Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
File: Dri8RONvrhbTcQL9DVGfKE1mPZA.mft (raw, json)
Hash identifier: 71KOQK+Jz5sqc3lglcSVO8fEYKE+LD5o41F/ONPmQF4=
Subject key identifier: D8:EC:28:F2:13:9D:DD:E8:0B:34:95:20:1C:F6:8D:98:AF:E1:7C:8C
Authority key identifier: 0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
Certificate issuer: /CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Certificate serial: 019511A2AB17AE705D209AE056F618D45D3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
Manifest number: 13A1
Signing time: Mon 17 Feb 2025 02:00:27 +0000
Manifest this update: Mon 17 Feb 2025 02:00:27 +0000
Manifest next update: Tue 18 Feb 2025 02:00:27 +0000
Files and hashes: 1: Dri8RONvrhbTcQL9DVGfKE1mPZA.crl (hash: AEJC6yoFt6uIDdzCZ5zs67l2ZWg6ViLvvRHDPj1owI8=)
2: EnQM4_whnPJeaxWRQxPEz7dH7rY.roa (hash: anAGsxZMEMPM7WeK+BVeddK3oakg7+TLd3wIh7D05ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:ab:17:ae:70:5d:20:9a:e0:56:f6:18:d4:5d:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Validity
Not Before: Feb 17 02:00:27 2025 GMT
Not After : Feb 18 02:00:27 2025 GMT
Subject: CN=d8ec28f2139ddde80b3495201cf68d98afe17c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:f5:d5:63:41:e1:f3:e2:44:74:1d:51:41:
14:75:62:85:bd:2c:28:a3:46:f9:10:eb:96:f4:d7:
ff:05:bb:13:0c:a3:a3:7a:c5:1c:2f:7d:75:c0:50:
d0:c1:06:bb:3f:d3:a8:6c:f8:fe:42:f0:c9:51:a8:
9f:93:19:a7:28:29:37:02:66:1b:d4:38:dd:0e:9f:
ff:ab:a5:2c:18:31:c4:78:88:2a:e2:52:b4:d0:c7:
b0:e2:7c:85:fd:35:6a:62:c9:7b:d2:bd:99:da:04:
f4:49:41:cd:07:b5:3f:1e:64:1c:a1:04:27:8b:e7:
e9:f4:70:85:96:52:97:f6:c0:6b:f8:d1:3e:2a:7d:
c4:f5:8e:57:85:6a:07:18:61:b5:47:e3:d1:e8:03:
da:51:46:b3:75:2f:78:fd:8e:7e:e4:ce:93:95:1b:
ab:0c:ce:35:b5:92:10:24:e0:7a:57:1e:35:8e:11:
b5:a9:6e:dc:7e:ff:91:c2:ee:19:7c:f0:d7:72:a3:
4c:37:2f:08:51:31:54:33:cb:6e:54:51:d6:e9:67:
88:95:ab:2e:19:bf:ca:94:77:3a:4d:7a:b2:13:9d:
8b:8f:58:cf:35:ce:a0:f2:8a:e5:40:76:5f:dc:34:
da:7e:38:3c:87:01:9a:19:6e:b4:e1:e6:14:3a:71:
ad:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EC:28:F2:13:9D:DD:E8:0B:34:95:20:1C:F6:8D:98:AF:E1:7C:8C
X509v3 Authority Key Identifier:
keyid:0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:f3:c7:ee:ec:b3:86:36:f6:86:d4:2f:b6:0b:4f:e0:8b:56:
b8:ea:a8:60:eb:8e:c7:5e:53:6e:c6:d5:03:22:c2:56:b2:16:
cb:a5:89:7e:a4:58:85:61:3f:4e:34:1a:50:12:be:1a:7f:ac:
0a:20:a3:c7:64:ea:79:ec:cc:00:69:4f:59:a2:31:03:0d:b5:
41:b4:d6:1e:b6:8d:85:88:30:95:1b:4c:f2:e9:93:be:62:88:
13:8d:62:27:45:40:33:74:31:96:9a:00:46:77:16:24:af:0f:
de:7f:00:85:cf:6c:63:93:8e:c8:8b:f7:8e:25:e8:fe:69:c3:
b9:18:8f:5e:15:39:b2:24:f7:f9:c3:a4:98:f7:9e:97:c5:13:
cf:b7:f3:0b:ab:0e:bd:86:79:cf:9a:18:53:9a:4b:b5:39:35:
13:ce:01:71:8d:e6:49:f2:91:7f:71:96:ef:c0:ae:5e:3b:69:
60:53:6d:74:6b:4d:bb:8e:ce:d9:b6:be:34:d9:fa:e0:c3:ff:
3c:11:ad:52:77:20:f4:ef:5e:3b:ea:59:1f:c1:29:31:eb:5f:
22:ff:d1:9b:14:b2:51:3f:43:52:00:25:38:2a:4c:74:4c:ca:
3b:17:51:56:cf:dc:92:62:63:28:10:c4:e4:ef:66:9d:ec:81:
c2:37:aa:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:53 2025 by rpki-client