Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
File: tu1iBVpRkcAuxREulRgaiawGDOs.mft (raw, json)
Hash identifier: UYV21Oja6A+rSCCSQ47+/QUMkLzjtqqmXIoK0PpTPb0=
Subject key identifier: DA:D6:34:38:99:C6:EA:30:B3:5E:97:10:4B:D1:FC:63:74:F8:48:D4
Authority key identifier: B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
Certificate issuer: /CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Certificate serial: 019510FE2145EC32DE967D94B93510CD9268
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
Manifest number: 09B0
Signing time: Sun 16 Feb 2025 23:00:44 +0000
Manifest this update: Sun 16 Feb 2025 23:00:44 +0000
Manifest next update: Mon 17 Feb 2025 23:00:44 +0000
Files and hashes: 1: iOo8WZeBs16BOwEjC7IsPMOtPO0.roa (hash: FC5R1Hrtvnbfsyec/XOyQavDbuFW5mY0wSOTHI+QutE=)
2: tu1iBVpRkcAuxREulRgaiawGDOs.crl (hash: 3M8ORv0jVVB3nVYCz3EuwTtlJ0jFcZQQ4qjizXB7UIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:21:45:ec:32:de:96:7d:94:b9:35:10:cd:92:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed62055a5191c02ec5112e95181a89ac060ceb
Validity
Not Before: Feb 16 23:00:44 2025 GMT
Not After : Feb 17 23:00:44 2025 GMT
Subject: CN=dad6343899c6ea30b35e97104bd1fc6374f848d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f5:ad:1b:f0:5d:98:39:c0:72:94:7c:2e:c6:
9f:0f:4f:4e:b8:39:e1:10:f1:06:4b:68:39:9b:56:
c8:35:96:d6:59:ab:ba:d0:d2:b6:7b:99:dd:ed:2a:
53:5d:ea:a5:21:65:ac:ac:7c:74:0f:7e:97:50:a1:
e7:3e:77:06:45:c0:db:be:24:a1:dc:91:f9:3a:eb:
22:91:65:27:c6:86:c9:71:df:7e:04:3a:1d:34:2a:
ef:fe:a6:0f:13:58:5d:32:67:32:70:2f:2a:c8:cd:
c3:ba:f0:22:26:84:a4:5d:5f:1c:ee:31:ac:5e:d2:
94:68:90:d1:e7:f3:56:2e:4f:01:6b:14:7b:b8:70:
ab:c9:f0:b7:72:0e:5d:2d:24:f7:5a:f0:13:92:41:
87:0a:50:8d:fe:4f:df:0a:76:31:9b:7b:be:f6:33:
43:9f:9c:05:3f:0f:ac:a1:e4:35:2f:ba:f3:3b:46:
0e:fe:75:0f:4f:de:a9:b0:59:43:61:df:75:46:1c:
7b:08:d6:c6:c9:e6:39:26:e3:13:3d:51:05:d9:5e:
7f:99:b0:1b:8e:1a:a8:a8:70:d2:33:aa:8c:fd:0e:
21:80:98:ce:e6:4a:77:08:6a:ed:a9:20:d3:7d:80:
51:09:a0:47:dc:14:18:b4:b1:43:57:cc:6c:94:1c:
b0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D6:34:38:99:C6:EA:30:B3:5E:97:10:4B:D1:FC:63:74:F8:48:D4
X509v3 Authority Key Identifier:
keyid:B6:ED:62:05:5A:51:91:C0:2E:C5:11:2E:95:18:1A:89:AC:06:0C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu1iBVpRkcAuxREulRgaiawGDOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/dc13c1-de56-449f-9c29-c81266b7c49e/1/tu1iBVpRkcAuxREulRgaiawGDOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ff:86:97:eb:0f:49:7d:61:3d:2a:d1:d2:1a:52:89:91:6b:
e5:fc:f6:02:37:f6:02:5c:7a:7d:19:a0:f9:c4:e3:5a:47:4b:
8e:34:82:2c:d9:78:d6:18:3a:c9:d2:96:50:b8:ec:fb:0d:ab:
eb:cc:43:1f:ab:ac:4a:6f:58:ab:b2:cc:c6:8b:12:f8:ea:78:
be:f6:6a:1e:7e:87:96:e9:b6:6d:42:78:32:4e:31:f7:ea:4d:
b2:c0:17:e0:d0:c9:59:35:b6:05:e1:11:b3:53:5a:37:12:35:
bf:11:29:45:b2:c2:b2:7c:47:03:fb:54:95:72:0e:d1:5d:60:
7a:ec:00:5f:7d:18:4a:87:2f:b1:2b:e0:70:37:d2:d9:1a:90:
e9:ac:9c:5b:1a:23:a5:1c:72:b9:61:08:31:b1:cd:fd:7f:7a:
b2:47:4c:c0:40:3b:71:59:de:18:6c:0d:48:c1:80:e3:9e:3e:
39:ee:c0:28:0c:36:19:41:fc:e2:b0:4e:21:92:f4:cf:50:b7:
f2:a6:6e:3e:3d:da:a4:e0:40:37:a6:d7:63:8f:5e:ed:38:a7:
ab:b7:01:39:70:f2:34:05:2c:30:1c:46:8b:07:e2:ae:68:55:
4e:11:ab:e7:04:bd:aa:43:94:1b:1f:d7:2c:20:67:05:0a:9e:
48:d8:4e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:09 2025 by rpki-client