Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
File: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft (raw, json)
Hash identifier: TCYWweY3h6Z12WxLzcX9GSmM/U3gGlHJLtxknnWT2o4=
Subject key identifier: 86:DF:B5:0A:1B:A0:2D:D3:8A:35:49:AD:FD:A4:A4:EF:9B:07:96:99
Authority key identifier: 32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34
Certificate issuer: /CN=32b1b94b073c547991c20f842eadec167ec19e34
Certificate serial: 0194C387BD4F0C5A16686003F1E4034A5333
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
Manifest number: A4
Signing time: Sat 01 Feb 2025 22:00:40 +0000
Manifest this update: Sat 01 Feb 2025 22:00:40 +0000
Manifest next update: Sun 02 Feb 2025 22:00:40 +0000
Files and hashes: 1: HTiETFMnseisEeoALFIWItsK6gc.roa (hash: iulklaFZv7FQZ4kyFEEaoOlUffIGv7CCXTbtxR93AS4=)
2: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl (hash: n8KGDq7trOiGt/cIBH4oTBIn7yOob/iDbb98L8dXiQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:bd:4f:0c:5a:16:68:60:03:f1:e4:03:4a:53:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32b1b94b073c547991c20f842eadec167ec19e34
Validity
Not Before: Feb 1 22:00:40 2025 GMT
Not After : Feb 2 22:00:40 2025 GMT
Subject: CN=86dfb50a1ba02dd38a3549adfda4a4ef9b079699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:7c:96:c2:17:0c:89:2c:23:4c:17:e8:bc:
c7:61:f7:6e:79:98:16:e1:8b:a1:e4:dd:06:58:b4:
e3:81:a8:4f:da:76:1f:d5:83:da:96:e2:a7:39:af:
e1:30:1b:02:5c:94:71:01:16:b2:b0:02:bc:74:1a:
4e:9d:7f:6b:94:4b:89:5b:b1:97:dd:35:a1:11:e7:
9d:0d:35:5d:44:ab:3b:52:4c:7d:89:4a:09:57:9a:
62:6d:09:08:c6:27:80:94:46:40:13:3b:e7:09:21:
e2:e3:93:8d:f5:cb:14:10:a5:b2:24:65:d3:5e:22:
45:8c:75:09:f0:60:96:6a:80:c2:13:6c:d1:0e:93:
e2:7e:bc:f6:4f:eb:64:cb:87:8b:2a:b2:8e:55:00:
5c:02:3d:09:94:36:9e:08:02:c5:1f:8f:6e:d9:02:
db:83:6e:37:d6:79:91:fa:2c:75:c2:d9:74:01:f2:
4e:7d:4a:08:cc:55:3a:eb:c8:15:9b:10:20:46:03:
92:c1:a9:23:09:77:d7:6a:e7:02:c6:0d:1e:fd:91:
7f:eb:4f:b2:47:77:38:bd:9a:3c:da:3c:42:19:e0:
c8:b1:ef:da:f0:46:93:70:45:db:25:cf:c6:45:c8:
e5:b5:ba:ba:c4:5c:1f:c0:88:38:1b:f1:81:5f:fd:
c6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DF:B5:0A:1B:A0:2D:D3:8A:35:49:AD:FD:A4:A4:EF:9B:07:96:99
X509v3 Authority Key Identifier:
keyid:32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:02:4f:05:1b:6d:9e:a9:7b:68:da:3f:9b:7e:1f:e4:14:26:
dc:bb:cf:c2:4f:46:8c:dc:5a:15:37:d0:71:c0:8d:29:a0:21:
02:be:48:41:ba:12:c9:cd:53:23:79:ea:13:42:88:52:aa:2f:
1e:71:80:9d:7d:67:b4:dc:01:b7:43:82:07:1b:dc:a5:d5:1d:
78:4f:c4:97:78:8d:b8:f9:2e:1f:8a:33:87:b9:52:66:af:4c:
19:5e:0a:94:ab:c3:ba:dd:d4:f4:a6:5b:c4:a5:c2:bf:ab:4f:
e3:b5:b3:18:b8:f6:a4:12:3c:6f:49:69:42:5e:db:1c:d7:e1:
64:61:4f:90:af:de:d6:3f:16:59:cf:fd:7c:89:5d:31:72:b1:
08:a7:51:94:b4:a0:68:5b:6e:8c:bb:77:c9:46:3d:c4:5a:a5:
12:b2:7b:3d:22:b8:58:ab:92:0b:f7:af:3d:74:ff:02:74:49:
1a:25:6b:33:80:c5:e5:dc:7a:ec:e7:67:31:58:de:a3:cb:eb:
aa:ca:a6:43:ca:59:ee:bb:08:78:55:51:d7:58:d3:01:9d:fb:
9e:72:f5:45:ed:ab:91:e1:3c:15:b7:fa:ff:5f:86:e2:1e:a5:
70:f4:96:7f:0b:2b:b3:04:1a:2d:63:57:31:55:38:db:79:23:
4f:40:24:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:44 2025 by rpki-client