Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
File: k0S0h58Z7nGaNRRjABcm9obWWe8.mft (raw, json)
Hash identifier: yIkDeqpqg6BYs0e+m7hGqy4DNN8S+zJaO/Ea3g+q+DU=
Subject key identifier: AD:21:0F:EF:18:53:CC:0C:10:35:EA:22:95:2A:40:AD:08:BC:70:A2
Authority key identifier: 93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
Certificate issuer: /CN=9344b4879f19ee719a351463001726f686d659ef
Certificate serial: 01951134A50CA773771D1BEBE6E80ECEFE2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 00:00:17 +0000
Manifest this update: Mon 17 Feb 2025 00:00:17 +0000
Manifest next update: Tue 18 Feb 2025 00:00:17 +0000
Files and hashes: 1: Sp6LS-Lr7aNgCkiG-x4vIYL0m7M.roa (hash: 4a/RW16MYDyNLA++zl3ynSiVWGswaNsaMa2lua4RkWg=)
2: k0S0h58Z7nGaNRRjABcm9obWWe8.crl (hash: xmxoxJYju0mnaPEAs1Zv/mJIEXnQVXf9WHIqKBPcZW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:a5:0c:a7:73:77:1d:1b:eb:e6:e8:0e:ce:fe:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9344b4879f19ee719a351463001726f686d659ef
Validity
Not Before: Feb 17 00:00:17 2025 GMT
Not After : Feb 18 00:00:17 2025 GMT
Subject: CN=ad210fef1853cc0c1035ea22952a40ad08bc70a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ac:79:44:b0:73:63:85:2a:a6:cf:e6:62:48:
b5:d4:6a:0f:de:71:33:a7:4c:d5:eb:0c:01:62:17:
79:6b:12:e9:b7:75:95:30:d6:0f:d9:cd:c3:48:c1:
0f:cd:6c:b9:3b:54:52:83:da:18:3d:a7:c8:ff:4d:
92:d0:40:65:26:50:db:cc:df:d5:4c:cc:a6:88:f0:
85:5e:8c:3c:72:51:91:a4:b3:fd:77:3f:5d:8c:97:
fb:69:81:3e:0d:72:34:1a:42:c3:92:63:32:c7:aa:
ab:03:57:c1:55:89:c7:3e:d2:04:4e:6e:4b:bc:9a:
dd:b9:2a:4e:38:26:d7:c8:e1:81:b7:97:98:56:0c:
93:08:fa:53:be:fa:2e:71:3a:f2:df:d4:ec:f4:c0:
19:d7:ac:a9:dc:fe:e4:8c:fc:74:4d:95:e8:87:36:
37:61:7e:12:f7:8c:89:72:ee:4a:13:55:11:41:e6:
a5:12:47:79:35:cf:05:21:e9:0a:11:d3:8d:fd:bf:
80:b0:cd:7e:af:f9:fe:d8:46:98:be:aa:26:cf:cf:
bc:98:6d:b7:e6:00:1d:77:53:ac:38:51:72:82:01:
c1:7b:84:32:47:b2:1d:bf:fc:03:3b:a8:f5:63:82:
aa:91:2b:1e:21:37:fc:4c:23:6e:9e:bb:c4:19:86:
e0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:21:0F:EF:18:53:CC:0C:10:35:EA:22:95:2A:40:AD:08:BC:70:A2
X509v3 Authority Key Identifier:
keyid:93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:9b:07:c5:25:c0:68:eb:e7:e0:30:6c:6f:9a:14:84:03:c7:
5f:69:e2:33:17:46:79:42:34:1d:9e:a0:62:a4:c5:5f:99:12:
b4:58:2f:69:fb:04:46:0c:fb:9b:01:48:c5:e0:81:c6:c9:e2:
57:51:cb:b2:64:0a:2a:ff:f5:93:09:c1:0f:5a:d9:01:81:bf:
25:ca:33:ef:7c:38:0c:c8:8b:45:00:1a:b0:7b:f9:55:e4:e4:
88:34:66:6d:21:ac:24:3b:c7:5d:8b:98:86:11:69:d3:22:d7:
d7:c2:a3:7c:50:ee:de:f3:86:d4:62:8c:88:d1:1d:d5:47:88:
af:1e:81:df:99:81:9c:01:ce:13:c3:57:e2:82:b9:0f:55:53:
62:24:b2:8c:2e:cd:d3:ff:bd:be:e8:9b:95:f7:ba:1d:92:15:
eb:2e:09:fb:57:2d:04:5e:70:52:8e:a0:b5:d8:67:43:bc:ec:
0e:6a:d3:a3:1b:5a:6a:b4:da:c8:ba:d6:cf:f1:0d:dd:83:60:
62:d7:30:8c:fc:1d:46:87:7f:3c:bd:a0:6d:61:a2:39:3e:6e:
8e:59:13:82:7c:64:4e:42:b4:9c:62:f2:76:f5:8b:12:72:c7:
31:bd:53:fe:6e:ea:51:f5:61:96:91:c8:c5:39:93:29:4f:37:
d9:d2:6b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:16 2025 by rpki-client