Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
File: aVHUVR0mpRwPkrd8LTePs0dYuHc.mft (raw, json)
Hash identifier: +cBgf3/E5clyxuubtb493rvBw8IXxGe9dn/aXNMTE2Q=
Subject key identifier: 9E:4D:0B:6C:FE:0A:9D:44:3B:43:06:D6:7E:8C:BC:46:2F:AB:78:D1
Authority key identifier: 69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
Certificate issuer: /CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Certificate serial: 019512478DA5858639F7C659EE496711B934
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
Manifest number: 0567
Signing time: Mon 17 Feb 2025 05:00:33 +0000
Manifest this update: Mon 17 Feb 2025 05:00:33 +0000
Manifest next update: Tue 18 Feb 2025 05:00:33 +0000
Files and hashes: 1: PxyIfomodD9RHY4nPMUQ_8FG_F0.roa (hash: GQBwkJMiYlMRNPb5m5PsI1lq6MhgUy7JaZpjCwR+Ch8=)
2: aVHUVR0mpRwPkrd8LTePs0dYuHc.crl (hash: aYl+bxrsAz/DAah9Ys88ETZCXQJd5rZ5q8U0t5P2zXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:8d:a5:85:86:39:f7:c6:59:ee:49:67:11:b9:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Validity
Not Before: Feb 17 05:00:33 2025 GMT
Not After : Feb 18 05:00:33 2025 GMT
Subject: CN=9e4d0b6cfe0a9d443b4306d67e8cbc462fab78d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:03:19:04:98:8c:54:f3:a1:82:a9:35:4d:
f4:13:c6:f7:4e:45:2b:04:09:0f:cc:8c:23:59:d7:
6c:9f:a8:f3:16:14:fe:69:66:b5:18:bb:ab:86:9a:
df:75:18:0c:5a:e8:df:5b:63:2e:39:7f:09:18:d2:
6b:a1:04:f9:e2:d4:ee:92:94:a0:f4:b8:74:e0:a2:
8b:13:d3:4e:5b:5f:60:b7:d7:43:2a:42:5d:18:8a:
c9:53:86:06:16:7c:cb:d3:27:53:54:76:be:80:45:
29:ce:8f:ab:ba:c0:10:d2:95:f8:6b:70:94:30:b6:
b6:e8:a2:51:42:f9:87:36:02:31:9f:84:ad:cd:f5:
27:0c:78:7a:07:a4:da:1b:50:bc:11:a2:6b:08:98:
9d:54:f4:c5:45:e1:66:f5:05:d9:1f:c2:ee:e5:20:
e3:0a:8f:f8:dc:23:3d:d6:ad:68:94:18:11:21:32:
96:41:03:a5:f3:4f:36:30:85:f8:16:44:45:a7:cd:
e5:96:ab:1c:86:ff:1f:0e:62:85:8b:78:86:99:f3:
db:d3:f4:8e:92:4b:e0:04:b0:36:fd:04:8b:08:0e:
e6:d7:b8:bb:36:ed:08:89:f6:24:de:28:0e:51:13:
9a:23:a0:1c:25:e9:d2:d9:2c:5a:9e:42:2b:b4:81:
8f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4D:0B:6C:FE:0A:9D:44:3B:43:06:D6:7E:8C:BC:46:2F:AB:78:D1
X509v3 Authority Key Identifier:
keyid:69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:74:57:5a:bc:0c:30:63:59:7f:b6:8c:43:d3:14:6d:74:c5:
c3:f5:50:90:b8:80:84:b9:b4:69:f3:87:d3:c9:df:aa:9a:17:
47:e3:0b:21:31:b5:68:e3:87:75:35:13:73:78:44:9e:bf:4d:
5f:81:ee:a6:89:60:83:98:a4:70:c3:44:69:67:49:78:dc:57:
03:95:c7:58:15:ee:3e:ef:59:73:4d:e5:8d:10:86:d6:7b:ca:
5a:87:93:d7:0d:d5:91:99:53:e5:7d:e4:a0:12:be:01:f6:71:
a4:4e:56:bb:26:41:33:11:c7:21:49:22:20:21:f3:0b:ff:71:
16:16:55:09:15:93:dc:e4:c2:63:e9:f3:8b:62:88:76:85:28:
94:52:47:17:a5:0c:ce:63:c5:f3:4e:64:2f:b3:42:94:5a:b7:
bc:cf:6b:40:f5:ad:b0:60:9e:db:53:e2:43:0a:83:3f:f0:3d:
ba:13:e9:fc:34:1f:e4:2b:cd:3e:62:d4:7f:4e:5a:1c:ca:01:
3b:82:6c:8a:29:38:e1:8a:4e:b2:c5:23:53:ac:e0:60:82:79:
20:2c:9c:80:39:3a:96:44:1c:fc:ab:aa:01:fb:27:c1:94:dd:
f9:33:72:7a:d1:41:ff:2c:ba:bd:b7:1d:10:53:24:81:f7:35:
74:56:02:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:08 2025 by rpki-client