Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: yA+b0yWElkREXgRYYSOk/r3qhn8OhpvC6m6uloXOQ0k=
Subject key identifier: 7D:79:67:5B:9D:AC:04:BF:5A:F9:91:F4:9C:9B:53:96:70:88:92:B2
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 0194C50803FE589EF0A440F45B693B833F51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 1307
Signing time: Sun 02 Feb 2025 05:00:24 +0000
Manifest this update: Sun 02 Feb 2025 05:00:24 +0000
Manifest next update: Mon 03 Feb 2025 05:00:24 +0000
Files and hashes: 1: rEdLOhgJ5xMWvLwmv0wizm-cOW0.roa (hash: 5KEvRv7KqMLhpYGvFA0tU5bp6PFE1qlP3ELvibmeSX4=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: a00BsSgPE42qCyBvH/o87+F2cLdPUSbeOMD85VGqGCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:03:fe:58:9e:f0:a4:40:f4:5b:69:3b:83:3f:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Feb 2 05:00:24 2025 GMT
Not After : Feb 3 05:00:24 2025 GMT
Subject: CN=7d79675b9dac04bf5af991f49c9b5396708892b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:3a:19:b9:20:47:b0:db:d2:c3:4b:cc:20:
c6:f5:03:3c:87:d6:2b:91:78:da:13:4c:66:b2:ee:
ab:5d:a3:e5:e7:b1:d5:83:e3:16:ac:ab:bc:5a:50:
31:31:e8:e3:49:74:9f:9d:db:f8:ee:1d:60:79:37:
0c:7c:df:9b:86:35:91:e8:d2:69:ae:c2:ce:8d:9c:
f4:61:9c:64:c9:e7:9e:76:bd:85:9b:bd:29:05:47:
37:18:dc:3e:39:ce:48:51:a7:18:27:60:63:d2:c4:
77:15:b8:5f:30:ac:d6:d4:53:54:65:5c:ff:bb:85:
c3:2c:8b:90:bb:3a:09:15:aa:66:f7:c1:23:e4:00:
6d:30:98:b6:1f:fc:bd:c2:9f:62:a9:3f:4b:00:ae:
23:29:31:7b:73:92:30:a3:3a:bf:b1:93:d7:0f:cf:
44:a2:26:e6:7a:ee:46:f7:1e:fb:6a:4e:56:28:e7:
13:41:41:e5:3a:dc:47:63:f4:28:77:66:ed:2e:53:
3d:8e:e1:a6:d3:1a:4e:b1:a6:b1:c8:15:2e:b8:9a:
63:fb:35:d3:a8:2c:ab:35:87:f8:0c:40:49:2b:a2:
d6:c6:4f:f8:75:9d:08:6a:8a:d4:24:9e:79:4c:a5:
36:55:b8:e5:2e:f6:bb:2f:8a:96:b1:01:6a:06:bf:
25:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:79:67:5B:9D:AC:04:BF:5A:F9:91:F4:9C:9B:53:96:70:88:92:B2
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6e:c3:c8:5a:bc:2a:42:3e:aa:15:17:46:b8:7d:15:56:e5:
3b:ec:81:24:71:ad:29:52:8f:c2:ad:06:fe:83:85:7b:35:61:
53:8a:83:54:d7:b2:61:30:3d:f8:a3:bf:23:00:92:dd:7e:9a:
81:54:65:92:4c:b7:fc:6f:16:82:a5:83:a4:0b:8e:80:48:de:
da:bc:82:02:39:15:24:1c:0e:f8:c8:83:66:2e:9b:65:ce:37:
6a:c8:d6:db:51:56:4e:7d:ef:3c:1f:4b:6a:53:79:68:96:fa:
34:a6:ce:a8:5a:58:2f:4b:41:ff:a6:5d:ea:b2:df:ed:80:f5:
75:9e:4b:0f:db:c3:3c:95:c4:02:3e:d0:fd:a3:68:1d:c8:6e:
8f:d5:73:0c:77:e4:83:b9:a3:f2:42:ec:0f:bb:d5:2a:9b:83:
9d:76:b9:74:6a:39:be:9e:bc:4f:b8:52:3d:4e:c4:f7:92:36:
d5:a0:99:66:d9:3d:04:cd:51:96:71:40:4e:c1:20:b8:c4:b8:
0a:2d:a5:5e:5b:c3:37:b0:d6:1a:f0:53:88:90:8b:7a:20:b6:
8a:e9:7e:46:78:97:e7:9d:81:42:20:7a:71:8e:59:34:87:8c:
0b:63:3a:c9:42:08:85:c0:bd:c0:bc:63:1e:dc:ff:d8:a4:8b:
21:5f:90:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:23 2025 by rpki-client