Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
File: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft (raw, json)
Hash identifier: rHe5CtCemGyCoTrZGVXVlH1CWnK/Kx28HldeUtbIz/c=
Subject key identifier: 47:0C:E8:74:45:E5:52:4F:C4:55:C6:8A:62:12:CE:CB:9D:EA:6D:27
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 0194C3F571FCE92F237BA3E1A0B89D35B223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
Manifest number: 5C
Signing time: Sun 02 Feb 2025 00:00:30 +0000
Manifest this update: Sun 02 Feb 2025 00:00:30 +0000
Manifest next update: Mon 03 Feb 2025 00:00:30 +0000
Files and hashes: 1: XIAriGwKiXIV89XyokuVSU6ok94.roa (hash: hF3zC1oiW03gwgTs9lo/n7vUmEiv8dfR/NI1cnnwuzk=)
2: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl (hash: YDbsWuCOAbEHmMLVv0LpT3LRgE7kTLRNs4CGT1zVNuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:71:fc:e9:2f:23:7b:a3:e1:a0:b8:9d:35:b2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Feb 2 00:00:30 2025 GMT
Not After : Feb 3 00:00:30 2025 GMT
Subject: CN=470ce87445e5524fc455c68a6212cecb9dea6d27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:b6:10:14:2c:27:b3:9e:2a:9d:e8:93:7c:
38:91:1a:5c:ae:6c:13:26:e4:3c:29:42:88:45:00:
3c:a4:a3:7e:e2:86:4e:d8:83:f3:a7:43:29:38:10:
2f:57:05:c9:96:32:f4:1d:40:e1:93:0e:8d:df:6c:
39:bb:14:0c:0a:ef:ed:66:95:2c:32:97:38:cf:93:
eb:65:3a:eb:e4:3a:d6:b9:a8:93:b8:d9:e5:80:56:
0d:d6:ba:14:2c:09:25:6d:dd:50:a0:de:be:d3:0a:
7d:5b:c3:cb:5a:7b:a2:cc:a1:34:ce:f3:a4:1d:e0:
b3:98:8e:89:ce:14:50:76:b0:27:3e:a9:38:98:c6:
44:82:47:ba:ff:6a:7e:69:8d:bd:4d:c8:bc:49:de:
f4:07:95:83:1d:c0:14:5e:7e:1a:59:a7:f1:c0:7d:
1a:07:40:12:3f:37:22:e4:c3:4c:a1:b1:76:23:a7:
e5:dd:6b:c5:31:05:18:d7:6d:0c:48:66:ee:18:9d:
82:ef:78:28:7a:71:76:1d:44:49:86:66:a7:a2:a5:
98:ab:70:70:93:21:98:9b:cd:db:8c:3c:89:7b:b2:
99:60:68:e5:c5:05:db:da:db:80:53:44:71:e3:66:
03:dc:1d:22:03:73:71:b8:b6:55:18:d2:ad:82:3e:
c9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0C:E8:74:45:E5:52:4F:C4:55:C6:8A:62:12:CE:CB:9D:EA:6D:27
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:56:3f:df:cc:4f:77:a7:7e:9f:1f:38:33:42:99:61:90:c7:
c7:20:d2:c1:8d:f0:21:88:1f:d3:24:ad:1b:35:a5:22:a7:91:
e9:8f:81:f1:2f:b8:f1:48:8f:9e:40:d8:44:98:7a:07:4e:13:
7e:04:5b:e6:97:43:ce:fd:43:64:1f:9d:05:5c:89:4a:6b:68:
16:ab:07:de:ed:da:56:d0:21:29:55:94:18:44:00:33:01:6c:
5a:d8:d9:ae:62:e4:86:e9:3b:5a:ea:8f:b9:12:3d:40:bf:90:
65:a9:9a:64:c4:7e:35:85:fa:cf:65:3c:e3:f1:11:64:a0:ac:
6f:62:3f:c5:5c:31:72:f6:41:f8:38:ad:c2:76:0c:62:46:3e:
27:7c:36:e7:f6:9d:15:7d:d5:c4:73:92:5a:55:22:cc:1c:a6:
81:f7:c8:05:62:82:ea:dc:fc:c6:27:b6:64:2f:26:d8:41:91:
86:8f:d0:a8:85:97:5c:85:9d:f5:d0:a0:01:40:42:b1:2b:a2:
20:54:b2:04:57:a7:6a:a5:41:de:60:ae:20:6e:ac:31:21:ed:
ed:19:1e:0e:a6:e9:55:6f:bd:bc:7d:35:b5:bb:da:34:7e:3c:
80:20:40:ea:73:cc:88:59:69:07:75:4e:8e:f9:71:9b:16:f9:
d3:b0:e3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:43 2025 by rpki-client