Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
File: 86GuCwfNBe4khPTuvNRWhHNHNBQ.mft (raw, json)
Hash identifier: bTNRhHmm+ZSRAV9BvzFDcqxvcfjv1eM9sqlTk0pa6e0=
Subject key identifier: BD:66:43:FD:CF:B8:6E:4B:6D:A6:7F:76:0C:27:D2:03:DA:A1:87:97
Authority key identifier: F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
Certificate issuer: /CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Certificate serial: 019511354C6291ABFDEB9669C8AB8670A09D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 00:01:00 +0000
Manifest this update: Mon 17 Feb 2025 00:01:00 +0000
Manifest next update: Tue 18 Feb 2025 00:01:00 +0000
Files and hashes: 1: 0yNiuwlEmaGi-GMVCrhtb0jD684.roa (hash: 0JYmDVSwa/kA2DCdsSlQFjDnGZq4KcJ5IykJE11qOfk=)
2: 86GuCwfNBe4khPTuvNRWhHNHNBQ.crl (hash: z+xlC4Km/V9vmKu3K/8hPvdzyS1GaR4belGi4RclT8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:4c:62:91:ab:fd:eb:96:69:c8:ab:86:70:a0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Validity
Not Before: Feb 17 00:01:00 2025 GMT
Not After : Feb 18 00:01:00 2025 GMT
Subject: CN=bd6643fdcfb86e4b6da67f760c27d203daa18797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8e:f1:36:21:73:c8:d5:cc:48:88:da:01:6a:
a6:53:c2:c9:52:7f:5e:ec:93:64:4d:c9:6d:52:e1:
a8:fe:89:6d:ea:e3:fd:73:2f:84:7d:4c:a8:17:59:
e2:51:a5:68:20:3c:7d:cd:d5:39:10:98:a7:ee:2a:
72:41:74:37:e0:59:96:59:61:f2:6f:44:66:33:2b:
03:73:94:6a:fc:f1:0f:81:ea:e8:de:4c:06:bc:91:
ba:c9:26:f0:fb:2d:23:78:04:59:ca:4b:75:38:ea:
20:ad:bb:2c:48:b5:a2:33:99:3a:2b:0b:9e:cb:b6:
13:b3:3a:2b:c2:a1:42:35:d6:6a:2b:ee:25:d1:80:
d7:74:1e:0a:16:c7:92:a8:dc:81:8c:33:72:43:c5:
05:33:df:48:ac:56:0f:0d:04:fb:a7:3d:02:16:e3:
d2:07:03:25:b5:da:4c:cd:02:1e:ca:a1:73:b6:9f:
2a:ab:90:9a:b0:25:cc:86:25:e0:1b:33:00:c8:17:
0d:7c:68:fc:db:ab:7c:cc:0a:6b:85:83:1a:ff:17:
1a:aa:a3:83:a2:61:f2:1b:5f:d4:0c:0f:1b:23:8b:
0b:80:1a:23:73:44:d7:d6:8f:07:a9:05:53:9c:bb:
4d:c2:fa:fa:56:b6:09:ec:05:f3:04:44:e8:31:6d:
4f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:66:43:FD:CF:B8:6E:4B:6D:A6:7F:76:0C:27:D2:03:DA:A1:87:97
X509v3 Authority Key Identifier:
keyid:F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:ae:e1:d2:e5:34:8f:50:d6:bf:a8:fe:d8:ce:71:73:0c:69:
8c:2b:ba:1a:6d:f1:57:c8:9f:4a:57:cf:39:2c:c1:cb:d4:58:
9e:4e:24:84:aa:d3:79:8e:a5:8d:93:95:f3:9a:8a:d4:62:45:
11:72:31:fc:99:09:79:6f:6a:11:54:a3:aa:23:35:55:d2:25:
17:a3:0f:a9:83:74:37:0e:61:8e:64:3e:b4:fb:95:db:30:82:
89:19:2c:51:9d:10:b3:d3:2e:40:86:fe:22:09:64:d2:15:ce:
b5:2d:64:a2:83:92:76:02:8a:7a:dc:36:c2:b7:f3:7a:42:a8:
53:a7:66:0b:cf:35:98:bc:7f:2b:b2:d4:9e:60:16:9d:ce:b3:
c3:6e:5e:01:aa:d1:be:85:30:03:c6:be:65:68:6e:7f:7d:db:
c4:9b:4c:b2:22:33:0f:d1:e4:d9:ff:d1:d3:08:07:8c:56:a8:
4b:a3:aa:64:1d:a0:b5:9d:ca:04:bb:ef:3b:cb:44:44:8b:a7:
4a:e9:9d:0d:8d:23:8b:e9:17:c4:7f:4a:57:11:ab:67:4d:45:
f8:23:c1:59:e2:b1:60:22:a9:19:7c:54:b9:c3:d6:b8:7d:a2:
eb:0b:8b:41:d0:c1:a4:61:d4:50:1e:2e:7d:d3:81:8b:f2:22:
91:e8:b5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:04 2025 by rpki-client