Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json)
Hash identifier: o99y2GQ2Qz8f+Q6SW2g/OiU81SDnLjhVjsIFRJTP46c=
Subject key identifier: E8:12:75:8D:11:5A:5B:7C:72:13:F4:7E:B3:73:8F:0D:75:14:CB:0C
Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Certificate serial: 019511A2B8EAB7E244FECB54DF96E262252A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
Manifest number: 1454
Signing time: Mon 17 Feb 2025 02:00:31 +0000
Manifest this update: Mon 17 Feb 2025 02:00:31 +0000
Manifest next update: Tue 18 Feb 2025 02:00:31 +0000
Files and hashes: 1: U6nb6DpUzJV_xi4UhiA5O3aKdZE.roa (hash: at4iy2FPtAChzVS5IZxWuVWW9v3c10T2DEm7KMEtSwY=)
2: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: qhaXjUOYaRdbC1r7ihhfdXy6RDzsXAvysdFFGaA1BPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:b8:ea:b7:e2:44:fe:cb:54:df:96:e2:62:25:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Validity
Not Before: Feb 17 02:00:31 2025 GMT
Not After : Feb 18 02:00:31 2025 GMT
Subject: CN=e812758d115a5b7c7213f47eb3738f0d7514cb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9d:c9:78:da:d6:59:d5:8f:e3:18:bd:13:ee:
cd:18:1b:42:70:6f:de:12:29:22:20:2c:04:3b:28:
03:ba:af:25:a1:89:8e:ac:10:ad:10:96:ca:be:b3:
e6:ef:2c:75:48:10:b8:ca:c5:77:4c:7a:ae:0a:5c:
90:35:36:2b:34:ec:c5:5c:d8:56:32:9f:66:28:b6:
f5:f5:13:44:78:df:12:be:9f:79:d7:7b:51:71:f2:
90:7d:46:fe:15:8c:03:4a:81:2e:0e:27:f3:6e:84:
3f:97:8b:81:7c:82:ff:0f:cc:0f:21:af:ef:73:ff:
d8:1d:05:e3:ce:e7:b3:4b:3f:2c:41:09:8f:1a:56:
91:0e:4e:44:4b:10:87:d6:50:82:18:ad:7f:90:cb:
b3:22:fc:72:5f:a5:84:40:50:8a:d8:ae:de:e5:6f:
c5:ea:72:12:04:7f:1a:b9:bc:c9:95:40:df:07:84:
7f:86:81:8f:57:67:4e:f8:08:af:14:86:60:f2:b4:
ca:97:24:72:96:91:4a:01:fa:39:90:2c:3a:b6:e2:
ef:52:25:54:9a:71:5f:cb:ae:b3:72:c5:52:2b:00:
ad:45:f7:70:e9:ba:e6:8d:a7:5a:9e:4e:69:a2:32:
a7:05:6e:b3:f6:8d:49:f5:3b:43:ed:3c:ee:e9:88:
a8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:12:75:8D:11:5A:5B:7C:72:13:F4:7E:B3:73:8F:0D:75:14:CB:0C
X509v3 Authority Key Identifier:
keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:0d:bb:0d:34:56:42:1c:db:a4:1b:41:f2:d7:99:a8:70:ee:
3d:a0:df:cc:d9:42:f0:5c:15:5d:25:82:18:3f:ae:b1:04:09:
e3:e4:af:ab:d2:80:05:ff:b0:f5:0c:10:86:66:4d:a0:29:b5:
a3:a5:4f:2c:1d:8f:87:2d:d2:c3:1c:b3:f2:f2:19:55:7f:87:
27:68:ba:54:ab:88:a1:1f:e2:0f:46:34:0c:d2:67:21:e3:54:
5f:b8:8c:64:0e:1a:4c:f6:0e:9b:46:27:98:1d:29:18:f0:f7:
b8:97:1d:68:d6:c2:7c:bb:1d:38:a9:e2:c2:59:40:7a:71:6c:
f3:4a:c4:24:6c:8f:90:a2:84:c8:f9:c9:5e:b2:e0:6b:2b:bd:
84:c1:1a:c9:bf:dd:3d:6d:a2:c0:be:09:e7:8b:59:0b:c8:d4:
b5:2e:c6:f1:56:32:b2:fa:9e:84:66:86:00:5c:88:32:b2:d5:
33:4e:2f:50:c5:53:d3:96:b9:ac:5b:c7:03:08:0e:8c:3a:f2:
d3:53:49:30:26:bd:28:16:40:30:82:94:e9:91:c8:87:37:07:
c8:76:d3:61:3f:4a:e3:2f:37:c3:1f:eb:77:13:e2:6f:3a:78:
fd:c4:21:63:6d:c2:49:76:0f:b5:d8:b1:5a:20:e7:56:e5:a7:
9f:91:e6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:38 2025 by rpki-client