Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
File: mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft (raw, json)
Hash identifier: GYNjZKDM78g8mCciExhh1GT6mLe2+qOQf3Im3xEP+L4=
Subject key identifier: 58:3A:CF:19:DE:6E:5F:C3:1B:52:C2:B1:4D:CD:B5:47:E5:25:D2:D1
Authority key identifier: 99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
Certificate issuer: /CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Certificate serial: 019510901734DF442FD68E0355D75BE916E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
Manifest number: 0A2B
Signing time: Sun 16 Feb 2025 21:00:33 +0000
Manifest this update: Sun 16 Feb 2025 21:00:33 +0000
Manifest next update: Mon 17 Feb 2025 21:00:33 +0000
Files and hashes: 1: mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl (hash: GoaT3ucsOnm4sLdAARvVwzWH+yvJxPcbg8/NY+PcIx8=)
2: nZK_WOZBkx5CjkyneO9yoAn9z7M.roa (hash: dpA6T/m8yk0xZEgRWH2rVz82pLkCcKV+oqNh5OTEUXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:90:17:34:df:44:2f:d6:8e:03:55:d7:5b:e9:16:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Validity
Not Before: Feb 16 21:00:33 2025 GMT
Not After : Feb 17 21:00:33 2025 GMT
Subject: CN=583acf19de6e5fc31b52c2b14dcdb547e525d2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:db:d6:aa:ea:e7:f1:3a:00:e4:f8:a7:80:fb:
c6:d1:c4:30:4e:30:c7:8f:72:1e:87:e1:41:91:9e:
19:c8:8f:58:6b:fc:8e:de:a3:45:ab:86:e4:86:6e:
3d:cd:08:63:10:eb:80:85:df:cc:d5:ba:34:5f:9d:
df:98:33:9f:00:2f:6e:fd:90:b8:76:fb:f6:26:a7:
ce:d4:9f:c7:8a:61:17:f1:20:92:52:19:5c:33:c2:
89:e7:03:ca:38:14:80:68:42:32:84:97:ee:16:fd:
a3:24:78:27:b2:7f:2a:10:07:e6:a8:9c:9a:a9:cf:
63:2a:bd:72:1f:f5:f5:e2:aa:ed:53:75:8d:da:3f:
73:fd:db:24:8d:bc:ea:71:35:63:8f:83:49:5a:dc:
0a:3e:80:98:f4:46:df:a1:50:c0:ff:29:dc:ed:ed:
b2:8c:d8:a4:49:fa:08:19:31:a0:8c:51:41:4a:67:
a9:0a:75:1d:43:11:ad:38:df:d8:8a:83:26:58:e3:
8d:2a:f0:67:3b:eb:64:32:2d:d4:74:eb:e2:8a:6e:
66:4d:7c:52:19:50:1b:ff:19:a7:c5:87:85:13:c1:
45:7b:73:34:e2:eb:b1:39:ae:b4:81:8c:4c:61:ef:
c5:78:1a:0b:cd:64:8d:d5:9f:1f:ac:59:b9:04:60:
bb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:3A:CF:19:DE:6E:5F:C3:1B:52:C2:B1:4D:CD:B5:47:E5:25:D2:D1
X509v3 Authority Key Identifier:
keyid:99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ff:58:7b:cd:7a:13:fc:4a:4e:88:1e:a6:8d:f0:97:40:93:
b1:ba:b0:45:ec:f9:c3:b3:b9:5d:c1:05:bb:80:63:dc:66:a3:
42:2a:e6:5d:c6:2e:1f:02:2d:be:1c:42:ed:ea:a6:be:29:94:
a9:d2:dd:da:25:a9:9d:6a:41:1c:34:e8:1c:cf:bb:93:73:a2:
8c:7c:2f:e3:dd:41:b9:4f:88:16:c4:9a:7b:7a:57:5e:cd:42:
32:92:5c:89:de:40:09:90:08:6e:0d:dd:47:62:9f:0d:16:d0:
dd:e2:06:76:34:15:93:e2:df:ae:c8:58:94:a5:5a:9c:44:61:
41:26:f3:07:91:d6:1a:0e:97:f7:83:00:8b:6a:27:cd:f3:93:
a5:d7:fe:81:1e:43:a9:7c:0e:53:32:6e:8f:aa:24:4f:69:a5:
d4:e3:c4:87:88:ac:6d:c1:20:29:ed:9a:05:6b:a1:57:df:a4:
b3:44:ae:12:85:c7:c9:a6:10:bc:54:18:a1:aa:90:ae:69:7a:
a2:c4:b8:9e:ca:ab:69:26:bd:8e:71:b4:d4:14:9d:66:40:95:
e7:d0:69:dd:06:d0:ef:da:c6:88:03:e3:87:b4:ee:5d:e6:0a:
56:ff:3a:f5:3c:c7:d6:d4:71:0e:9f:02:d2:f5:d4:a1:03:6d:
cf:74:82:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:42 2025 by rpki-client