Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
File: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft (raw, json)
Hash identifier: uNwRuKpH/61YwrUbtWIPuN8VWLer+OpsQCfLx/PIcEI=
Subject key identifier: D9:47:A6:90:08:A0:C7:F4:69:ED:52:90:2A:B5:7C:90:6C:5D:B2:20
Authority key identifier: 22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
Certificate issuer: /CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Certificate serial: 0194C463CC1D6C01A8CCF54738B51588151C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
Manifest number: 09FF
Signing time: Sun 02 Feb 2025 02:01:02 +0000
Manifest this update: Sun 02 Feb 2025 02:01:02 +0000
Manifest next update: Mon 03 Feb 2025 02:01:02 +0000
Files and hashes: 1: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl (hash: yqLforWQ1SJe+gba392FuTzfbT9YtXDWkRoa/yK5n2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:cc:1d:6c:01:a8:cc:f5:47:38:b5:15:88:15:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Validity
Not Before: Feb 2 02:01:02 2025 GMT
Not After : Feb 3 02:01:02 2025 GMT
Subject: CN=d947a69008a0c7f469ed52902ab57c906c5db220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:39:b7:d1:cd:29:00:37:c2:a5:5d:77:a7:60:
5e:04:b3:3a:77:6f:ad:06:78:a0:8f:2e:30:38:85:
da:bf:04:d2:73:8e:4f:95:0b:96:e7:ae:44:5d:a5:
b9:f1:79:9f:0c:f1:06:f1:89:51:39:36:5e:5d:27:
ea:55:29:ed:c6:52:66:ee:56:1f:40:e4:85:08:02:
70:0c:33:12:58:54:76:3f:b3:30:7a:1e:b6:b0:11:
f0:87:dc:bc:90:b8:e9:e5:cb:15:81:3d:48:b7:d7:
20:ff:e8:3d:48:3c:85:02:5e:b4:2e:a6:f1:97:80:
ea:e0:65:9d:db:62:42:a0:9c:4b:d1:ee:06:55:e5:
ef:a8:08:5e:ff:9a:c7:13:1e:d5:46:54:03:6f:44:
30:71:fd:36:61:c0:4e:99:64:3f:22:61:3e:82:91:
e3:f8:55:50:05:af:9f:b1:f3:ad:7f:af:fa:d8:cb:
3e:8f:31:35:d6:b0:42:98:5c:e6:03:e1:9e:be:19:
a0:99:6b:03:15:3f:be:0b:a4:8c:ff:a6:30:4b:92:
16:63:27:b7:5b:7b:46:97:d0:1c:79:2c:1b:71:d4:
55:89:32:e9:f7:dd:81:43:49:49:16:34:21:cf:33:
05:25:68:4e:37:de:0e:10:d5:5d:0e:40:f7:67:32:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:47:A6:90:08:A0:C7:F4:69:ED:52:90:2A:B5:7C:90:6C:5D:B2:20
X509v3 Authority Key Identifier:
keyid:22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:d9:bb:a5:f4:c1:20:4b:1d:97:99:20:59:4d:1e:6e:dd:d0:
3b:39:69:9e:bc:a4:b1:3a:61:48:f0:58:7e:58:4c:da:60:f8:
1f:a0:f4:17:ab:34:4e:9d:ee:64:6a:ed:a5:36:bd:2f:52:79:
ab:be:7e:8b:68:c2:40:6e:79:92:7f:70:62:47:9e:e1:81:a0:
bf:23:3a:7e:57:dd:a9:57:f4:fb:a4:f3:80:be:e3:15:44:30:
06:b3:78:9d:c8:60:9d:7f:31:bd:fc:30:98:5b:ac:49:85:b6:
82:c6:7d:d1:07:44:e5:f5:01:53:9a:b3:14:33:7e:80:d1:e2:
57:16:ef:28:38:d1:45:af:59:49:37:32:ff:cc:95:7e:eb:86:
60:10:76:f7:9b:b8:13:8a:89:93:43:53:e5:66:42:13:c7:73:
3d:3f:2c:bc:b3:4b:9c:3e:d6:80:2b:7c:8a:ca:64:c6:4a:c3:
dd:bc:44:e2:98:e0:bb:9e:58:db:56:b2:a2:99:15:a9:9a:ad:
83:71:98:fd:b5:82:d8:e7:f1:1b:63:23:9d:8a:91:c9:20:6c:
b3:4a:5b:03:23:7e:a8:63:8c:88:c5:d1:d7:ef:45:ad:b5:42:
4a:5b:87:49:36:45:7b:61:46:36:b4:09:d1:69:f0:32:6d:93:
bb:d8:4d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:42:07 2025 by rpki-client