Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
File: kwd6mXyVvQGmTUCK_PVU2ItNteU.mft (raw, json)
Hash identifier: I98maoSfb0SNH8YvjiiU8SqyWu0YN4aHF+tK46GmbgI=
Subject key identifier: 7C:10:E6:29:A6:B8:5E:DF:25:D7:D8:ED:C3:20:CD:6D:91:24:8F:12
Authority key identifier: 93:07:7A:99:7C:95:BD:01:A6:4D:40:8A:FC:F5:54:D8:8B:4D:B5:E5
Certificate issuer: /CN=93077a997c95bd01a64d408afcf554d88b4db5e5
Certificate serial: 019512478FA25C6C068DDE6B7B9E80ED9401
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwd6mXyVvQGmTUCK_PVU2ItNteU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
Manifest number: 0341
Signing time: Mon 17 Feb 2025 05:00:34 +0000
Manifest this update: Mon 17 Feb 2025 05:00:34 +0000
Manifest next update: Tue 18 Feb 2025 05:00:34 +0000
Files and hashes: 1: kwd6mXyVvQGmTUCK_PVU2ItNteU.crl (hash: KvHun2cDS+7FJtkZs4UAgG3QQTfSpBgAmfgYxCgUd0c=)
2: uYWwRm4H6YcSfThBlj9ZG4s8g-o.roa (hash: k7HHEyNrsyk4kGL9qKSfgAwu15JappUHRUGh3h3zAJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwd6mXyVvQGmTUCK_PVU2ItNteU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:8f:a2:5c:6c:06:8d:de:6b:7b:9e:80:ed:94:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93077a997c95bd01a64d408afcf554d88b4db5e5
Validity
Not Before: Feb 17 05:00:34 2025 GMT
Not After : Feb 18 05:00:34 2025 GMT
Subject: CN=7c10e629a6b85edf25d7d8edc320cd6d91248f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:5e:90:30:0f:f4:29:cf:b2:7c:4a:89:81:
30:f4:b9:f1:94:ed:52:21:0f:ea:c1:e8:ac:55:6c:
6b:70:04:ea:b0:2a:35:79:6f:d5:e0:a9:d6:fd:0f:
10:a2:53:4c:ac:0f:37:03:29:a0:24:f8:51:4f:92:
2a:05:21:58:b2:ec:c5:fa:3c:73:0a:4b:94:7e:54:
2a:63:1b:ee:47:de:4b:18:fb:b8:66:c3:30:73:de:
1c:68:49:41:9c:67:c0:4a:a8:4c:63:a3:38:9f:be:
0c:3b:02:b4:06:91:1b:24:cd:46:8d:88:ac:bb:9e:
35:6b:e1:98:bd:f2:50:0b:de:a0:a7:58:bf:44:65:
51:54:6f:93:f1:fc:48:b3:d0:07:64:a4:4e:1e:39:
3e:a3:db:f5:db:02:03:68:af:9a:f7:21:c5:c1:62:
94:6d:35:63:df:09:74:56:a8:cb:4b:90:2c:c9:25:
e2:24:da:ac:b1:3d:37:ab:77:48:86:4f:c0:d1:0a:
72:32:74:06:c0:e7:2d:88:42:53:5c:3d:53:bf:2d:
57:4f:7f:6b:63:57:43:a7:f5:d9:4e:65:60:f4:39:
ed:2c:03:c9:3c:73:cc:1c:2c:2d:99:1c:5b:db:07:
8c:7b:17:38:da:8b:b6:7b:76:16:4f:3f:dc:1c:e5:
68:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:10:E6:29:A6:B8:5E:DF:25:D7:D8:ED:C3:20:CD:6D:91:24:8F:12
X509v3 Authority Key Identifier:
keyid:93:07:7A:99:7C:95:BD:01:A6:4D:40:8A:FC:F5:54:D8:8B:4D:B5:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwd6mXyVvQGmTUCK_PVU2ItNteU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:cc:9b:75:06:3f:59:ce:7a:1d:8d:ee:22:5d:fb:e6:16:ed:
d6:98:67:b7:e8:3c:5b:f8:ac:ed:97:20:49:1d:29:21:c4:92:
27:7e:a7:c4:4d:14:a2:b9:a3:c4:68:9c:0b:f9:f0:51:9d:d3:
37:d0:82:5f:ed:6e:42:e1:34:c2:ae:37:77:95:fb:51:87:01:
3c:08:0a:09:ae:94:4a:1e:3b:39:3c:5c:f5:e6:38:f1:7f:32:
6a:d3:c2:66:bc:52:9b:79:80:cd:4e:67:68:cb:b6:c9:cc:93:
c1:f7:66:6f:8a:31:2c:7a:c4:b1:2b:67:72:28:ff:31:7c:45:
49:2b:4d:0f:df:bd:35:ca:a5:d5:c0:07:7b:73:05:5a:1f:97:
10:e3:ba:04:c2:62:7d:47:8b:1c:0e:f8:cd:04:38:11:3b:d6:
9d:d3:5e:58:dd:41:73:cb:d4:47:1b:9d:04:f0:7b:f2:64:0e:
d0:be:42:76:09:f6:f3:a2:f3:c0:d0:9e:fb:aa:46:01:d0:dc:
5a:f5:22:63:8e:d2:31:dd:d3:ea:c0:ee:31:fa:83:bd:a1:75:
be:59:22:0c:e1:18:8f:23:75:6b:2d:7a:ea:da:08:45:ae:d1:
dd:75:9c:ed:c6:2b:3f:52:95:dc:32:59:c8:bc:fc:31:cd:d8:
2b:d5:d0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:28 2025 by rpki-client