Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
File: NVyaW8uDQBCKQchiduHLlKYefak.mft (raw, json)
Hash identifier: rdvJQ5Ymo6y0y7sDI6Iv55eouvlkrhFBoOQlKuc807o=
Subject key identifier: 74:CA:ED:17:6C:DE:E9:7F:DF:84:3D:AA:13:87:BF:49:A4:51:01:55
Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Certificate serial: 0195116B92DA328ACA447B4C26D978388F5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
Manifest number: 0CEF
Signing time: Mon 17 Feb 2025 01:00:17 +0000
Manifest this update: Mon 17 Feb 2025 01:00:17 +0000
Manifest next update: Tue 18 Feb 2025 01:00:17 +0000
Files and hashes: 1: 5KKpk9qEveM_ucLAOYR8lDjQsvs.roa (hash: FsEABHDgSk6DaTySsepeca9yMLpdy1J0E11YMBOaZ9k=)
2: NVyaW8uDQBCKQchiduHLlKYefak.crl (hash: MHSvcyOcwFg5LRt+joDFnYvYS++SlYfhisqL8W4VJLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:92:da:32:8a:ca:44:7b:4c:26:d9:78:38:8f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9
Validity
Not Before: Feb 17 01:00:17 2025 GMT
Not After : Feb 18 01:00:17 2025 GMT
Subject: CN=74caed176cdee97fdf843daa1387bf49a4510155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b0:d7:e3:6d:40:98:e8:84:ce:2d:c9:aa:2e:
36:08:3f:63:bb:88:e0:77:7e:33:78:1b:44:74:cd:
2d:58:31:5a:97:e4:d1:80:b0:64:7c:19:16:86:30:
97:51:8e:40:c4:bd:97:28:07:5d:f2:a5:23:b2:3b:
d1:3e:49:e2:5d:4c:90:59:d6:49:4b:34:d7:eb:aa:
73:55:f0:dd:36:51:65:0a:fd:f6:6d:7e:f2:01:00:
c8:ee:e8:54:d0:17:67:96:fc:b0:bd:da:55:3a:4e:
dd:37:75:55:a6:83:89:55:b3:80:25:66:94:59:c9:
0a:af:59:67:7b:b4:12:a9:3d:01:79:c7:ae:25:5b:
a8:22:76:a6:eb:cd:62:5e:16:76:81:8a:0f:43:f3:
e9:24:c5:c3:2c:d0:22:1b:d1:ef:c1:a3:6d:5b:ab:
2c:d8:0e:ef:44:60:33:f5:80:49:25:d2:42:36:9c:
9e:7f:ca:90:10:c1:a4:bf:b8:fd:ed:d2:8e:b9:54:
a1:f8:09:f5:80:62:d6:31:91:36:91:94:57:76:87:
55:08:5c:f2:58:07:80:bd:92:2c:1b:61:4d:37:2f:
44:03:95:62:5f:fa:b6:96:48:81:0d:3e:ba:1d:7d:
f8:34:ed:e9:b5:12:c8:c7:e3:07:8f:f4:14:dc:76:
0b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CA:ED:17:6C:DE:E9:7F:DF:84:3D:AA:13:87:BF:49:A4:51:01:55
X509v3 Authority Key Identifier:
keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:59:e2:f5:5f:d6:0b:19:c8:bc:29:96:ba:bb:35:76:df:4a:
1b:88:1b:03:45:db:f0:6f:75:da:23:8b:cc:c2:84:51:19:20:
e8:e7:55:73:fa:f1:2f:7c:21:cb:05:8e:f6:ab:77:6c:c9:c9:
3b:42:d7:2f:20:36:76:07:da:ab:31:9b:17:66:28:9d:cb:bd:
f6:78:b1:d1:e1:70:88:8e:94:eb:29:92:cf:0a:63:41:0b:af:
71:43:0b:ca:fe:eb:27:cb:55:04:a4:fe:53:3f:21:31:9a:4f:
ba:c2:35:bc:fe:f9:75:df:fb:37:fc:64:e8:5f:e3:75:cd:e3:
f7:09:ab:bd:2e:aa:ee:61:db:5f:4e:93:88:36:7d:cb:93:a9:
76:bf:e4:eb:5c:c7:d2:f2:81:ad:3b:8d:83:24:4c:f1:cc:96:
36:d5:28:6e:fc:66:18:5d:49:21:15:9e:40:2b:c8:4b:ce:97:
ca:25:d1:df:cc:32:95:a6:f0:2d:01:98:b4:db:d7:f9:63:c1:
36:96:6c:14:8c:de:8d:a7:c2:b6:38:20:f7:cc:c3:c5:86:d0:
77:67:d6:ba:ba:1e:49:4a:8f:72:17:fe:f4:48:36:6e:7a:ad:
6e:2f:d5:7e:6c:5f:bc:67:d9:57:54:85:b1:bc:2f:9b:10:e5:
3b:a6:53:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:56 2025 by rpki-client