Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: XTfdP8UoL1BCo4CrNrl3EF9fX8YsvAQKLM+AIqRsXyE=
Subject key identifier: DE:57:E1:0C:AE:D4:BF:3A:6F:36:A3:CB:9C:F7:47:68:5C:7F:D9:98
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 01951134835DA02289BB3FE2EBA37D82CB88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 12EF
Signing time: Mon 17 Feb 2025 00:00:08 +0000
Manifest this update: Mon 17 Feb 2025 00:00:08 +0000
Manifest next update: Tue 18 Feb 2025 00:00:08 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: wLoTnlx5BM5C/50QMtFG2G0rEW3LSlwh0kfOMtx1A0c=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:83:5d:a0:22:89:bb:3f:e2:eb:a3:7d:82:cb:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: Feb 17 00:00:08 2025 GMT
Not After : Feb 18 00:00:08 2025 GMT
Subject: CN=de57e10caed4bf3a6f36a3cb9cf747685c7fd998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:7a:ca:1f:69:1a:8f:c1:a3:23:b6:e9:9e:
a8:c1:24:57:0a:2a:2f:85:c1:8a:66:fc:87:6b:19:
87:50:33:5e:8b:8d:ef:31:36:32:27:9a:ca:9a:26:
3d:1c:29:5b:e9:08:b1:97:13:ee:5a:4e:0c:e7:0f:
18:74:d0:d1:69:7a:05:f1:e0:e8:50:7b:5a:7d:98:
8b:58:02:ce:49:28:94:a1:03:f2:99:02:d2:7b:42:
1d:33:c0:7c:2a:cf:a5:f2:be:2b:c5:55:c6:fb:bf:
90:1a:e6:48:61:44:16:c5:4a:a8:58:8c:ea:84:aa:
75:22:9b:d2:64:2c:06:a8:76:27:c5:ec:cc:93:85:
89:e0:3f:9d:d5:1c:0e:da:d1:0c:aa:d6:21:be:a2:
fe:b4:04:f3:c0:75:18:47:d4:16:5a:9a:47:83:e7:
5d:d3:e0:b7:00:73:62:09:5b:68:4e:0f:45:a5:c6:
dd:e6:9e:6d:78:23:35:17:b2:53:25:40:eb:20:3a:
2a:24:92:e1:09:9f:07:47:85:cd:5b:6b:26:31:96:
e9:fe:53:87:68:56:dd:ae:83:27:99:51:52:86:2d:
99:1b:ec:5a:78:63:11:76:7a:2b:7a:0e:47:3b:be:
3d:bd:a9:78:b1:9c:7e:c9:ee:cb:a3:83:1f:f9:af:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:57:E1:0C:AE:D4:BF:3A:6F:36:A3:CB:9C:F7:47:68:5C:7F:D9:98
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:c5:44:48:9d:cc:40:f1:77:65:07:2d:07:fe:f6:09:dc:3e:
64:c0:e1:34:65:48:90:63:78:db:ab:b3:79:90:34:63:dd:f9:
6e:17:41:d9:d0:ce:53:71:64:b0:1e:ea:fe:54:e0:5f:a3:ac:
70:70:af:31:61:64:af:d9:88:d1:06:d2:71:51:b2:eb:16:08:
8e:a2:d9:b3:b4:5a:b9:5b:85:32:a5:b1:8d:67:9c:3f:54:a5:
96:db:b5:35:c4:84:6c:e7:c9:45:b1:94:3b:e8:1d:98:51:35:
59:b0:3c:15:86:bf:19:a2:90:cc:b1:fb:26:96:0e:59:ac:9d:
5d:13:9f:46:03:7b:40:76:15:f7:d2:28:af:fd:d4:7e:09:a0:
a0:13:26:af:6f:3f:e6:d1:55:eb:54:38:84:6a:98:9a:bd:b6:
e2:89:d1:87:69:6b:31:c9:84:3d:a8:c3:d4:09:ec:3a:b1:c3:
53:67:8b:e0:9a:e6:b5:8c:1a:2e:cd:d1:8e:09:ff:df:5a:4f:
33:af:af:d2:d0:e8:f3:aa:38:cf:17:06:6d:26:01:6c:9c:b8:
2e:31:f4:a6:71:da:e3:0e:ec:c2:26:20:23:c6:df:5d:02:d5:
28:62:2a:de:df:3e:d3:d1:ef:32:bb:f1:f3:61:01:af:c0:6b:
bb:9e:06:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:06 2025 by rpki-client