Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: A3m/r417DwdfXSEHDEtaW4wI8rOwRshL27p5nnVitRg=
Subject key identifier: 5A:BC:D2:92:32:82:34:1A:24:9F:4F:E8:08:2A:FB:69:6E:25:37:FD
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 0194C49A06B82AC4314523AF89A98E44BD41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 90
Signing time: Sun 02 Feb 2025 03:00:16 +0000
Manifest this update: Sun 02 Feb 2025 03:00:16 +0000
Manifest next update: Mon 03 Feb 2025 03:00:16 +0000
Files and hashes: 1: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: npc1MlzKRR5CN4yOHQyQmgZJIA3KV3/yb2mjRuC13s8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:06:b8:2a:c4:31:45:23:af:89:a9:8e:44:bd:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Feb 2 03:00:16 2025 GMT
Not After : Feb 3 03:00:16 2025 GMT
Subject: CN=5abcd2923282341a249f4fe8082afb696e2537fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a1:88:23:00:30:eb:55:3e:27:90:b7:c3:3c:
e3:d4:87:84:c0:fd:4b:40:ca:a2:0e:cd:99:9d:b9:
fc:ae:1b:83:64:52:28:ce:d5:62:05:89:09:a5:28:
fc:37:2f:d1:da:0f:c6:77:4b:9a:5a:39:a8:42:ba:
4a:11:b5:54:03:c1:00:e5:78:42:ff:d0:24:a2:67:
41:5e:37:12:8b:97:09:e7:55:0c:da:f9:c3:3e:b8:
d5:a9:16:dc:bc:b5:40:9e:bb:ed:11:29:65:3a:a4:
14:66:22:a1:db:eb:b9:12:f3:ea:6b:23:28:f4:7e:
16:69:fe:29:83:40:80:af:23:27:3d:30:d7:d5:1b:
de:27:49:80:d5:e4:e5:39:a7:a5:45:35:01:28:fc:
dd:0f:62:b0:94:ba:30:99:b0:15:7e:61:4c:6a:30:
27:42:ef:59:94:af:77:e2:09:df:8d:bb:f3:73:4b:
67:48:83:ff:4d:c1:10:81:cd:de:15:6f:ee:32:b7:
b9:a6:83:60:45:95:eb:bf:27:bd:ad:54:12:b9:0d:
9b:9e:06:7d:68:65:ce:c6:74:89:96:26:ef:5c:ad:
af:10:aa:6f:c6:10:7c:f7:7a:07:6b:2b:e2:2f:88:
10:90:ad:5f:c9:c4:14:8a:ae:30:a1:85:e8:bf:0a:
1e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BC:D2:92:32:82:34:1A:24:9F:4F:E8:08:2A:FB:69:6E:25:37:FD
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:d0:6c:2d:5a:13:3e:94:d3:21:e1:7c:87:b9:70:4f:1d:4d:
2c:f2:05:81:84:5a:ec:1c:f1:b4:3c:e2:fa:f0:8c:2f:64:2e:
66:4d:22:99:93:34:01:bd:a1:3f:21:d7:ad:3e:ec:94:e0:56:
27:9b:bf:72:4e:12:06:25:a9:83:5b:7f:91:5b:c1:71:64:b8:
53:66:d2:df:13:ab:82:84:89:da:e1:ee:69:45:a6:9a:6b:9d:
d9:dd:62:2a:3e:34:7a:80:3e:92:0e:21:df:c6:d2:48:ad:fd:
5c:60:9c:b3:11:db:5c:76:03:ed:84:3f:2b:dd:39:65:82:68:
bc:05:d1:34:f7:50:2d:24:eb:45:41:da:62:74:36:6a:e1:69:
17:9a:f3:d7:c6:d6:d0:11:c3:b0:3c:d5:58:7f:87:4e:8f:94:
39:ba:8c:fd:d8:d4:25:8b:45:81:39:94:74:28:13:c0:a3:56:
62:c6:6b:88:97:23:41:be:72:ca:95:e2:55:ed:68:88:83:19:
40:23:f2:37:7d:c3:ce:74:99:67:cd:0d:38:aa:7b:1d:73:a9:
34:5c:1a:55:e7:71:20:7b:82:28:bd:9f:ef:b9:36:18:60:f2:
51:38:90:08:ed:4b:b2:d9:6f:54:15:08:ee:79:ad:f7:21:eb:
35:6f:59:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:04:24 2025 by rpki-client