Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: gHKfRrJvhcDoHaAfEd8Lb8KRgkMCW8ph4sSrCpNC0YE=
Subject key identifier: 44:77:12:70:7B:02:8A:CB:53:0B:2E:1E:9E:04:3B:12:69:62:93:41
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 0194C3BE670B90CCB1001CC8BBAD38465786
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 03B1
Signing time: Sat 01 Feb 2025 23:00:22 +0000
Manifest this update: Sat 01 Feb 2025 23:00:22 +0000
Manifest next update: Sun 02 Feb 2025 23:00:22 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: IY28lCT/w8Hu23OUzbnm4UV4GcW54r/E5pE0uLTGM/Y=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:67:0b:90:cc:b1:00:1c:c8:bb:ad:38:46:57:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Feb 1 23:00:22 2025 GMT
Not After : Feb 2 23:00:22 2025 GMT
Subject: CN=447712707b028acb530b2e1e9e043b1269629341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:07:fd:9c:49:e4:08:e4:a0:9f:de:52:0e:fc:
6c:67:3e:c7:f2:47:87:96:a3:38:2d:05:b9:54:e5:
99:42:a1:c0:a5:97:31:ba:a6:ca:b3:1e:7b:c3:95:
09:4c:1a:fa:8e:37:13:31:cc:2b:88:54:95:84:2f:
a0:af:39:94:0d:21:fd:be:7f:90:69:0b:72:8f:95:
ac:73:13:e8:a6:c9:25:ad:69:7c:82:37:d9:28:4d:
19:6a:be:97:7a:c2:4c:a8:a2:7a:ac:11:ae:75:58:
31:f6:28:fa:79:71:57:5b:b0:3e:59:4a:06:41:31:
2f:fc:a9:d0:61:f2:9d:ac:ff:41:c5:f3:8f:a8:de:
2e:01:b3:cf:df:db:f4:f2:57:0f:62:04:1d:28:97:
cc:f5:68:25:3f:24:08:38:01:0e:f5:fd:8a:74:c5:
f1:7d:ab:4d:91:61:af:b1:ef:91:d2:30:c3:1f:04:
55:f0:7d:fc:35:a3:96:fc:b2:00:d9:9d:81:01:5f:
02:4e:36:bd:81:03:58:41:08:bd:c2:c8:6e:c4:dd:
23:da:6b:3b:ea:3a:c1:63:2b:b2:e4:da:45:38:17:
45:14:45:fe:14:5e:b1:9b:8e:5a:83:90:71:a1:e7:
fc:e2:64:10:17:0f:37:87:d1:bf:e3:f3:fd:87:98:
40:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:77:12:70:7B:02:8A:CB:53:0B:2E:1E:9E:04:3B:12:69:62:93:41
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:fc:eb:9b:cd:3a:30:6f:84:8a:82:e0:b4:37:d4:34:e3:75:
e2:cd:c7:bd:41:88:9a:09:86:b6:0a:ba:44:c6:73:a1:e1:eb:
3e:85:a1:17:d1:06:69:c2:0e:ed:36:58:41:68:bd:0d:41:42:
2e:b2:31:f0:94:7d:13:7d:1c:f3:95:88:7b:50:13:ad:c7:93:
c5:94:51:ae:1b:70:80:25:46:58:f0:e8:73:4c:92:6f:28:de:
fb:b7:9b:c7:e1:c5:55:46:21:2b:8d:9e:6b:a4:99:6c:e6:23:
41:f7:f9:44:f6:b1:02:7c:2d:31:a2:b4:a4:d7:7d:e4:94:66:
1b:d9:86:17:4e:58:62:45:dc:38:1c:9e:fc:49:34:04:a3:3e:
5a:5b:16:98:56:3d:3b:cc:c8:76:3d:52:f0:e3:8e:9f:1d:1e:
b6:94:03:dc:93:c3:b3:cf:8c:c2:b0:b9:6e:36:86:c6:b5:4f:
cd:78:1a:9c:ec:f2:b7:3a:6d:06:8c:34:c6:2d:45:23:cb:e1:
0d:4c:a3:33:e0:a9:cb:1f:e6:02:db:46:9c:10:02:7d:c3:82:
20:23:b0:34:e4:68:6b:f6:5b:7a:58:f0:b2:77:ab:f4:01:3b:
71:83:69:35:ad:e6:9e:31:5e:d0:c8:88:88:f0:fd:a2:62:15:
e4:51:54:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:43:13 2025 by rpki-client