Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: 0pgV4n591ZOLNv5PrmqxLvlZZ2V0jrmIUtw9C7r0gd4=
Subject key identifier: C0:7F:AA:00:FB:DE:13:FE:81:D4:E4:F8:0F:EE:1C:16:30:59:43:F4
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 019510C78F8FC2D9E36D848325DF941E2A8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 0730
Signing time: Sun 16 Feb 2025 22:01:08 +0000
Manifest this update: Sun 16 Feb 2025 22:01:08 +0000
Manifest next update: Mon 17 Feb 2025 22:01:08 +0000
Files and hashes: 1: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: MZatt960OtNAVyvqQzmKfr90thxrLgkR4sQTrYrZ6rs=)
2: rWk5sIUEQt5GM5tD9jvlVGxlmoc.roa (hash: bdSHmybqlxfqe2LDlmT/vhR2hatifsBsFgj+STLVUXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:8f:8f:c2:d9:e3:6d:84:83:25:df:94:1e:2a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Feb 16 22:01:08 2025 GMT
Not After : Feb 17 22:01:08 2025 GMT
Subject: CN=c07faa00fbde13fe81d4e4f80fee1c16305943f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:46:8e:6d:41:bc:01:59:cb:62:2d:2f:0b:23:
6d:0d:16:8d:83:17:06:b9:91:f3:d7:6c:6a:34:df:
cb:56:c1:17:37:81:79:5d:50:7a:39:1c:b0:c0:e0:
1c:a2:b6:dc:70:3e:9b:65:75:81:0a:ae:51:ca:81:
48:aa:74:d4:00:bb:20:3c:ec:f9:93:00:a5:4c:05:
98:be:5f:da:a8:74:51:b8:c5:4f:e8:8a:1c:32:01:
34:ef:f2:7c:90:a4:d5:f8:82:1e:6e:e9:a2:e1:06:
78:89:4c:19:5e:f4:cb:89:82:f0:96:68:58:4a:bb:
e9:81:71:5f:94:33:21:f6:f8:a6:4f:2a:0f:83:01:
07:f1:95:dd:5e:2f:68:8c:9e:e9:83:fd:53:91:2c:
dd:9e:2d:93:ca:83:99:20:b8:ee:0a:7a:d6:67:d5:
9d:a3:35:6d:da:01:6b:b4:f9:47:01:bf:3c:15:0f:
de:ef:de:17:e8:d4:82:23:d7:6c:a2:1e:8e:91:f2:
7e:e3:f6:7f:17:c2:4e:44:0e:3a:f4:52:a5:7f:ea:
77:16:45:41:3f:f6:d9:43:77:66:47:9c:e6:8f:87:
05:50:27:5a:26:94:31:94:28:43:50:ea:ff:e3:3b:
68:a9:34:16:03:c4:27:d2:bd:7e:97:87:70:e4:8b:
37:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:7F:AA:00:FB:DE:13:FE:81:D4:E4:F8:0F:EE:1C:16:30:59:43:F4
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:29:3f:b7:19:f8:06:f6:83:5d:66:59:ee:51:2a:53:8c:f1:
5f:4b:68:17:29:93:25:69:ca:cd:76:d0:1c:71:e9:8f:48:a5:
5a:bc:7a:5d:fc:69:e6:26:43:b6:95:d2:ab:82:a7:4f:e6:e6:
ff:11:ec:76:56:ee:50:e5:96:4b:da:a6:85:56:5b:94:80:58:
1d:cc:6c:14:35:92:be:37:ad:4c:e8:36:41:28:25:ec:76:2a:
eb:5c:80:d5:42:20:70:5c:a2:db:b2:67:7c:f2:a5:70:96:e4:
d3:89:46:03:c5:61:2f:20:12:d9:27:0f:bb:0f:ef:6e:0f:1d:
61:5b:f1:81:65:ee:b9:c1:02:92:70:6d:0c:f2:c8:c4:8c:1e:
9f:45:0a:d5:bd:5b:6b:80:ab:f5:5e:dc:93:12:f7:d4:9a:e9:
41:7f:97:c9:ca:4b:98:51:67:6d:0b:36:a1:e9:b9:64:0c:72:
63:c9:6d:48:04:c4:24:51:63:0e:4c:89:18:73:91:cc:16:b7:
7d:c6:58:a4:f1:a2:6e:c2:c0:01:45:53:64:1b:ee:d4:5e:cd:
25:73:c3:4f:5d:8e:6c:75:ad:5d:7d:94:40:8a:03:bc:2b:91:
26:b9:dd:6f:59:4e:5b:a2:e0:19:6a:2b:28:64:a1:b8:5e:bb:
f6:22:0f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:11 2025 by rpki-client