5:b0:07:e8:9d:d2:16:72:99:5d:72:d1:28:ba:82:a7:b8:1b:
3e:6d:cd:97:f1:f5:c3:d9:7a:68:0f:18:39:57:16:ac:f3:3d:
fb:18:79:0f:00:6d:c5:d3:c2:ec:08:a3:20:33:e3:b6:15:5e:
a8:b9:2b:f1:b1:6e:81:71:bb:a0:c3:c3:ef:99:f5:ce:fa:5c:
f0:f2:c1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:07 2025 by rpki-client