Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json)
Hash identifier: On897j915x2Cl/ac2AevuMhHY44iH0494uqaX8JAbUw=
Subject key identifier: 03:7D:F8:41:ED:57:0B:16:17:D5:88:9A:BF:BC:16:F9:13:0F:64:90
Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Certificate serial: 0195127E870F98EE556394C1C26619CA1911
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
Manifest number: 04A3
Signing time: Mon 17 Feb 2025 06:00:36 +0000
Manifest this update: Mon 17 Feb 2025 06:00:36 +0000
Manifest next update: Tue 18 Feb 2025 06:00:36 +0000
Files and hashes: 1: a_Q0Oj2hhJ8gyCrgqERD5VjhULo.roa (hash: ix5ZmIac7PSSZ8cbH+U6PyHdhcxmOIX450xPjZ8S6o0=)
2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: Y1b90SA+v4mHW/oeDhVkzGfBrWiMPvc5tme2MYbpDzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:87:0f:98:ee:55:63:94:c1:c2:66:19:ca:19:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9
Validity
Not Before: Feb 17 06:00:36 2025 GMT
Not After : Feb 18 06:00:36 2025 GMT
Subject: CN=037df841ed570b1617d5889abfbc16f9130f6490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:ac:96:c3:0d:cc:fa:aa:1a:5a:af:7e:42:
b5:eb:c7:1c:b5:eb:ed:40:a1:23:da:88:49:fa:ef:
47:fa:dd:76:ff:d3:84:c9:33:6b:f3:e8:82:66:b9:
98:ec:51:ed:41:50:79:a8:e7:74:b8:81:36:ab:66:
54:3b:c5:a1:83:35:07:d2:e9:55:df:43:69:84:66:
5c:2d:51:28:89:30:6a:99:40:a4:5f:ef:ad:fb:91:
be:6e:e4:d6:b0:9e:0f:26:46:64:f1:f5:f8:28:14:
98:a1:e1:02:0b:43:5c:bc:0e:a3:d4:eb:2e:9b:ef:
0c:bb:e7:85:16:20:f5:4c:f2:c1:8e:d9:fd:31:fc:
ea:fd:2e:cf:0b:37:d2:d8:e9:16:6b:e0:ea:8d:43:
b1:8c:05:6c:9f:10:0e:bf:6a:f8:8d:dc:7b:99:d2:
39:40:0d:54:18:6c:63:e9:8c:fc:54:94:07:e5:11:
6d:7d:09:de:dc:6f:6d:79:a2:64:84:37:b7:02:a5:
04:80:05:fc:1b:f4:49:5d:f1:b9:2c:34:a0:a1:c3:
27:e2:d6:24:e4:83:d3:73:d7:8b:1e:12:84:1c:aa:
77:5a:00:ea:77:0b:52:82:70:d3:19:e5:ed:e1:f8:
4c:4a:fa:9a:7b:83:16:14:bf:3d:7c:56:3c:8c:a4:
68:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7D:F8:41:ED:57:0B:16:17:D5:88:9A:BF:BC:16:F9:13:0F:64:90
X509v3 Authority Key Identifier:
keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:df:62:5b:30:30:68:cd:f5:9f:f2:fc:2c:c6:20:c3:56:c1:
41:4a:ce:d6:db:4e:1a:73:b9:5c:dc:21:ca:52:dd:f7:a3:f5:
ac:0d:d0:d0:9d:b5:e0:7b:4e:18:32:fc:c2:f3:41:b8:30:0f:
e5:e7:4f:ad:ee:e4:1c:7f:26:a3:96:16:61:b6:43:db:af:69:
29:47:0d:98:be:2a:c3:d4:34:ec:9f:95:e1:60:ba:db:fc:63:
53:d9:5a:f4:9e:88:4b:81:48:0c:41:39:c3:ee:39:e2:fd:9d:
ac:e7:4b:27:e2:5c:c9:0c:ee:26:f2:ed:b5:9c:6b:e4:60:fa:
63:cd:5f:9a:46:f9:24:eb:b7:c5:c5:af:6e:69:0a:4f:d9:7b:
30:6d:84:d5:8b:9e:30:41:eb:d6:c6:d2:67:44:05:80:42:6c:
ca:61:d7:07:90:80:ff:08:69:f3:70:f0:6f:cf:32:89:15:a0:
50:5d:03:6a:67:b0:ae:04:ec:c4:1b:fb:eb:e8:53:e4:a7:ac:
61:39:40:69:c0:a7:26:4c:88:69:6e:2b:51:00:27:fa:d8:66:
03:7e:34:e8:f1:c5:de:7f:36:02:a4:54:a9:b1:d1:e7:3b:24:
8c:39:da:7d:82:f5:1a:8c:4a:64:ed:a5:27:7f:c9:b5:2d:31:
93:fb:3a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:17 2025 by rpki-client