Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
File: NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft (raw, json)
Hash identifier: s7tqR6GHywIrCGqoxmCfamVlPvtNkuX4YkwM1O4bArg=
Subject key identifier: 4A:B7:C5:63:A4:EF:DD:AA:37:66:8E:28:7C:0B:16:52:05:12:F3:FF
Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Certificate serial: 019511D97EBFBBAA93C787704E8DB45A59E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
Manifest number: 0CD5
Signing time: Mon 17 Feb 2025 03:00:21 +0000
Manifest this update: Mon 17 Feb 2025 03:00:21 +0000
Manifest next update: Tue 18 Feb 2025 03:00:21 +0000
Files and hashes: 1: NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl (hash: VjsKE08LXAZP3G5hXr5HDDTUe6c8Mcj6+TTnZu+SThE=)
2: ZIEntIvRdoyNG_9f7umqM8GaOP0.roa (hash: fyIclvXxfmafIM00Oljz1bkGgUIAKrrEkFW8CDlF9q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:7e:bf:bb:aa:93:c7:87:70:4e:8d:b4:5a:59:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d
Validity
Not Before: Feb 17 03:00:21 2025 GMT
Not After : Feb 18 03:00:21 2025 GMT
Subject: CN=4ab7c563a4efddaa37668e287c0b16520512f3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:73:12:c6:f0:ab:fc:d7:f4:c2:0f:e4:87:86:
09:24:07:d0:83:49:ae:63:b5:82:07:50:41:69:54:
9b:68:62:40:dc:dd:30:84:15:dc:7f:94:0b:62:8a:
b9:6f:a5:5a:c6:25:1b:d4:db:90:b8:f3:9c:3f:f5:
f6:ea:48:45:2b:f6:86:3b:79:e2:3d:e5:c9:36:b6:
b4:68:c5:41:15:3e:47:7a:34:bf:72:7d:dd:22:90:
68:04:d6:ef:f0:67:49:0e:75:44:46:28:ab:38:b2:
8f:8d:69:0c:74:2c:b6:45:dc:9c:c2:bb:c0:8c:ce:
cf:f4:97:96:92:32:ff:b3:10:86:a7:5d:a2:8f:9e:
7e:e1:22:ba:d5:ca:b7:8c:66:5a:4c:f4:e9:25:32:
6c:8e:0f:b8:5f:93:0c:91:df:19:d5:65:38:50:df:
99:25:ba:0d:b5:ec:e7:98:54:37:7d:da:07:f3:29:
bc:04:9d:a9:73:a5:c5:d1:63:75:ab:88:c9:45:55:
52:7e:99:82:da:39:7f:03:1e:17:d6:3c:49:83:ec:
a2:ff:c7:cc:a5:78:1f:45:67:f3:ce:1d:af:d0:b4:
83:ab:08:94:2f:76:be:d0:c0:d7:d7:ca:00:48:be:
ff:6e:d2:5e:fc:98:02:72:20:45:ef:4e:ec:6f:43:
21:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B7:C5:63:A4:EF:DD:AA:37:66:8E:28:7C:0B:16:52:05:12:F3:FF
X509v3 Authority Key Identifier:
keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:04:4f:d5:e0:95:19:49:af:0d:74:51:08:da:1c:bd:4b:ae:
b6:01:93:43:6a:48:56:69:1f:36:29:5d:39:ce:09:cb:b8:39:
67:9b:d3:51:d4:c8:1f:5b:ca:89:39:10:ec:78:10:36:ca:ef:
b1:dc:0b:e3:ef:bb:30:ba:7d:9d:46:a1:1e:42:e3:21:68:a6:
bd:e6:50:c4:d6:d6:4e:68:cb:0c:0d:3d:ae:9a:ed:ff:50:05:
cf:f4:dc:b3:23:24:47:4c:08:47:a6:a9:f0:cd:92:80:71:60:
f6:db:99:25:4a:d7:3a:9a:e0:01:67:50:38:c1:ab:ba:9e:d9:
e2:52:78:10:ae:c3:9f:6a:9c:81:56:b5:f4:42:30:8d:95:3f:
39:e9:02:6c:00:3f:03:17:5d:d3:d9:12:08:f5:c9:fa:56:a8:
ca:fd:9a:0a:bd:e0:56:d4:c4:78:d8:3d:1e:29:e7:c3:58:fb:
05:38:f4:93:ba:a3:61:3a:b8:77:30:f0:4d:90:82:f3:a2:09:
42:b7:d1:a6:be:32:f9:a4:24:eb:cc:da:b2:d3:f5:2f:0a:33:
aa:97:7f:4c:c2:06:b0:e5:46:5c:a9:aa:b8:ea:e0:0b:81:96:
8c:1c:83:37:a4:a7:70:80:78:84:6b:fb:c6:d2:3c:67:1a:58:
d1:51:ff:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:52 2025 by rpki-client