Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
File: 58OrlrdMKsTwSuYqt-gs3xmI7UA.mft (raw, json)
Hash identifier: 45HMmSCiD5H+SRLQkwwkNTkLeogjNdBz841zs06l5lY=
Subject key identifier: D3:6D:BE:76:B9:6B:BC:5A:A6:FD:A8:0C:84:43:12:EB:90:D7:96:23
Authority key identifier: E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
Certificate issuer: /CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Certificate serial: 01950FEB4DD594D54DB71B1AA99687EDA498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
Manifest number: 05D7
Signing time: Sun 16 Feb 2025 18:00:33 +0000
Manifest this update: Sun 16 Feb 2025 18:00:33 +0000
Manifest next update: Mon 17 Feb 2025 18:00:33 +0000
Files and hashes: 1: 58OrlrdMKsTwSuYqt-gs3xmI7UA.crl (hash: VD8D+EJ2XEqSea0pJok/X/e9NyUx5YvIFuzZ68iEpZo=)
2: tRQVAZPhSI7yY2YBf58wHloNtVk.roa (hash: x6U/gqCwfyDYCGrA4HX4YKbEtJbHihcQ4Z9Ks5Bgn58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:eb:4d:d5:94:d5:4d:b7:1b:1a:a9:96:87:ed:a4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Validity
Not Before: Feb 16 18:00:33 2025 GMT
Not After : Feb 17 18:00:33 2025 GMT
Subject: CN=d36dbe76b96bbc5aa6fda80c844312eb90d79623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bd:07:3f:9a:95:94:6f:86:cf:19:b9:e2:fb:
31:5a:fb:de:03:f0:3a:60:3e:bd:a5:55:02:ce:bf:
b6:03:f9:3f:4c:94:bf:8f:36:37:ac:00:74:4e:f0:
d7:9a:a5:9b:da:cf:94:bf:5e:a6:27:0e:9d:b1:f5:
47:27:64:6f:69:c0:59:29:3d:00:35:de:fd:30:f4:
86:88:1f:e4:02:28:0f:da:f3:c3:a2:73:4f:89:07:
16:ca:db:cb:31:2c:0d:7c:f0:a5:10:4a:a6:07:71:
19:83:41:1c:bc:99:e5:43:de:af:4a:aa:9e:f5:ec:
cd:17:e4:4e:0f:2c:04:58:6e:4c:b6:c6:f7:3d:9c:
d9:f3:6e:87:d2:9f:a1:54:18:ca:24:e2:6c:a3:ce:
e9:ba:bb:1c:27:13:d8:ab:8e:ba:b3:38:cb:28:7b:
61:e2:e3:d5:6e:e9:5c:dd:1e:25:55:50:a4:88:54:
fb:ff:42:05:f2:17:37:49:f1:88:37:74:e2:67:34:
07:14:b8:db:49:b9:33:40:82:ca:0e:7d:9f:97:ec:
58:a6:63:ae:80:5d:07:ec:ac:c4:e2:63:09:46:28:
62:52:9a:78:d9:ce:45:5a:50:73:bf:2a:94:33:b5:
1a:7c:0f:10:74:c5:af:e0:59:0c:81:c4:32:0c:d7:
5c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6D:BE:76:B9:6B:BC:5A:A6:FD:A8:0C:84:43:12:EB:90:D7:96:23
X509v3 Authority Key Identifier:
keyid:E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:36:cf:98:e4:49:d9:49:17:7f:53:83:70:44:5a:24:2e:20:
06:d2:33:4f:5a:6f:07:25:5e:2d:07:bd:3c:72:14:fd:1b:19:
66:5f:35:28:73:cb:6f:41:2d:46:d1:c0:df:3c:3e:a5:55:a3:
be:2c:e4:01:5d:58:5a:2d:2f:66:85:07:d9:2e:a5:15:d3:c3:
50:90:40:ae:73:bd:3d:12:58:72:01:0e:16:e7:d8:41:df:3a:
54:3d:38:20:10:d3:77:ea:70:55:53:f6:41:d6:ca:85:e9:9e:
81:8f:7e:09:37:b1:90:b4:6d:8e:8e:3e:8b:9c:5f:37:aa:d1:
f4:80:c1:8c:73:3d:8e:d6:d1:fd:98:41:18:54:c2:89:89:d9:
b5:0b:7f:05:65:6d:03:c9:f3:10:28:be:81:ea:73:7e:49:79:
a0:ca:a1:c7:d2:ae:1e:6d:66:27:9d:be:38:38:74:ff:83:17:
b7:f4:4d:cc:63:17:80:51:80:92:33:1d:34:0c:98:af:36:dd:
6b:f6:b5:27:4b:d4:85:60:49:7b:2c:0e:4b:1b:93:df:a5:aa:
2f:6e:24:1e:30:0f:9d:68:fa:5d:14:4d:0c:02:e9:57:5d:f1:
ed:0e:2c:cd:1a:f6:d5:4e:0c:86:76:f5:9f:df:58:8c:5b:44:
c7:6e:c7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:25 2025 by rpki-client