Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
File: mSAfYJ56iT2obPDrvKS79HJ51hc.mft (raw, json)
Hash identifier: V7dQAMvSaKx78OPrGAMQ175zFuKXPkGEqeYDfAwS3XM=
Subject key identifier: C1:D2:80:B6:5B:14:29:89:E5:CF:9D:92:1C:8E:DC:0B:8C:AD:DA:8B
Authority key identifier: 99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
Certificate issuer: /CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Certificate serial: 019511351CF40A22C99B3BAFF154B455FAB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
Manifest number: 02ED
Signing time: Mon 17 Feb 2025 00:00:48 +0000
Manifest this update: Mon 17 Feb 2025 00:00:48 +0000
Manifest next update: Tue 18 Feb 2025 00:00:48 +0000
Files and hashes: 1: 4eCNH1R9CpTtO2SN6ER3IXHq3JI.roa (hash: Q9zvCe6qoTuNlUxMuJhOFGoFxuAGyHxDdlXdoOlYcPc=)
2: mSAfYJ56iT2obPDrvKS79HJ51hc.crl (hash: Slb7xgmSr0HzIdCmfEatCwcZNKSJpJD/xgDPXeRCebo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:1c:f4:0a:22:c9:9b:3b:af:f1:54:b4:55:fa:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Validity
Not Before: Feb 17 00:00:48 2025 GMT
Not After : Feb 18 00:00:48 2025 GMT
Subject: CN=c1d280b65b142989e5cf9d921c8edc0b8cadda8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:94:83:97:12:3f:bb:50:93:41:82:f3:8b:01:
65:01:18:ee:a7:c2:dd:5e:c2:7c:33:c0:ec:c0:0a:
cd:b6:8f:bf:f3:aa:a1:1a:b0:59:16:b1:8f:95:0f:
f3:4f:3e:e9:a4:48:ea:41:67:a7:d9:ca:5c:12:14:
db:0d:2c:6a:dd:82:59:56:d4:59:6a:54:16:0a:7b:
d0:9e:80:52:be:d6:73:b3:c8:4d:88:ad:54:0c:d9:
6d:bf:fc:6d:19:86:af:eb:51:de:3a:11:88:8c:d1:
1f:c3:f2:c4:7c:64:d5:51:76:5b:84:29:e3:bc:e0:
c1:32:9f:f4:11:fd:39:e5:0e:fb:aa:10:ac:2f:8a:
6a:19:ed:25:dd:3f:d6:a7:db:a3:53:aa:b4:f8:f2:
12:1d:72:58:73:bc:60:55:47:7f:11:1d:af:2b:53:
a2:24:23:ce:dd:07:e8:4a:0c:10:02:e9:2b:e1:28:
f9:c4:c7:85:d0:bc:a0:fa:ae:59:6f:76:b6:44:f5:
5a:5c:dc:b7:e1:ce:35:77:06:e0:17:1a:87:37:52:
3c:63:c1:e6:e2:78:d7:ff:f9:53:87:ff:8a:2c:f4:
b1:95:cb:d8:60:cc:48:6c:d0:be:09:40:af:b2:7a:
cf:ac:d8:91:e6:15:96:df:53:58:83:25:1f:61:18:
ef:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D2:80:B6:5B:14:29:89:E5:CF:9D:92:1C:8E:DC:0B:8C:AD:DA:8B
X509v3 Authority Key Identifier:
keyid:99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:1e:6e:eb:47:89:a0:c3:ef:e4:2f:ef:0c:24:26:7c:d6:09:
e9:63:70:78:aa:45:5a:be:1a:bf:d9:31:9b:58:26:8e:32:f1:
10:f7:43:14:05:ae:f6:d5:9d:2f:ac:54:b8:25:75:ef:10:a4:
90:a4:48:d5:e8:c8:36:47:39:54:f8:39:9d:4b:f4:a9:7d:35:
ed:28:51:10:6f:9a:94:a9:fa:cd:f2:72:54:89:45:60:36:f3:
da:15:ba:cb:e0:0c:56:8b:b0:b6:1a:16:0a:b4:98:76:25:42:
e2:a8:de:ff:17:6d:27:b4:c7:48:cc:34:0e:72:01:42:43:f4:
c1:71:f0:5f:c9:e2:96:48:32:00:35:92:a2:4a:33:50:ae:00:
79:e6:40:5b:a7:87:90:5f:33:4d:6b:d5:2f:ac:21:16:b1:3e:
ca:6e:4f:3c:91:9f:99:48:8d:e8:64:90:cf:b6:7e:b6:e1:8d:
25:bc:c5:01:01:18:78:07:85:71:25:dc:5a:ee:07:16:a6:d8:
97:11:d7:17:b3:dd:2c:46:04:11:5e:33:c9:96:c2:b3:b3:55:
a8:9c:af:0b:99:ec:14:0d:e6:77:ba:f6:14:b2:0a:99:29:ac:
3e:87:8e:df:6b:80:3d:56:d2:cc:1a:6c:5b:89:62:bf:34:23:
bc:c2:1e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:53 2025 by rpki-client