Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: sDfuZRQJ0gKB8eSZmiI67l7kRLM3MTEM6sjMAazTA5o=
Subject key identifier: CD:95:5E:E8:2D:E3:72:AD:33:AA:70:04:D9:8F:94:0A:88:24:D2:6F
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 019511D94C89CED36FA36EBCDF842B63B0FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 1278
Signing time: Mon 17 Feb 2025 03:00:08 +0000
Manifest this update: Mon 17 Feb 2025 03:00:08 +0000
Manifest next update: Tue 18 Feb 2025 03:00:08 +0000
Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=)
2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: dNShAaaY/1Ds3F5qzA0PuapGIKtrZyEOY469WIggKRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:4c:89:ce:d3:6f:a3:6e:bc:df:84:2b:63:b0:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Feb 17 03:00:08 2025 GMT
Not After : Feb 18 03:00:08 2025 GMT
Subject: CN=cd955ee82de372ad33aa7004d98f940a8824d26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:fe:1d:34:79:76:a5:b6:fc:a8:62:bf:b0:
49:9b:5a:7b:6e:8b:23:79:e1:22:25:08:6c:a9:1c:
32:c2:43:f8:7e:e6:7d:88:58:2f:53:24:fe:80:d6:
b4:d0:08:63:16:ad:8b:6c:23:55:b1:00:46:96:fe:
2c:cd:35:d2:fb:47:84:c1:7b:d8:f2:9f:1d:be:69:
fe:2b:5d:ec:30:3f:b4:57:d1:49:b8:b7:d7:41:84:
8c:d9:7a:22:39:b9:5b:c7:86:4f:0b:ce:57:bf:13:
f0:ef:01:45:40:aa:f3:74:3d:9e:1f:73:10:20:83:
c6:ec:19:f8:e8:ac:01:1d:a9:10:8b:ce:9f:d1:4a:
cb:5c:c4:ed:62:c9:73:1a:76:31:f5:97:2e:76:95:
15:3f:95:aa:73:5b:e1:9b:5a:51:13:f1:4a:ff:a4:
54:e4:3c:4d:8f:ad:35:c3:5d:e9:b3:62:33:fd:cb:
93:d7:9b:ac:23:88:ad:f8:e3:2c:17:4e:7e:fb:46:
f4:57:0f:8c:e9:dc:c5:14:87:53:a3:ce:95:53:75:
06:df:e3:26:77:a9:33:36:44:1b:88:46:32:ca:a4:
27:d1:2b:dc:3b:e1:2a:12:80:ca:2c:5e:30:69:73:
07:8c:ec:92:5a:b4:da:f4:d9:9a:28:39:e9:4c:1c:
be:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:95:5E:E8:2D:E3:72:AD:33:AA:70:04:D9:8F:94:0A:88:24:D2:6F
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:32:16:43:dd:1a:e8:ce:db:a6:97:dc:58:e2:63:7f:f1:44:
0e:8a:1a:11:2e:d7:ab:d5:93:46:27:62:c2:d9:b3:85:36:01:
b8:bf:08:fb:52:9d:5c:c9:85:4f:da:c3:fd:0e:59:61:58:d3:
70:4b:79:ef:d7:be:1f:69:40:67:31:76:eb:7e:ca:14:c5:85:
81:25:eb:67:5f:3b:df:9f:a8:d1:89:e0:6b:62:cb:e6:82:e7:
3a:09:07:7b:1f:33:81:8e:e9:d2:12:1b:89:01:5f:a9:11:77:
ae:bf:ce:1a:0c:92:16:ee:64:53:be:b1:5d:ff:92:94:18:a6:
80:41:9e:f5:26:af:eb:2a:69:4a:8b:4f:5c:8c:76:fa:37:b4:
4b:fb:9f:87:dd:1b:88:67:c4:50:75:26:3a:c6:73:da:e8:5e:
08:b2:4c:67:1c:f2:df:be:66:3f:93:76:7c:bb:24:60:fe:f7:
32:6e:b4:4c:20:53:76:7e:e3:7d:5c:5c:b2:3f:57:8d:82:57:
08:c2:ee:7f:37:5d:52:b6:00:d8:e2:29:a1:af:45:0f:09:30:
06:18:8f:0b:07:96:a3:fa:90:03:39:36:9b:e6:f9:88:21:d6:
d9:49:cb:c9:b9:4d:e1:9e:5c:25:4a:61:33:c2:6c:f7:89:0f:
2d:eb:07:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:30 2025 by rpki-client