Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
File: XFe2FhFxnsfI4AErGv9-gfx2ib0.mft (raw, json)
Hash identifier: p8NbAZu2GhF1jVkxiZ+uilavjxiMpxFp3UyLKuwGTeM=
Subject key identifier: D9:43:31:19:F1:B5:48:F8:35:B4:E2:0C:21:73:8A:6B:A3:C1:32:F7
Authority key identifier: 5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
Certificate issuer: /CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Certificate serial: 0194C3F5D890B7D2EE27E7AAB7E0F2997AA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
Manifest number: 0E29
Signing time: Sun 02 Feb 2025 00:00:56 +0000
Manifest this update: Sun 02 Feb 2025 00:00:56 +0000
Manifest next update: Mon 03 Feb 2025 00:00:56 +0000
Files and hashes: 1: 736mr1KkVtoBPW1oR7owGe-ullo.roa (hash: uR2lVV+jre6sPLOQey9198pgiqdr//RLVlkZmwpBaQw=)
2: XFe2FhFxnsfI4AErGv9-gfx2ib0.crl (hash: BScl9eQzogWWWh74rfl3kAu1TTBLZ4cdMmzKuf8ZmC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:d8:90:b7:d2:ee:27:e7:aa:b7:e0:f2:99:7a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Validity
Not Before: Feb 2 00:00:56 2025 GMT
Not After : Feb 3 00:00:56 2025 GMT
Subject: CN=d9433119f1b548f835b4e20c21738a6ba3c132f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ab:b1:e6:b9:32:b7:f5:b5:79:22:31:d8:ae:
89:ec:86:59:15:9a:33:3d:91:6d:cc:f9:17:86:e5:
fe:da:b7:73:59:85:93:18:61:6e:7c:bc:7d:37:8b:
ec:fd:ce:f0:f0:67:17:34:57:90:17:f4:a3:91:19:
d1:f1:93:70:80:8b:cd:af:71:bc:41:8d:c7:55:f0:
ca:0f:1a:6c:c1:75:5a:8a:57:1b:75:d8:84:a9:19:
30:1e:4f:56:84:b7:42:79:e7:b6:18:1a:42:04:ed:
ad:bb:91:b6:e0:84:d9:4d:58:c5:48:b0:50:4a:32:
f0:ed:83:cf:16:3d:64:2e:9d:1f:48:8b:98:64:92:
37:f9:e7:de:a9:97:11:ed:24:3e:13:b1:e7:55:13:
84:fb:e2:3d:76:24:c4:47:e0:cc:b9:6e:ea:7a:75:
40:18:53:18:7c:03:87:16:14:80:2e:ff:9a:d3:3c:
78:2b:41:55:74:07:8d:61:4b:c9:52:bc:c1:2e:71:
59:a5:90:ed:bb:f5:a6:64:16:3d:c4:11:c5:6c:b9:
f5:a7:5f:5c:dd:36:bf:d2:39:fd:d8:fd:e5:03:b1:
c8:47:11:d2:6a:a8:ca:fa:a5:db:8a:d6:b1:2c:68:
d3:64:e3:6b:ed:3d:7a:ba:2f:69:31:a3:ab:08:15:
dd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:43:31:19:F1:B5:48:F8:35:B4:E2:0C:21:73:8A:6B:A3:C1:32:F7
X509v3 Authority Key Identifier:
keyid:5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d6:04:cb:55:fa:10:92:4e:66:4b:79:5b:0e:a8:f2:9a:ce:
7d:9d:59:ab:63:f9:fa:02:34:d3:4d:17:dc:9b:74:64:c8:e3:
3a:1c:97:7f:3d:ce:61:d3:ad:ba:f4:a4:33:37:2a:ea:3e:ce:
f7:1e:51:c6:c1:18:9d:3f:90:d6:2d:e4:68:6a:0e:c0:b2:d0:
d2:09:bd:be:06:9d:21:d3:2c:b4:79:d6:d5:48:76:a7:cd:e7:
47:ce:1b:73:0d:7a:37:7b:b3:d9:52:f5:63:8a:43:41:8a:b3:
17:03:31:37:65:0c:f6:eb:bc:7d:5c:69:58:00:1c:5d:d4:d8:
c5:a2:88:9d:77:0e:28:70:cd:be:7f:a0:a8:44:98:86:4c:ae:
36:06:f4:db:84:89:87:0f:3f:75:5a:d0:3a:9e:53:56:a6:d5:
5e:21:0a:23:8f:e6:d4:81:67:65:b7:3b:2f:14:b7:e0:0c:a1:
f5:97:8b:ea:03:b2:d3:8c:51:e6:cf:5a:5d:c3:6a:36:d6:23:
8a:d8:d3:c1:54:b5:e3:7d:d6:b5:9d:71:77:23:a1:a1:28:c7:
a5:93:e0:38:09:ba:ce:fa:72:b0:da:35:5c:79:45:b0:59:02:
2c:f2:a5:ae:e7:49:d4:03:5b:b5:05:fc:73:6a:9d:c9:03:01:
8b:95:a3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:04:05 2025 by rpki-client