Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: 7EbCfUgJASfz6oX0Djjd3FvP0CABHzDbsoFeWJHHwQY=
Subject key identifier: 76:24:24:9F:0E:D0:EB:E4:11:BD:2A:93:28:46:78:FC:72:D9:EE:9F
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 0195113554260708EDD5AE0C08BEDA84A7BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 1457
Signing time: Mon 17 Feb 2025 00:01:02 +0000
Manifest this update: Mon 17 Feb 2025 00:01:02 +0000
Manifest next update: Tue 18 Feb 2025 00:01:02 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: /sVDvAwHfsQoktrkABTyqP3XmypFuE5BnadL03CIdrE=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:54:26:07:08:ed:d5:ae:0c:08:be:da:84:a7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Feb 17 00:01:02 2025 GMT
Not After : Feb 18 00:01:02 2025 GMT
Subject: CN=7624249f0ed0ebe411bd2a93284678fc72d9ee9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8a:65:fe:7b:50:0f:a5:f6:6d:53:7c:61:fb:
5a:d1:a0:bc:98:31:2b:a8:a5:48:b7:8a:f7:bd:6a:
bd:81:34:b0:2b:69:06:65:e2:f3:11:f8:ed:86:60:
31:e5:40:53:2a:23:81:c2:25:eb:59:4c:91:19:69:
03:74:2c:bf:81:7b:57:04:4b:64:a5:15:fc:ec:84:
f7:fd:ef:46:c2:55:cd:6f:aa:35:f0:f4:e0:c7:79:
50:32:35:01:af:61:15:db:37:24:36:ea:8b:5f:55:
53:d3:ad:7a:ed:aa:17:66:52:d1:90:b0:62:cc:ce:
d3:5e:a0:ed:62:4f:ae:3c:53:6a:e5:33:1a:70:7a:
23:d8:29:de:d5:ad:df:f7:80:e4:44:c9:82:aa:49:
bf:dd:a0:c4:96:7c:d7:43:b3:39:01:66:9d:7e:c8:
f9:49:de:d4:0b:6a:3d:f2:fc:93:90:eb:99:f1:00:
0e:ee:a7:7d:47:06:55:e1:75:01:57:a5:fb:03:13:
90:2e:b5:a6:60:41:60:65:0b:2d:10:86:58:bd:a2:
b0:08:aa:e1:a5:dd:0b:cf:fa:83:70:4a:0d:66:40:
43:5d:ed:9f:12:35:56:41:a0:64:25:af:4e:ba:33:
19:6d:67:7e:9f:5e:23:1a:36:50:14:dd:a0:bb:cb:
f5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:24:24:9F:0E:D0:EB:E4:11:BD:2A:93:28:46:78:FC:72:D9:EE:9F
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:41:69:dc:42:de:2f:72:b2:67:7f:06:1a:69:74:6e:da:0c:
9e:c8:3b:f9:bf:8f:60:c6:b7:a1:d3:9c:27:d7:83:ba:67:52:
ac:a0:af:8a:b9:23:b7:a0:fd:b6:22:cb:89:bc:28:51:b0:85:
56:49:fa:73:25:9b:76:29:dc:65:33:b7:1e:43:55:1a:16:26:
0f:20:6c:95:5c:78:dd:42:d8:84:f4:4d:dc:c3:47:31:4a:78:
d0:19:f5:e3:73:a2:12:78:6c:7c:b5:4d:eb:fc:28:9f:d2:fc:
80:a7:43:6f:78:9b:bf:54:82:21:23:12:24:8b:44:f1:23:3e:
48:77:86:2a:c5:6f:8c:2f:bf:1f:d0:ea:26:ce:9d:7b:25:a1:
3d:86:b0:7f:07:5c:ee:4e:f4:02:b1:37:fb:18:b9:c7:36:f7:
b5:1d:96:e4:7f:de:6f:e3:19:6d:91:59:00:64:12:0f:8f:71:
b3:41:b7:12:a1:72:73:41:ac:f9:f6:07:90:fb:6f:e6:c7:c8:
4c:b1:aa:3c:f4:ef:bf:a1:b9:d1:d9:d1:1a:81:f6:22:50:ee:
d6:f1:f9:c4:b6:e8:66:47:1a:91:17:65:8a:0a:20:39:2a:67:
e7:9c:59:9f:86:1c:66:21:e4:01:34:fd:24:96:d9:6c:d1:74:
4a:5a:61:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:49 2025 by rpki-client