Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: xG0KTwZ7sHBjFo2IbeFz2xVs9IScqF1M3cu7ufN74qQ=
Subject key identifier: C4:F5:90:7B:A9:38:24:2B:84:1E:B9:91:9D:F7:8D:99:0C:BA:38:C1
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 019511D9B89CBC083CC65F07AEB8DBC5319C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 03:00:36 +0000
Manifest this update: Mon 17 Feb 2025 03:00:36 +0000
Manifest next update: Tue 18 Feb 2025 03:00:36 +0000
Files and hashes: 1: nEhO-4IOflDc16smasjo46yXDrU.roa (hash: TGudjeK9/qruL2a7Ja97DNoAnaGXmeBxOzedTAd1+AI=)
2: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: Y5wweevieusiupcwvI/zFLyye1smsP/2Y1oQoh2qLsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:b8:9c:bc:08:3c:c6:5f:07:ae:b8:db:c5:31:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Feb 17 03:00:36 2025 GMT
Not After : Feb 18 03:00:36 2025 GMT
Subject: CN=c4f5907ba938242b841eb9919df78d990cba38c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ed:9b:d8:38:61:df:d1:41:78:be:1c:98:d9:
17:d2:8a:cf:09:eb:ba:69:b6:a8:6c:37:f5:fa:fd:
b1:19:7b:23:5f:d5:5f:10:85:6b:86:97:ef:69:0f:
1b:6a:2d:2e:13:30:3c:51:44:71:5b:76:46:5b:32:
41:a7:cf:0d:85:3f:70:97:ad:ce:26:4c:c3:c9:95:
c2:eb:ad:1f:b7:7e:57:5f:0a:1f:55:68:1d:7c:79:
4d:cd:32:85:8c:54:80:5e:9a:0e:31:39:2f:4f:23:
9f:1c:c3:de:05:36:5e:50:86:8e:a0:e1:01:fd:7b:
fe:fe:ae:b0:8f:64:be:35:03:64:4a:7e:36:77:d9:
c3:14:46:3d:af:ec:a2:0d:9b:69:39:76:99:8f:5a:
22:53:91:3b:b5:b0:71:14:db:fa:68:93:98:88:ce:
08:db:b1:a4:ff:9c:8f:37:8e:10:b5:65:f6:c8:a9:
58:f1:41:ab:77:96:47:9b:cf:44:d7:8a:74:4d:eb:
81:46:eb:b1:55:d1:7c:cd:38:1c:9f:22:cc:e3:db:
c1:d6:36:2d:31:cd:7c:5c:f5:73:c6:af:f3:98:ac:
c1:55:79:6d:cd:b9:34:30:2c:25:40:b2:3a:30:0c:
fd:8a:2d:95:16:08:a9:f6:ac:cc:37:97:75:b3:9f:
32:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F5:90:7B:A9:38:24:2B:84:1E:B9:91:9D:F7:8D:99:0C:BA:38:C1
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:1d:88:ce:e0:04:03:36:77:67:23:85:ec:00:c8:cb:45:25:
36:f6:e6:7b:37:ff:4a:17:7b:fd:66:8a:4a:3f:9d:39:0b:ff:
15:f1:97:5e:f7:ae:65:cb:51:7a:ac:65:d1:79:b0:47:75:40:
0d:94:74:9c:2b:46:ab:9c:7a:24:a8:d8:32:45:6c:fe:6e:eb:
84:0d:3d:8b:8a:45:dc:b8:8b:06:8c:6f:51:4d:2d:86:59:fd:
0e:f6:14:0a:49:c3:4b:14:c3:6b:5d:1f:e4:56:25:a2:be:4e:
59:10:1e:29:de:18:e0:5b:4a:26:64:1e:60:ad:c0:09:84:a6:
16:c0:95:3f:4d:ba:d9:a0:a0:bf:fd:e0:1d:f3:1d:59:ff:ed:
90:f1:2a:ac:bd:b7:16:e6:24:d5:09:8d:fc:f9:a7:45:23:53:
4a:23:bf:e5:a5:fb:d5:5d:ee:32:a8:74:d8:ff:c2:21:f3:c2:
d4:42:f6:f8:a0:59:b2:c9:a5:f6:e4:0d:2b:69:55:24:f1:44:
23:cd:54:16:07:9c:ad:0e:3e:2f:62:b2:18:b6:ab:d9:9e:e2:
7b:d5:43:68:09:3d:74:ea:2c:54:b4:5b:a2:57:eb:c0:d8:4d:
e2:ff:79:13:aa:37:02:dd:f8:78:88:4c:31:75:14:bf:15:eb:
ae:53:af:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:40 2025 by rpki-client