Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
File: qK9MCjctAUVV99TXyJz5lvBRQvU.mft (raw, json)
Hash identifier: RElgS9SaFfcPsmflRhXZyo3mdph95meuy1xnCrpmmxA=
Subject key identifier: 13:CD:3F:77:70:93:DE:E9:22:F3:3E:0D:17:E0:A3:20:44:3C:D4:D7
Authority key identifier: A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
Certificate issuer: /CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Certificate serial: 019510C73FD50E5ACF0E9F641F67B21323F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
Manifest number: 01E9
Signing time: Sun 16 Feb 2025 22:00:48 +0000
Manifest this update: Sun 16 Feb 2025 22:00:48 +0000
Manifest next update: Mon 17 Feb 2025 22:00:48 +0000
Files and hashes: 1: qK9MCjctAUVV99TXyJz5lvBRQvU.crl (hash: hhvoz1NrSCvCCbM3Fi6N/54Xmx8pLQRlXLex46M+2GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:3f:d5:0e:5a:cf:0e:9f:64:1f:67:b2:13:23:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Validity
Not Before: Feb 16 22:00:48 2025 GMT
Not After : Feb 17 22:00:48 2025 GMT
Subject: CN=13cd3f777093dee922f33e0d17e0a320443cd4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3f:67:a5:9a:ed:7b:ab:6b:b8:52:5d:9d:9b:
ff:f4:ea:6a:3e:c5:15:f2:20:fe:39:cb:10:44:8a:
9f:d0:b0:de:d5:bd:a8:4e:7f:6f:b9:a5:3d:62:67:
2c:af:03:ad:c1:ef:a3:13:59:aa:ec:88:8f:18:26:
b0:3e:d3:17:1e:56:7b:81:c9:44:ce:41:b4:6a:29:
cb:3b:3e:04:e3:48:7a:6e:fc:c0:fe:02:3e:05:2a:
12:6d:ed:88:03:0c:2c:7c:38:84:c2:9f:69:a2:79:
aa:9d:91:6c:67:67:19:52:75:f6:7e:69:ce:01:ff:
c0:c1:fc:00:fd:67:01:e6:4a:e9:30:04:9c:10:31:
4e:8b:3c:3d:72:1e:04:93:32:d2:19:41:2f:0b:30:
ab:d3:fc:9d:c2:7c:ad:67:f9:7b:f8:f2:8d:11:62:
5c:34:d5:aa:a1:d9:6e:42:f6:8e:11:ad:2a:59:9f:
09:82:81:d4:26:b0:59:d6:37:c7:cd:04:e1:2c:b6:
f3:33:93:ab:bd:fa:8d:a5:1e:df:a0:4f:09:cc:91:
41:7b:8d:94:3b:6f:c2:f5:35:66:13:77:cc:f9:13:
a7:59:8f:ef:b0:89:14:f2:57:9c:01:e9:3e:e4:04:
05:c4:31:89:c3:04:2e:d2:64:9f:95:bb:bf:f0:a4:
29:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CD:3F:77:70:93:DE:E9:22:F3:3E:0D:17:E0:A3:20:44:3C:D4:D7
X509v3 Authority Key Identifier:
keyid:A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:6a:fb:bf:cd:8b:96:74:04:b7:63:b8:41:37:e1:13:f9:48:
f9:d9:fd:50:0c:f8:59:5e:b3:b9:db:ee:2a:db:c9:46:44:3c:
e0:e8:66:bf:15:c4:01:40:a3:35:e6:c9:14:e6:bb:45:23:8b:
65:de:ba:b1:21:b7:b4:db:5e:75:9e:c5:2f:19:eb:9f:77:63:
bf:44:0a:08:cd:8a:40:a2:f9:e5:8b:23:af:d2:4a:95:74:76:
c4:72:32:eb:1d:3f:ee:06:19:a7:55:4d:22:dc:51:34:2d:40:
03:ec:7d:10:77:5a:33:fa:0e:78:b1:3e:ad:34:08:7b:08:e4:
0a:67:74:c1:f1:68:09:24:fc:bb:93:8e:67:d3:32:36:f3:e3:
38:a6:74:9e:2e:4f:3e:b1:f8:c2:53:b3:1d:c4:7b:6e:4c:07:
99:4b:76:cd:64:86:bc:b5:31:06:2b:4e:33:2f:14:ac:07:be:
5f:92:ff:c9:76:d1:71:91:05:d9:22:31:f5:66:3b:2d:0a:e8:
05:a1:56:5d:cc:fe:55:50:c2:80:70:e7:45:6b:75:81:91:e8:
81:72:33:59:6f:a1:0f:fa:83:d8:cb:58:58:1b:22:c7:19:ff:
cc:d7:33:ba:6c:72:21:d1:27:32:65:55:19:78:b3:a7:55:ba:
0a:83:44:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:21 2025 by rpki-client