Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: jZJS16xeRFc4ElpyDbK4VPJ8/VWBG77IwGEIwmrJGb0=
Subject key identifier: 5D:7D:AF:99:8B:CB:B4:E6:28:F6:9A:D3:16:7F:E2:BB:DC:85:50:A5
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 019511A2A5619A9410E834EBAB8D4CE48F90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 0F2B
Signing time: Mon 17 Feb 2025 02:00:26 +0000
Manifest this update: Mon 17 Feb 2025 02:00:26 +0000
Manifest next update: Tue 18 Feb 2025 02:00:26 +0000
Files and hashes: 1: dNOXWcyjBwUcXV5oIaNhLVVvSEU.roa (hash: 4Fft0psn/kwpjVEKZgVhKcfKwufV2SXuxRSuxxvAa+k=)
2: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: axOYQAVxEJEX4TlHOYt9tT9vQeM8HCQNwLkgOnfdpK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:a5:61:9a:94:10:e8:34:eb:ab:8d:4c:e4:8f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Feb 17 02:00:26 2025 GMT
Not After : Feb 18 02:00:26 2025 GMT
Subject: CN=5d7daf998bcbb4e628f69ad3167fe2bbdc8550a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7f:cc:91:d9:88:bd:81:d5:5b:59:c0:b8:46:
50:94:7e:b2:f5:3d:6b:49:ae:31:4f:04:3a:a8:24:
09:07:5b:c5:14:f9:01:8e:28:15:41:45:e8:3f:34:
5f:bc:c3:4c:1d:b2:35:4a:70:99:ee:70:b5:9a:8c:
98:a5:c2:63:a7:6d:f3:c0:17:cb:70:d2:15:5c:97:
ab:44:8b:d0:8c:85:c9:15:84:7f:58:af:e2:a5:eb:
be:99:28:16:63:c9:9f:e8:2f:2e:50:a6:12:a8:c5:
fc:41:3c:c6:32:f9:de:37:8d:26:c0:77:b2:c8:33:
a8:19:ca:e1:06:18:c3:84:1b:81:c2:93:aa:f7:ed:
03:4d:5d:c1:3c:de:d6:ce:38:72:d8:c0:ee:f8:49:
37:17:60:a7:4c:00:05:95:2f:ea:45:1d:3d:28:60:
b5:7d:f9:e0:fc:e2:52:ea:b1:3f:c0:fe:8d:0d:4b:
b1:76:bf:ff:ff:25:a3:3f:e3:96:aa:2c:2c:b1:3c:
da:61:4a:5c:51:a5:12:9e:f5:a6:63:15:cd:52:f1:
50:c6:6f:f9:4b:e3:f5:e0:32:1f:a1:10:c1:f1:77:
9f:5b:c7:21:ae:7d:40:55:10:a9:0b:70:87:1c:60:
ce:2e:1c:d3:30:cd:bc:6c:7f:25:ac:da:0f:f0:3c:
50:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7D:AF:99:8B:CB:B4:E6:28:F6:9A:D3:16:7F:E2:BB:DC:85:50:A5
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:43:d8:e8:6e:da:50:8c:89:79:a7:99:1f:80:f0:2b:08:ef:
bb:b5:f9:f1:06:73:79:d9:78:9b:79:31:f1:bc:db:df:32:23:
e5:72:73:d3:b4:5c:24:33:47:81:29:a4:2f:d9:7d:a5:d2:b3:
ed:5f:8f:d4:39:1e:d6:b0:d7:b1:1c:ac:a3:47:0b:47:19:29:
0d:24:dd:bb:1f:ba:5d:9a:52:9f:c2:ee:f2:3c:e7:c5:e8:43:
4d:e2:2e:10:a4:0e:cb:63:5f:b7:eb:1c:ec:ad:52:8c:0a:33:
6c:0c:6f:92:a3:e9:1d:70:5c:78:d4:5f:7c:ae:6b:92:d4:20:
14:93:d9:fa:c6:00:89:47:4f:99:4e:cf:c3:c9:18:27:63:7b:
0e:0c:86:bb:8a:2c:64:9d:13:b5:13:20:64:a6:71:8d:ea:c3:
e8:76:42:58:24:5d:c6:e3:0f:a0:60:e9:af:4c:65:84:2e:3a:
45:c8:f8:09:c9:cb:31:97:89:ca:82:a6:d0:27:fe:74:de:0e:
d2:e5:9d:a3:1b:04:7d:45:1e:f5:c7:16:dd:c6:fd:ca:24:6b:
b9:fc:2a:d6:5b:50:04:4b:f9:e1:77:2c:b0:c6:f1:f4:f7:27:
03:94:97:af:6b:17:f1:85:8e:ce:93:2e:05:7a:cd:d5:25:b6:
71:68:df:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:12 2025 by rpki-client