Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: Pjp+OAbZ3Qsv8JbOdPRiZqjwfeUy2FD/LjGD5YZU9+w=
Subject key identifier: 22:95:2F:07:14:CE:FC:59:42:06:BF:4F:6A:F2:9F:AC:AE:11:8E:83
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 0195116BDEF7B4AB3D61371D27AF01CC4241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0A65
Signing time: Mon 17 Feb 2025 01:00:36 +0000
Manifest this update: Mon 17 Feb 2025 01:00:36 +0000
Manifest next update: Tue 18 Feb 2025 01:00:36 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: 9LBh2ZAHXbz9LBo+PGqi2yOtmAxFg4g6hTuzYi5/3l0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:de:f7:b4:ab:3d:61:37:1d:27:af:01:cc:42:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Feb 17 01:00:36 2025 GMT
Not After : Feb 18 01:00:36 2025 GMT
Subject: CN=22952f0714cefc594206bf4f6af29facae118e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f5:40:8f:47:56:64:44:f1:2d:1b:a7:ad:f6:
c2:a6:ab:af:68:96:36:25:01:63:d0:cf:bc:60:59:
d9:97:83:3c:35:67:cd:9a:a8:6f:6c:3f:3f:8f:d8:
21:95:d3:f7:57:80:c9:29:79:5a:65:3e:8f:b5:2b:
7b:dd:ef:59:ff:9f:18:b6:39:d7:87:4f:8c:54:78:
7a:6b:03:d8:2d:44:02:fe:1d:22:b5:8b:20:ac:85:
77:b4:2f:57:98:f0:7b:df:48:4e:ed:35:cb:52:88:
7e:da:50:ce:3e:5b:47:72:79:fa:2e:f1:9b:76:0e:
df:d9:ce:1b:06:87:20:b4:69:06:45:4f:89:66:63:
b5:7b:8b:6f:2c:dc:2f:6f:eb:4f:ef:68:f5:6b:77:
e2:75:3f:a4:4d:a4:d4:6a:bb:00:f6:24:9b:8e:28:
f6:99:87:b2:e5:df:98:1a:b6:f0:00:fa:94:7f:b5:
05:86:e4:64:d6:60:57:ca:de:30:cc:ec:b7:cc:2e:
56:29:5e:93:58:62:7a:12:1d:a5:b8:f3:11:d5:b5:
17:ce:36:61:01:88:a3:d1:c6:13:1f:fb:cb:d3:84:
ec:ee:ca:f1:fd:a6:ef:6c:ae:4e:4a:d2:9e:52:4e:
ab:67:f3:bd:d4:5e:9d:51:59:36:ba:0d:75:21:07:
94:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:95:2F:07:14:CE:FC:59:42:06:BF:4F:6A:F2:9F:AC:AE:11:8E:83
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:d9:88:7b:e0:a8:d4:6a:17:f5:83:4d:8f:b0:ed:fc:13:ac:
bc:3c:f0:09:8d:f2:61:2c:00:7d:bf:50:05:d8:97:9d:30:04:
f0:93:7b:fd:46:32:9a:61:a9:40:00:69:26:8b:64:2c:28:1d:
38:0c:55:f4:dc:46:af:86:ff:2e:d3:c9:af:14:84:a3:df:e1:
f7:5e:20:36:04:be:1a:2d:f4:8c:64:81:60:71:71:84:e9:c2:
3b:f1:b9:ee:20:61:85:2b:03:74:6f:f2:29:66:ad:15:9f:b1:
ce:c3:57:a4:2e:48:dd:ee:40:91:f9:91:a7:48:dc:0d:c3:ef:
0f:fd:10:68:a7:9f:7c:cc:2d:2c:57:e6:75:09:1f:27:8f:0b:
01:5d:cf:f4:e0:cb:13:5c:2a:52:45:1d:40:95:53:f4:c6:17:
0a:f1:85:0c:69:2f:da:a8:37:82:78:5a:1c:ef:19:88:f1:e1:
e5:b1:c1:d3:e6:64:e1:38:fa:10:c6:c9:31:63:bd:e1:92:05:
6d:48:8e:17:db:6c:07:07:1d:d0:8d:46:32:5c:bf:0c:2c:d6:
be:9d:cd:67:5e:ea:4b:cd:7b:79:88:47:94:14:7a:42:d2:1c:
d5:14:1d:9f:33:26:0f:35:c4:85:01:2f:05:31:92:9e:96:25:
fc:ec:50:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:53 2025 by rpki-client