Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: uR6OfcIuOUHM3LX1kXyuINNqj14geGlZB41u6VWikkM=
Subject key identifier: 4D:D5:EB:09:FA:3D:1D:A2:4D:B4:E1:D6:73:57:C2:94:38:92:D2:E9
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 0194C507E68AD73C83D18CE628BBD3E3BFFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 08
Signing time: Sun 02 Feb 2025 05:00:16 +0000
Manifest this update: Sun 02 Feb 2025 05:00:16 +0000
Manifest next update: Mon 03 Feb 2025 05:00:16 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: wwo3bjsptj36FKC6ajf+KCiVKbq9Ez1e6ZgbV5V/TVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:07:e6:8a:d7:3c:83:d1:8c:e6:28:bb:d3:e3:bf:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Feb 2 05:00:16 2025 GMT
Not After : Feb 3 05:00:16 2025 GMT
Subject: CN=4dd5eb09fa3d1da24db4e1d67357c2943892d2e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:17:e5:37:57:5f:66:bb:3e:53:25:24:cf:1f:
04:ae:5a:74:ae:8d:72:7b:bc:ee:fc:d8:35:20:2f:
73:ab:18:1a:d0:77:ba:b3:bb:0b:c9:2e:30:bd:66:
66:30:e8:33:31:cc:fe:05:a6:3c:98:71:af:4f:2b:
9b:4c:47:6d:37:77:8e:12:d0:c6:ea:49:da:03:2e:
45:08:22:7a:0e:ad:4d:ec:34:8a:2a:71:f4:db:cd:
78:a1:7e:08:93:6e:30:51:96:7b:9a:9b:d6:43:e8:
8c:9f:6e:19:90:1a:c2:39:3d:ae:91:fa:40:e1:03:
5f:1a:00:68:fc:4a:57:46:84:1c:15:40:5a:86:5c:
d3:39:3d:46:1f:1a:66:4b:a9:c4:89:df:bf:6e:97:
40:38:2d:4d:d2:b8:cc:0f:c5:65:7f:72:04:45:79:
8a:3c:25:fd:89:87:3b:57:51:9e:a8:f7:99:2a:4b:
f6:01:3c:53:41:0d:4d:fe:79:13:99:65:e6:54:ef:
d5:33:c7:69:a5:a2:ce:02:64:2e:e3:01:01:42:19:
87:34:2d:60:1f:73:85:6a:c0:66:06:fb:71:0b:46:
1c:db:9c:64:6d:87:34:9e:82:6a:c3:41:02:60:ae:
f4:72:b8:c3:25:e3:a6:1d:b6:51:c5:15:39:a9:04:
3e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D5:EB:09:FA:3D:1D:A2:4D:B4:E1:D6:73:57:C2:94:38:92:D2:E9
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:f9:a5:94:90:2b:25:94:a3:64:c1:f9:a2:f2:74:4c:46:df:
22:e9:c1:cb:3d:14:e7:4b:90:b7:47:50:4f:d5:60:9f:a2:1c:
26:d6:8d:ed:c4:de:89:17:ce:8c:e2:81:d3:78:c1:55:f9:7a:
69:5a:92:bf:a6:c9:cf:be:0c:70:e9:1a:4f:b4:6c:14:ff:66:
f2:6e:11:68:58:2c:6a:fc:9a:b4:59:d6:37:e6:e7:eb:85:b0:
f7:00:d2:b5:90:83:c5:ee:fc:de:30:6f:d9:a9:a4:7d:b5:1a:
28:72:2f:9b:15:2d:35:6e:54:00:98:8b:9b:9a:c8:aa:09:1e:
50:6b:1a:56:c8:b2:d1:10:f5:7d:21:f2:eb:0f:22:ca:14:5e:
43:94:74:7b:3b:b0:18:e3:6d:fe:12:31:b8:c9:55:48:0a:37:
b4:4b:ed:af:5e:29:4e:1e:50:74:23:31:3c:f3:6a:1e:ab:8b:
58:b6:2c:cd:fa:d7:dd:79:c3:f1:0b:bb:ab:92:fb:e3:1b:e4:
40:c9:6c:49:79:cd:a2:c3:df:b2:69:e6:75:26:65:c6:49:dc:
a9:4e:42:e7:c9:38:55:d0:ab:1e:ea:17:61:c1:fa:b3:d2:f6:
65:20:dc:09:81:a1:e2:06:d3:8a:db:3f:14:2a:74:51:f8:22:
31:7b:45:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:52:25 2025 by rpki-client