Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
File: 3XF0IQf16FBis-CuZa-kuuZw4Es.mft (raw, json)
Hash identifier: NRf8UrqPp0Si+BmaPmGQaGv0DCQgAmyp+ZrsVSWilRQ=
Subject key identifier: 26:22:2E:DC:56:F7:CC:9A:3D:21:C0:EE:68:6E:60:50:52:CC:DA:25
Authority key identifier: DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
Certificate issuer: /CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Certificate serial: 019512105B8CEA8C4548D894F6C28088099B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
Manifest number: 02D7
Signing time: Mon 17 Feb 2025 04:00:16 +0000
Manifest this update: Mon 17 Feb 2025 04:00:16 +0000
Manifest next update: Tue 18 Feb 2025 04:00:16 +0000
Files and hashes: 1: 3XF0IQf16FBis-CuZa-kuuZw4Es.crl (hash: I6aRDEiT6pEwZJRy46puxjB4/VZdkPkc/whqVTnvWAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:5b:8c:ea:8c:45:48:d8:94:f6:c2:80:88:09:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Validity
Not Before: Feb 17 04:00:16 2025 GMT
Not After : Feb 18 04:00:16 2025 GMT
Subject: CN=26222edc56f7cc9a3d21c0ee686e605052ccda25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d9:af:53:d2:95:94:20:9e:96:d4:95:f5:61:
61:86:01:ef:f5:0a:4d:65:c4:1d:d8:5d:97:c9:a3:
63:44:2e:b2:3c:0b:e0:a0:0e:c6:07:07:9d:ed:4e:
9c:fc:e0:ce:68:f4:3d:63:63:7d:2b:aa:65:ba:0c:
99:5f:46:ef:71:20:ec:eb:86:1e:ba:d3:e3:68:ea:
b0:1e:e3:f1:5d:f7:87:73:6f:81:a1:8c:0f:cf:9c:
a6:60:3e:ce:96:7d:ec:59:a4:00:70:47:ce:97:05:
c0:5e:e9:b1:d8:80:69:44:73:98:92:16:92:9a:3d:
7c:bf:13:e0:71:56:1b:59:53:7d:ef:dd:24:6f:37:
7b:96:db:5d:2e:05:2f:2b:16:97:dc:12:e8:fb:09:
7e:48:bc:4c:67:11:93:b6:0c:18:18:1a:2a:e6:f4:
8b:36:b6:46:5d:34:57:f2:a9:e3:5b:02:11:bc:53:
10:10:62:a5:c7:bf:e6:4a:1f:6a:7f:d9:f6:c5:1c:
fb:da:79:d5:d3:73:66:5b:59:a1:68:ae:a4:2c:fa:
fd:1d:43:90:f1:f2:1c:13:5e:44:ea:58:aa:77:07:
ae:f9:b9:81:e3:7d:e4:d7:5c:da:6d:7d:e1:e8:88:
a8:15:c2:7c:78:c3:ad:53:2b:26:c9:f3:c2:0f:f1:
92:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:22:2E:DC:56:F7:CC:9A:3D:21:C0:EE:68:6E:60:50:52:CC:DA:25
X509v3 Authority Key Identifier:
keyid:DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ed:bb:57:d3:60:36:84:d9:df:8f:ae:1d:06:a8:9e:01:47:
3d:be:d4:e1:46:18:3b:ae:10:bd:45:f8:22:83:7c:9d:19:33:
25:58:53:cf:77:fc:01:96:34:07:6e:36:7b:a9:30:91:ff:64:
3d:de:e6:b2:95:be:ce:2e:f2:c0:c3:a2:5d:a5:8f:fb:57:e8:
ff:3e:e6:e9:df:62:db:e9:f4:c6:d6:19:65:05:0f:4f:5d:24:
9c:1d:86:65:9e:eb:a0:57:1d:8f:1d:23:eb:6b:9d:05:1d:d7:
a3:9c:6e:8b:ba:fe:af:6b:c1:4b:fc:02:cb:3a:c1:50:d3:c7:
4f:77:95:08:8c:ea:95:08:4d:1b:84:0b:ac:35:85:f2:c1:0e:
9a:ae:63:c7:19:f9:87:20:1a:0c:b8:15:31:5e:52:e2:fe:6d:
fd:59:48:29:72:d9:83:bf:f1:e6:c5:96:41:d3:32:fc:20:8f:
9a:83:84:de:44:61:04:bb:73:6a:cc:e3:92:3d:17:44:34:2c:
3d:65:15:cb:f1:3a:ea:2a:28:82:a7:3c:58:96:07:88:f7:cc:
e2:53:39:14:9a:84:ae:a8:0b:e9:b4:6d:52:fe:0a:d8:82:cf:
68:d7:f3:f0:af:1c:89:4e:cc:1c:41:c4:4e:f1:60:68:eb:92:
73:1f:f4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:18 2025 by rpki-client