Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
File: j_he_yRIxzZG41Sv6mQbz3nnx_k.mft (raw, json)
Hash identifier: F7hjiHiNvkpmqro8VOI0ANfYCZBZuy3Py33/eR0+IL0=
Subject key identifier: 13:94:39:D8:F2:AE:4E:B4:90:67:0D:78:41:16:56:40:54:91:B0:45
Authority key identifier: 8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
Certificate issuer: /CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Certificate serial: 019510C752F78EF3FEBA01027ACB17EE61B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
Manifest number: 03B2
Signing time: Sun 16 Feb 2025 22:00:53 +0000
Manifest this update: Sun 16 Feb 2025 22:00:53 +0000
Manifest next update: Mon 17 Feb 2025 22:00:53 +0000
Files and hashes: 1: izDgJyT_jFs6Afm1vFmx3IUq128.roa (hash: +piNMelo8kmyTOhWUH5qriIcmuElNVknleJSz/MJ2T8=)
2: j_he_yRIxzZG41Sv6mQbz3nnx_k.crl (hash: j7oETWQ+ncizmuNe+3IMt1bFx/oiDSWJLAKQ2uyvtnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:52:f7:8e:f3:fe:ba:01:02:7a:cb:17:ee:61:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Validity
Not Before: Feb 16 22:00:53 2025 GMT
Not After : Feb 17 22:00:53 2025 GMT
Subject: CN=139439d8f2ae4eb490670d78411656405491b045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:05:ec:5f:fe:79:98:81:5e:50:dd:28:ae:3f:
5b:cb:af:bf:23:46:3b:e0:04:48:8d:c7:74:79:e8:
a0:0f:c6:43:f0:6d:af:ae:a6:35:c0:4e:ec:d6:0e:
c6:39:ef:7c:b5:9f:93:94:b3:9d:4f:4b:cd:fe:6f:
35:16:63:06:b8:4c:05:8c:09:4b:9c:f2:28:7e:85:
cb:2d:3b:d4:3b:17:ce:6d:43:a5:7e:ad:75:89:1d:
9e:95:ec:cf:59:1d:86:31:39:f5:97:93:e5:0a:90:
a2:0c:83:99:4f:a6:7e:1c:19:5e:c1:3e:47:c4:e0:
21:9f:67:b7:22:0e:2c:00:8d:99:b3:cc:c3:39:03:
f7:26:f8:b7:d4:53:56:c0:c4:45:89:ac:5c:0c:6d:
63:d6:26:d4:a7:39:6f:18:f7:6b:be:f9:c4:03:c7:
5f:36:e8:e7:39:4f:05:e8:ac:14:34:4e:f9:fb:4c:
15:9b:e3:4b:50:8e:c4:e4:37:f8:0e:dc:5d:6d:a4:
73:9d:2e:8f:12:48:5c:1a:79:0c:25:7e:a9:55:46:
67:89:18:b2:4d:03:86:bd:58:80:04:a6:8b:2b:5d:
a4:fe:a3:b0:5b:e5:57:7b:43:74:a0:95:bb:d4:5a:
24:50:17:d3:3a:99:83:15:af:07:5e:98:d5:cb:34:
a7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:94:39:D8:F2:AE:4E:B4:90:67:0D:78:41:16:56:40:54:91:B0:45
X509v3 Authority Key Identifier:
keyid:8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0d:85:d5:b4:8a:db:db:5d:fc:76:b6:8d:85:a6:57:dc:47:
c4:a5:3d:dc:a8:19:64:21:5c:ca:30:cc:08:c7:78:af:42:36:
4b:1d:3b:f5:76:85:02:51:b1:f5:c6:44:0f:76:65:3b:2d:45:
2a:d8:e6:10:bf:08:ee:fe:6f:14:02:81:1f:c1:b0:be:29:10:
59:36:07:4e:34:fd:80:4a:d2:2e:e5:c7:8f:60:96:4d:d6:73:
6b:19:a7:02:2b:fa:07:9c:10:fc:0f:06:34:78:83:40:ab:0a:
57:25:55:bb:08:67:30:d6:a0:05:64:b0:d5:7e:87:96:77:6e:
9c:d2:c3:2f:63:42:6a:de:d8:67:68:67:3a:43:82:43:c6:1e:
91:da:29:44:4a:b0:df:b0:e3:61:23:a0:2e:28:b4:85:a1:5f:
f4:2c:e5:fe:75:4f:2e:f4:90:df:f3:b3:73:1b:b6:0c:64:c7:
ba:23:d5:15:f4:1c:4e:d4:44:f7:69:65:f6:28:0f:6b:8c:3a:
bf:b0:d1:b3:ff:eb:45:95:5b:b8:af:54:f4:20:b5:07:63:91:
7c:00:f4:44:61:89:39:ed:9c:63:71:b7:da:f0:ce:b0:58:41:
aa:ec:3f:32:ce:b8:15:21:43:08:7d:61:17:bc:67:a7:7a:85:
91:73:ee:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:00 2025 by rpki-client