Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
File: 0dMLd0soDDfhxe1dimnLmvZIsGU.mft (raw, json)
Hash identifier: JK72nMZEbaYxAtNGEwDs0W3VIRFO2etD/tJ7XDHwxdc=
Subject key identifier: 9E:80:1E:48:82:EC:35:2F:65:85:40:43:3E:6D:FB:C1:71:68:97:14
Authority key identifier: D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
Certificate issuer: /CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Certificate serial: 019510C6A442326A97BAC3078F3970C97F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
Manifest number: 08C3
Signing time: Sun 16 Feb 2025 22:00:08 +0000
Manifest this update: Sun 16 Feb 2025 22:00:08 +0000
Manifest next update: Mon 17 Feb 2025 22:00:08 +0000
Files and hashes: 1: 0dMLd0soDDfhxe1dimnLmvZIsGU.crl (hash: Y2AWpO6rGYF4X+Qg/H7+sRqQkgNJkcvODss6w49M38Q=)
2: Z6jijp-NqGecwIu65j-qEMAm0nw.roa (hash: 19TQbomnm0YTugnf3c9Z0fKykpuT1EtKWHuZ0GsZG+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:a4:42:32:6a:97:ba:c3:07:8f:39:70:c9:7f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Validity
Not Before: Feb 16 22:00:08 2025 GMT
Not After : Feb 17 22:00:08 2025 GMT
Subject: CN=9e801e4882ec352f658540433e6dfbc171689714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:5a:a0:f2:5c:91:0c:3c:b7:79:1e:ca:41:
74:56:8f:fd:d5:69:14:ed:cf:c9:6e:a7:fe:f4:0f:
0f:e9:b9:8d:71:4f:46:98:d0:9f:c7:c6:81:6b:4d:
bf:6e:76:99:77:ce:73:40:1c:32:4e:09:83:40:86:
2c:3d:77:a5:f0:17:45:64:fa:bb:74:55:f7:d7:15:
59:d2:a0:c3:e8:cd:52:5e:a4:bf:04:ad:a4:74:1f:
04:53:b2:ba:cb:d4:9b:38:93:7a:ae:4d:f4:62:64:
32:4e:76:69:69:7d:13:24:1b:f4:3e:04:7b:88:4c:
66:fe:64:04:ca:b3:eb:a4:c2:5f:df:2c:d7:87:75:
10:c2:97:c8:cd:af:bc:5a:73:b8:c7:51:c6:c3:08:
4d:39:59:73:60:ae:c7:9e:a6:07:5c:c5:13:bc:77:
b3:23:4f:56:fd:a1:8e:64:ef:fe:ca:1e:a7:4b:5a:
78:d9:f4:3d:cd:62:67:4f:06:af:15:39:65:28:38:
2f:61:97:06:97:2d:61:5e:45:d3:37:e9:18:52:5f:
6b:c0:4c:33:50:b7:36:f5:f4:37:db:c4:c4:b7:00:
35:55:20:70:fe:88:ac:0d:ea:72:4c:67:f3:e7:3a:
12:b2:15:04:15:93:27:fc:82:61:f2:20:c5:e4:2e:
27:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:80:1E:48:82:EC:35:2F:65:85:40:43:3E:6D:FB:C1:71:68:97:14
X509v3 Authority Key Identifier:
keyid:D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:45:3c:2a:97:0c:e6:7a:45:21:c4:34:c0:02:95:89:33:a8:
99:e7:75:a4:b8:ff:78:3d:58:01:5f:fc:8e:40:bb:0c:fa:6c:
d8:ae:59:03:9a:d1:c1:3a:14:31:c9:98:4f:80:be:f5:7b:95:
ce:de:ae:30:04:46:54:75:4f:18:35:75:c0:7f:a4:ca:d3:e5:
03:1c:50:02:22:86:22:84:c2:58:dc:15:2a:ac:27:79:f7:a2:
d8:d3:b5:64:85:a7:f3:89:de:02:83:db:54:21:c4:de:b4:25:
d0:9c:a1:06:b1:7f:ca:83:21:7f:8a:f6:23:d4:6d:a2:15:10:
67:71:5d:f0:d7:a0:87:e8:9d:45:b4:fa:ab:48:31:32:7c:28:
6f:90:06:3f:7a:4c:c2:a4:c0:2e:4b:a4:14:49:5a:f5:2b:21:
03:2c:cc:47:69:d0:67:2d:4f:cb:86:bc:d3:98:eb:55:14:3b:
11:cb:24:79:82:b7:a8:b9:78:96:e9:12:01:c1:2d:d2:6b:89:
5e:f8:06:c1:6b:23:3c:d8:cc:09:20:95:d0:6c:47:1c:c8:08:
5d:3b:6a:1b:92:41:55:ce:f7:90:f3:4e:62:07:4b:fb:05:a4:
48:f4:ba:ef:bb:de:eb:c3:77:7b:e5:4e:2f:a9:5e:86:0d:6c:
d8:d0:42:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:50 2025 by rpki-client