Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
File: raavh7Q2lN05mUwOMhQwaHVRny4.mft (raw, json)
Hash identifier: gJ2PQalmO4HDf/zcEz7i22TLWv14ANMLt1DKzDDXvXo=
Subject key identifier: 52:C0:70:4F:56:F7:2D:53:D4:B0:96:F8:12:F6:3A:9A:D2:38:3C:95
Authority key identifier: AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
Certificate issuer: /CN=ada6af87b43694dd39994c0e3214306875519f2e
Certificate serial: 0195127E8A4C883E13A09C150844BBFE9B2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
Manifest number: 09B3
Signing time: Mon 17 Feb 2025 06:00:37 +0000
Manifest this update: Mon 17 Feb 2025 06:00:37 +0000
Manifest next update: Tue 18 Feb 2025 06:00:37 +0000
Files and hashes: 1: raavh7Q2lN05mUwOMhQwaHVRny4.crl (hash: N1e1RGkTPEN3ATiMcRcH+iboouWGafpdTKKgDO+5tU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:8a:4c:88:3e:13:a0:9c:15:08:44:bb:fe:9b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada6af87b43694dd39994c0e3214306875519f2e
Validity
Not Before: Feb 17 06:00:37 2025 GMT
Not After : Feb 18 06:00:37 2025 GMT
Subject: CN=52c0704f56f72d53d4b096f812f63a9ad2383c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:f7:f1:2f:8f:b1:85:2a:22:02:2f:36:f9:
d0:d1:23:94:2d:33:5d:ae:1b:65:4c:e1:ba:62:eb:
f5:57:e3:c9:f9:37:37:ce:ed:74:02:4f:f1:2d:18:
d0:91:72:5f:f0:d8:5a:fb:ff:0a:72:0c:4a:4b:a3:
17:8d:c8:0e:1f:a2:91:7d:8f:53:db:bf:f5:11:91:
d9:ef:18:69:68:d2:45:f8:70:9c:92:d1:75:51:95:
ba:41:10:d3:39:e3:fb:0b:b3:bf:93:b9:17:86:bc:
8d:62:69:ec:97:0a:a7:20:c9:ca:11:4d:95:9a:c7:
62:f3:c0:d8:12:2b:27:2a:76:85:2a:fc:88:c7:43:
22:cd:2a:59:51:41:4d:4e:0c:9b:e7:87:00:6e:9f:
ea:9c:b7:26:f2:a0:04:78:8b:65:e0:14:26:0a:54:
1f:5b:d9:76:5d:c1:89:46:fa:cd:ec:1d:5a:c4:f7:
03:97:07:c5:ce:db:6e:ce:6f:2b:6a:35:b0:28:6c:
a1:4e:d9:b7:09:ba:4c:a0:1c:17:67:4d:9e:fc:e1:
9d:89:b5:a8:86:ef:fc:29:47:cb:e8:3d:7e:46:78:
45:e6:74:5c:65:57:63:57:ac:9e:76:c0:9f:35:16:
bd:97:b7:af:b3:ee:74:b2:47:43:26:b8:c5:b4:ea:
82:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C0:70:4F:56:F7:2D:53:D4:B0:96:F8:12:F6:3A:9A:D2:38:3C:95
X509v3 Authority Key Identifier:
keyid:AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b4:98:d4:b3:18:9f:86:51:97:fd:8b:04:2e:98:37:f9:d6:
5a:70:9a:b0:24:7b:10:36:66:49:0b:c4:1b:22:97:fb:bc:96:
3b:b3:3e:8c:ed:c7:39:2a:1f:e6:a9:d8:86:7f:13:94:1d:79:
a7:30:c7:37:79:93:c1:16:d5:6d:ba:2a:8a:06:38:92:18:a2:
57:72:b0:e5:1a:ab:fa:2c:3b:0b:4f:3c:11:57:a4:ac:11:86:
f7:a5:62:db:62:44:c9:dc:73:71:9a:1b:1c:16:95:5f:b2:aa:
92:89:7a:e2:bc:13:69:4c:9f:a2:b6:d5:95:ce:5f:9c:40:20:
75:ae:eb:eb:94:cf:9f:45:fb:9e:94:fc:b5:fc:81:da:e8:05:
40:4d:c1:89:e1:a0:3f:ad:3a:09:27:fe:c7:5e:e3:38:22:35:
42:e8:67:0c:a6:7b:9c:79:f6:c1:c5:a8:81:c5:6c:0c:8f:2b:
c6:cf:ae:ac:ca:8e:8c:dd:7a:f3:0f:88:30:c3:a6:2f:e1:5d:
23:1c:4f:09:49:f2:a3:50:f4:a4:c3:3c:32:55:fd:ed:b2:fd:
88:64:41:e6:a9:2a:f3:55:13:86:cc:48:8d:25:6e:3d:94:49:
93:c1:40:79:6e:09:da:d7:fa:d9:8f:72:7f:ce:b3:c7:16:c4:
22:d1:12:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:48 2025 by rpki-client