Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
File: 86GuCwfNBe4khPTuvNRWhHNHNBQ.mft (raw, json)
Hash identifier: BXSY7sLVPP2cyJiIB8qE2ceRJH6RLisIC4m4ZiNBwZE=
Subject key identifier: F6:47:59:79:70:E5:76:70:12:2D:56:F5:7B:00:E8:31:EB:F3:9D:FE
Authority key identifier: F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
Certificate issuer: /CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Certificate serial: 01958CCE84F6C2F7BF6ADE4716549B8E1A44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
Manifest number: 149A
Signing time: Thu 13 Mar 2025 00:01:39 +0000
Manifest this update: Thu 13 Mar 2025 00:01:39 +0000
Manifest next update: Fri 14 Mar 2025 00:01:39 +0000
Files and hashes: 1: 0yNiuwlEmaGi-GMVCrhtb0jD684.roa (hash: 0JYmDVSwa/kA2DCdsSlQFjDnGZq4KcJ5IykJE11qOfk=)
2: 86GuCwfNBe4khPTuvNRWhHNHNBQ.crl (hash: PzeFyEn4f9lu4d0Su67qbRLj0nCdL3UX7tHATCl6IZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:84:f6:c2:f7:bf:6a:de:47:16:54:9b:8e:1a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Validity
Not Before: Mar 13 00:01:39 2025 GMT
Not After : Mar 14 00:01:39 2025 GMT
Subject: CN=f647597970e57670122d56f57b00e831ebf39dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:ec:2e:3f:20:f0:05:39:41:da:86:7a:73:
b9:5b:ca:c5:31:76:62:43:21:31:43:5e:7b:e4:de:
91:d7:21:85:e9:1d:2f:cb:96:ae:c3:f4:4e:4f:c5:
19:09:ef:9c:69:f0:98:55:f4:02:1e:46:74:b8:49:
a1:8b:a6:c0:c3:01:18:4d:46:ce:b6:46:34:59:66:
ce:ea:89:d0:2c:69:ac:84:46:be:ea:0d:cc:3f:2d:
17:d5:d0:d5:b3:e5:be:77:b3:81:71:cd:2d:a1:77:
0f:4e:62:28:93:50:6f:e9:80:f9:37:53:5f:13:64:
1b:15:6a:c9:ac:b1:5d:81:d6:2b:1b:ea:e4:d6:22:
79:2d:fa:36:9f:09:55:a4:0c:63:a0:65:62:a4:db:
2b:b3:1b:3a:39:26:2b:3d:4b:e5:45:1f:8b:1b:ac:
bf:92:60:69:f1:2e:8c:0a:47:4e:a3:80:9a:a5:46:
5c:be:9f:28:7b:65:71:28:e7:e2:af:2f:f8:91:35:
e1:e5:a0:3a:0e:57:2d:49:0f:57:bc:b6:10:03:85:
f7:22:3b:a0:d2:c9:10:7d:62:2e:3f:8b:f4:f9:d0:
e4:2e:c5:ed:ab:68:a1:46:ce:34:e9:21:cd:e6:3c:
7a:28:f7:54:ec:db:fb:46:ff:45:1b:c0:ff:01:72:
a9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:47:59:79:70:E5:76:70:12:2D:56:F5:7B:00:E8:31:EB:F3:9D:FE
X509v3 Authority Key Identifier:
keyid:F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:6a:e1:b7:6f:66:7b:ac:ee:0a:86:03:77:0c:1a:78:9f:09:
13:91:50:b3:8d:ff:a4:67:d4:ab:7b:8e:90:77:99:fe:45:33:
f5:04:dd:f5:4f:9e:79:0f:dd:16:83:b1:01:61:f8:8e:bb:35:
3a:4c:dd:db:bf:ea:f8:56:2d:db:2b:f8:bd:2e:02:87:ca:0a:
51:fe:f4:6b:8d:6d:6b:86:4a:19:3d:03:52:ba:45:bf:a6:91:
04:fd:f5:84:e1:4d:e7:e0:f9:2d:42:c3:8b:63:d2:74:2a:c7:
e4:4c:e3:9b:44:c4:14:c9:36:99:de:a9:0d:9d:78:45:c1:1c:
3b:75:98:18:56:69:d0:b2:3b:c7:7a:4c:4a:f8:c1:be:b5:b9:
55:03:c5:e9:c7:5a:2f:ea:fc:8d:26:92:f0:e7:60:5f:48:dd:
94:bb:66:b6:83:94:20:89:18:ec:57:28:b4:af:e8:9b:6c:68:
1b:0e:23:7e:7a:ab:e6:44:8a:94:4e:a2:42:6a:e8:d2:d4:17:
8c:c5:5f:21:f7:5d:10:67:79:c4:c9:6b:2c:de:c6:47:2b:18:
f3:41:95:5d:eb:43:f7:84:d4:19:d5:b4:9e:8f:8a:08:5d:f1:
6f:36:61:ad:96:24:e9:fd:4e:8a:f6:46:b8:04:b6:d7:74:ad:
17:97:49:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:17 2025 by rpki-client