Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier: odksSJoTBLwnLiM0Y+/3UtkCR7BW1OTgT+VcGd52iGI=
Subject key identifier: 85:7B:62:54:0B:5A:5D:90:88:14:4E:53:77:9C:78:C3:0E:7D:3C:53
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial: 019512478B921C903A3903CFFE89BAE41E10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number: 119B
Signing time: Mon 17 Feb 2025 05:00:33 +0000
Manifest this update: Mon 17 Feb 2025 05:00:33 +0000
Manifest next update: Tue 18 Feb 2025 05:00:33 +0000
Files and hashes: 1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: XXLf4eeVS1M5JHxgJwFKNsNfIjFzzgwAZezZjzAtTew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:8b:92:1c:90:3a:39:03:cf:fe:89:ba:e4:1e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Validity
Not Before: Feb 17 05:00:33 2025 GMT
Not After : Feb 18 05:00:33 2025 GMT
Subject: CN=857b62540b5a5d9088144e53779c78c30e7d3c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5b:28:88:3c:37:6f:ea:ee:26:f4:43:46:f8:
9d:66:4c:68:73:60:8b:b3:bd:9a:c9:54:08:ee:65:
f9:a2:a2:8e:56:07:db:7c:7b:0f:8d:5e:11:5f:51:
04:a9:04:b0:5b:02:17:5a:cd:99:37:e0:4a:67:2a:
fa:1b:a8:12:c8:38:f9:b1:25:75:61:55:71:2a:07:
db:9e:3c:46:91:0b:cb:b9:f7:e4:f5:84:39:a1:71:
79:35:a5:7b:f0:8b:cd:5d:03:5c:23:6f:cc:c0:aa:
cd:49:65:ce:ca:59:69:41:61:d1:49:b3:f6:6d:71:
45:bf:48:69:26:a5:65:c2:75:74:ad:27:ec:76:4b:
5d:14:5c:8d:85:96:43:7c:d5:af:c1:7c:c1:88:7d:
00:2f:fe:04:18:63:52:c2:03:db:0b:1d:0d:41:e1:
b0:42:73:e1:15:2b:32:8d:1b:83:d6:cc:db:ab:78:
26:0e:e6:b8:6f:a6:e5:e5:9e:3f:6b:51:b4:87:98:
87:4d:3e:5f:24:93:ed:87:f6:c9:b0:cf:43:a1:60:
54:9c:96:31:85:97:e4:c4:a6:da:a8:2a:24:76:b8:
a3:50:56:0e:ea:fe:5b:7d:d5:65:79:7d:57:d6:df:
8a:94:ff:66:c9:cc:ee:35:13:86:bb:f0:00:65:5e:
85:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7B:62:54:0B:5A:5D:90:88:14:4E:53:77:9C:78:C3:0E:7D:3C:53
X509v3 Authority Key Identifier:
keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:29:16:fd:ee:83:e0:86:b8:f8:1c:95:5a:04:41:b1:c0:68:
08:78:b0:07:fe:7a:ad:82:f4:db:eb:1e:70:11:8c:37:f9:74:
e9:46:e3:e0:c1:70:c2:23:a2:d3:22:2b:fd:ab:ac:19:65:59:
4c:aa:8e:30:0e:1a:e0:48:c7:12:41:70:1a:aa:69:e5:43:1c:
8d:6f:96:18:07:aa:65:4b:71:29:b2:46:5d:2a:5e:d6:31:6b:
a1:cf:25:29:c8:64:ae:93:71:10:84:2b:1c:bf:bc:38:02:d2:
45:0d:04:32:47:10:54:fd:14:4d:4f:d1:75:81:d5:ef:e0:7e:
e2:3e:d3:29:ff:be:78:93:39:da:58:15:fb:65:78:07:a6:0d:
e1:9f:bc:12:38:fd:76:e9:89:91:46:62:f9:3d:6a:61:1c:9d:
7f:04:57:27:af:92:88:48:99:f1:ac:31:b0:c3:f3:0e:a5:1a:
db:46:fe:cc:1b:a9:9c:10:f1:55:c1:a4:df:e6:0d:c4:66:19:
20:2a:77:74:04:2e:a7:67:59:dd:f6:66:2b:48:a2:7d:23:c1:
59:a0:69:79:ac:6d:d8:87:13:a4:42:d7:79:b8:17:d9:67:c2:
45:2a:c6:a9:70:76:07:02:b7:90:e5:c1:d6:5a:59:00:d3:e1:
17:23:31:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:20 2025 by rpki-client