Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: NlUa6Pz5iFQsjDrWDzB2yrHhnYX7IbGs9nKFh8mOviE=
Subject key identifier: AD:E7:33:DA:67:9E:6E:C0:52:3B:44:28:05:2C:17:86:BB:19:B1:62
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 019511A27C3CED9BFC4930990DEF1FDF9F60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 02:00:16 +0000
Manifest this update: Mon 17 Feb 2025 02:00:16 +0000
Manifest next update: Tue 18 Feb 2025 02:00:16 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: uGguXbdomS/soU/Z8fLe+noXxwXssgbTSqipzHpDTCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:7c:3c:ed:9b:fc:49:30:99:0d:ef:1f:df:9f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Feb 17 02:00:16 2025 GMT
Not After : Feb 18 02:00:16 2025 GMT
Subject: CN=ade733da679e6ec0523b4428052c1786bb19b162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1c:ba:65:bd:cf:11:3d:3d:6e:ea:9e:71:22:
a2:51:c3:a0:bf:47:82:d6:16:35:b1:cc:b4:9d:5a:
4a:4c:83:37:02:98:af:5b:80:e3:d3:36:d3:82:fb:
91:82:6b:e8:62:39:46:a4:ea:a1:1f:61:64:21:fd:
0f:af:f0:22:4c:dd:bd:4a:82:69:80:e6:ab:85:3a:
47:5b:f2:f0:76:15:f9:83:c4:5d:bf:d6:bd:1c:ae:
ce:97:07:ff:ef:94:9f:d4:b1:3d:f4:e8:4b:4d:95:
a4:0e:95:3b:53:ed:cb:17:10:bc:ca:02:98:83:5b:
28:18:91:07:74:7c:e6:81:45:5f:10:4e:a6:92:bd:
a9:9e:d2:b9:4d:f1:1c:d0:6a:ef:e7:70:b2:b3:2b:
87:e7:cd:ae:72:c0:18:f1:ed:c4:5d:99:fd:35:d3:
58:13:d6:52:37:df:bf:9b:0e:77:27:0b:98:bc:3d:
21:71:93:84:03:cf:b8:9e:b5:c4:6c:b2:b6:50:7f:
b0:ef:58:09:23:ac:c6:39:d6:bb:9f:2e:49:ca:08:
0e:df:6a:35:87:07:51:f0:09:3d:46:90:f1:6e:d8:
30:46:1d:0c:cf:54:03:5a:03:68:57:54:c8:8a:6c:
d9:35:a7:07:ef:40:15:85:f7:21:83:dc:80:84:fd:
f8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E7:33:DA:67:9E:6E:C0:52:3B:44:28:05:2C:17:86:BB:19:B1:62
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6f:72:db:92:9f:e0:83:3c:a7:53:db:85:b5:bb:80:d4:c7:
dc:45:75:94:3a:be:6a:4d:04:32:82:74:92:8c:12:fa:dc:7a:
6b:9a:d2:1f:99:0b:e3:e3:8c:12:72:05:2a:8f:f7:96:0f:7c:
8a:e1:95:4f:92:b0:37:b6:a7:5a:57:53:be:24:bb:fb:2f:c3:
b7:20:92:02:7f:d7:35:67:fc:01:a3:d0:3a:1b:1a:dd:f1:27:
db:3f:39:2c:71:2e:46:94:be:fd:ce:b4:a7:2a:b4:29:fc:94:
5f:ab:9a:ac:42:aa:f6:dc:83:0b:e2:0f:ef:4b:45:0d:1e:c6:
6b:29:0b:73:09:63:5d:47:4f:2b:61:f9:c3:ef:8c:97:89:0f:
08:c0:c4:43:1b:5e:8d:b8:cb:48:fc:23:f2:0c:49:2f:a7:c6:
f4:09:87:54:49:d7:18:15:19:ad:e4:31:46:58:17:10:c4:60:
66:b1:8c:97:26:d9:75:e4:d8:48:64:fd:b5:30:d2:2a:f5:64:
26:da:9a:76:d0:18:74:9b:67:ad:e2:e5:39:7d:ff:f4:4f:c4:
21:6e:19:83:12:2d:ec:ff:af:b6:fd:04:e2:0f:5d:2a:8b:da:
9b:60:d3:b6:8d:c8:5b:a7:b8:00:e1:78:1f:85:23:6e:e8:63:
98:fc:ff:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:37 2025 by rpki-client