Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: 68EIGWMyEjNEVJR9XnY+XjjkX1bEbmp31m+EF5Tkx8U=
Subject key identifier: B4:F3:2D:9C:81:6E:5D:D9:20:60:57:0C:E4:08:89:78:4E:DD:4F:05
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 0195121064520995FB41624E7D32AC23B7B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 04:00:18 +0000
Manifest this update: Mon 17 Feb 2025 04:00:18 +0000
Manifest next update: Tue 18 Feb 2025 04:00:18 +0000
Files and hashes: 1: LQcm0nhQTgxfcAEHFSpSeQFsVHo.roa (hash: ScQNvXtsK5w/Wj3QzlqfHMAUcdIYUpFbtGKhSGmn1FI=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: FaAuGQ0e2sjhzSA4UEmyj6OlhB1tSqbb564P+ufW734=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:64:52:09:95:fb:41:62:4e:7d:32:ac:23:b7:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Feb 17 04:00:18 2025 GMT
Not After : Feb 18 04:00:18 2025 GMT
Subject: CN=b4f32d9c816e5dd92060570ce40889784edd4f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:7d:75:02:de:cd:3c:2a:80:99:b6:4d:80:c7:
b9:fb:2c:c2:f7:fc:93:92:53:8f:28:00:18:a7:f4:
ea:e5:83:fa:2b:ac:9d:b5:5b:a8:0f:d8:e5:8a:1e:
2e:1a:e6:96:8e:d4:43:42:c0:9b:47:b2:9c:d5:9e:
a2:23:ed:38:53:c4:94:d3:81:37:9a:a6:3c:db:50:
d2:dd:f9:e6:e0:b3:30:7a:bf:eb:7c:5a:6d:41:3f:
c4:2f:fd:93:fa:4f:d7:c8:81:1d:54:4d:65:bf:13:
54:e2:22:2e:88:72:27:75:02:07:76:ab:0c:26:7c:
dc:0c:01:a6:3e:8c:5e:e2:ad:d9:8f:75:24:66:e2:
a2:51:72:23:f2:37:c3:73:ac:d9:f7:03:18:e0:99:
09:29:8a:64:93:97:78:29:0c:18:44:d9:26:8f:bd:
bd:65:ff:91:ce:50:51:c8:2a:12:32:2b:12:69:33:
26:74:d1:5c:01:c9:d5:c7:fd:c5:34:8d:54:27:bd:
ea:2f:05:60:ec:7d:26:fe:7b:65:c1:14:a1:a8:4c:
ef:18:07:7f:85:05:37:c1:7f:d3:ed:d4:50:0f:d2:
69:7d:0d:37:14:d4:92:4f:bd:6e:c1:e9:83:b9:10:
5a:cf:6e:65:48:35:ce:ed:29:9b:7c:d5:f7:c3:d8:
00:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F3:2D:9C:81:6E:5D:D9:20:60:57:0C:E4:08:89:78:4E:DD:4F:05
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:8c:cb:c7:f5:37:f0:fe:eb:c8:cd:ca:f3:72:2c:b9:ae:e8:
e6:7e:55:d3:7e:5a:1b:a0:6f:ba:e0:84:fa:eb:7b:4e:1c:b3:
81:8d:e7:ec:e8:c9:ed:27:cb:c0:52:e5:e9:73:f0:ee:6c:96:
f2:01:82:12:72:3f:72:74:03:86:e9:58:8e:75:9e:0d:42:b8:
e2:83:28:ff:ef:fd:d8:a9:3c:ea:b1:2c:99:b8:43:c5:58:97:
16:83:93:64:7f:d9:8c:50:db:d4:9d:0b:99:cc:66:44:20:50:
51:5f:64:cd:02:23:29:d0:b2:c6:7a:76:79:64:2c:e3:c0:62:
84:cc:d7:f7:c9:a6:e5:5f:cb:3e:77:5e:8e:0e:5c:6b:b5:31:
a9:62:38:e1:dc:ea:11:8e:2a:47:7c:aa:e9:c3:2a:9e:75:85:
2f:62:b0:e7:b0:c6:5c:a8:01:d1:59:14:c2:57:43:5f:7f:90:
65:d2:1e:12:1a:f3:7a:f8:40:ce:df:b7:90:56:f7:1c:0b:65:
0d:e0:3e:52:30:9b:e5:fa:57:db:ae:af:ff:2d:1b:04:1e:c7:
9e:9f:42:99:96:24:77:bb:78:51:5d:05:fb:c4:dc:96:4b:c2:
2b:52:01:0c:9e:82:cb:1e:c1:39:03:3f:69:75:08:96:5d:d8:
35:be:bc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:56 2025 by rpki-client