Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
File: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft (raw, json)
Hash identifier: zAMHmEk5aWpdBoPo1qtYdp6B8cEVYyulYwDaW/vbwwM=
Subject key identifier: DC:D5:CE:85:E3:02:C9:0E:05:3C:F6:50:23:28:D2:36:E3:41:41:47
Authority key identifier: D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
Certificate issuer: /CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Certificate serial: 019511A30437FB3E5C35BDE7C74B5189CA32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
Manifest number: 131F
Signing time: Mon 17 Feb 2025 02:00:50 +0000
Manifest this update: Mon 17 Feb 2025 02:00:50 +0000
Manifest next update: Tue 18 Feb 2025 02:00:50 +0000
Files and hashes: 1: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl (hash: 68FEnlIMStnGatA5tnGob14EcZgnpzL4qOb7sHcnE/8=)
2: jnl0pkc8VZioDFc1rU2LXYR9u10.roa (hash: hBLoItEXtLXi0Hx0eyOzMHvYDZZAUIWBeCW6pZ7dYGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a3:04:37:fb:3e:5c:35:bd:e7:c7:4b:51:89:ca:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Validity
Not Before: Feb 17 02:00:50 2025 GMT
Not After : Feb 18 02:00:50 2025 GMT
Subject: CN=dcd5ce85e302c90e053cf6502328d236e3414147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:79:ba:2d:68:56:a3:51:10:70:61:91:36:bd:
cc:87:c5:59:55:40:1f:ae:72:8f:db:70:bc:5a:00:
0f:eb:05:53:f7:5b:30:1d:b2:4b:d6:33:b6:b3:e2:
47:f7:0f:9d:42:9b:6f:d2:15:5c:41:ff:c1:bc:54:
72:8f:81:fe:8e:c6:82:a7:77:7c:b1:b3:8a:73:1e:
9c:6f:2b:ee:6d:a5:d8:23:72:a9:1b:2e:38:a0:46:
2d:45:c9:92:fd:3e:bb:27:83:08:79:41:2a:ac:41:
5b:71:53:d4:ac:b9:c1:cf:e9:8e:9c:b4:7a:18:32:
87:9f:9c:b4:6b:96:ae:a4:71:54:20:ae:ae:35:8f:
9d:1b:0c:4a:cc:aa:83:9a:a3:98:96:ba:cd:9b:61:
14:be:4b:bf:74:95:18:f5:c7:3c:f5:75:97:d0:05:
ae:c7:47:8d:c7:58:ac:c6:86:ce:49:9f:85:01:fe:
25:2b:da:71:cf:4d:d1:c9:f7:08:be:57:7f:2e:97:
26:ff:fc:a6:e6:44:5e:16:9a:fd:ac:21:f8:cb:94:
b8:98:70:ea:88:97:b7:93:e9:59:90:79:a3:9b:3f:
6c:56:71:46:b6:c9:7c:bb:a8:b3:0e:94:7e:e5:e2:
cb:43:ef:21:c1:46:59:58:9b:d6:fa:e7:f4:cc:d2:
e7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D5:CE:85:E3:02:C9:0E:05:3C:F6:50:23:28:D2:36:E3:41:41:47
X509v3 Authority Key Identifier:
keyid:D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:91:5c:0a:5a:fd:17:41:97:9e:f9:e2:d3:d2:f4:6f:d4:d2:
ec:df:9e:f7:28:48:08:85:fc:23:00:c4:21:d6:9a:ed:20:18:
7f:4d:00:69:65:3a:36:9f:d3:c2:06:57:50:3d:13:f0:56:3d:
02:13:63:e9:d9:32:73:55:8e:24:c5:d0:57:1b:ba:54:d7:4d:
dd:70:3b:5c:fc:dc:a3:1b:75:43:c8:f0:43:7f:be:df:8d:d9:
be:3e:dc:89:25:e8:60:3f:c0:b0:63:39:a2:8b:b2:63:9f:11:
8a:bb:e3:73:e2:24:15:d8:dc:dd:13:6e:f7:5a:f9:42:11:04:
67:22:4c:bf:79:41:b5:cb:83:4b:9f:fd:86:02:02:f1:b3:4a:
e8:ab:82:90:ad:f2:3c:e8:47:4e:6e:ee:28:01:0e:92:38:77:
e2:d0:da:1e:96:54:fc:af:02:4e:4b:08:d2:ad:70:51:b0:ac:
7a:52:1a:6f:f2:50:3b:68:39:f1:1e:5d:c9:88:0c:07:21:0f:
a4:58:40:49:59:04:d7:a0:9a:7c:b2:d0:d6:2a:fe:e0:1a:0d:
dd:64:18:d3:d8:a6:ad:42:f4:26:c5:ae:c3:0f:0e:75:66:8c:
55:67:40:80:8a:24:9b:d2:41:9a:31:33:70:ee:fa:1f:ef:a1:
cf:f3:43:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:08 2025 by rpki-client