Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: iSqQz7wquVLZikqBLCBIz+xzGWWJdxCi26cQHkF0CQ0=
Subject key identifier: 3D:79:89:E2:6A:48:97:D0:2F:04:59:E2:79:4D:65:AF:F8:71:5D:2B
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 019510C80A686E2FFFE0086866235FBA9D9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 1455
Signing time: Sun 16 Feb 2025 22:01:40 +0000
Manifest this update: Sun 16 Feb 2025 22:01:40 +0000
Manifest next update: Mon 17 Feb 2025 22:01:40 +0000
Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: Xmkk4L6afeC0WdLTm/wjD6tpBbVCupuc4VxlsRmeTY8=)
2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c8:0a:68:6e:2f:ff:e0:08:68:66:23:5f:ba:9d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Feb 16 22:01:40 2025 GMT
Not After : Feb 17 22:01:40 2025 GMT
Subject: CN=3d7989e26a4897d02f0459e2794d65aff8715d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b4:40:b5:2a:7c:08:21:11:29:ee:c6:d7:25:
ed:df:2c:bd:0d:5f:f4:de:27:1c:c9:7a:ac:d3:14:
c7:8d:68:48:6e:54:04:ca:1e:73:9a:b3:d5:e0:a4:
dd:9e:51:5e:85:0e:eb:a7:40:17:3a:8a:4c:d8:72:
ce:78:ea:c3:50:85:0f:ad:9d:2d:2b:93:70:71:90:
96:55:4c:95:4f:c3:1d:5c:ff:ab:07:28:19:63:4e:
46:36:68:42:b1:6d:e6:91:b0:26:1a:a8:2b:2d:5e:
7e:08:3a:35:ae:f6:13:8a:fa:af:1e:18:ef:8a:3f:
53:4f:de:48:b2:0c:66:8d:70:5f:db:33:6d:42:38:
15:78:9b:15:81:89:22:c9:5b:90:9d:fd:77:37:bf:
c8:a1:18:36:c4:59:35:f3:91:a6:75:ec:42:53:2e:
6d:ef:65:8f:dd:ac:23:5a:ef:71:c9:b6:04:22:02:
6a:f7:c2:54:b0:8b:f5:9f:e9:93:e0:d8:c4:33:fa:
e9:4a:b4:a4:d2:74:9a:c8:9d:6e:ce:90:74:2c:4b:
19:90:f3:48:a2:48:34:21:b0:bb:b5:b7:17:4d:39:
e4:73:73:4f:35:33:18:ad:7f:a7:14:3c:5b:70:6f:
ed:66:75:2d:8f:e3:7d:06:43:61:06:64:c7:76:25:
77:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:79:89:E2:6A:48:97:D0:2F:04:59:E2:79:4D:65:AF:F8:71:5D:2B
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:2e:fc:c3:a4:22:75:a5:3a:7c:3f:65:78:c0:8c:ca:1d:87:
bc:f7:83:94:b6:e9:7d:6a:f2:c2:e0:6b:15:df:f4:cf:18:b9:
8f:90:f0:44:d0:8b:16:cd:e6:66:38:7d:54:a0:89:85:50:36:
52:86:bd:d9:f7:90:e1:d5:f8:8d:9d:f8:b0:2d:cb:53:af:3f:
f6:1d:44:a9:ba:c7:86:83:05:75:5b:0c:84:f8:57:f1:27:cf:
ec:38:0e:4a:7b:92:12:44:fc:33:4e:46:ad:68:e5:cf:f4:67:
74:0a:0f:73:3f:fc:bb:b6:3e:a6:e1:f9:24:13:4e:d6:de:5a:
9f:42:4e:60:c0:25:b5:5d:37:bb:64:50:98:ec:57:b1:1a:25:
1f:5f:e3:b0:d5:5b:bd:ed:26:8f:97:54:1c:2d:9d:0b:6a:b3:
d6:5a:a4:69:65:f4:5a:80:25:80:6d:20:d8:b5:2f:c7:83:85:
fe:a0:d1:2a:fc:00:e2:25:9e:29:3a:b2:44:fe:3d:ba:dc:b5:
58:31:d3:f4:2d:c3:64:f2:25:b1:b5:a0:5e:fc:32:5e:2e:a8:
af:2f:85:cc:2e:44:c9:7d:df:9a:b0:c0:b2:78:cc:f5:84:cc:
a3:0f:5b:a0:0e:4e:76:8d:16:34:4f:38:e5:25:10:41:74:4a:
a8:91:a6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:04 2025 by rpki-client