Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
File: PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft (raw, json)
Hash identifier: 8CcGWFZydGmw0qbQzhNrZgHVinZyd/BLVT+6p08vaXw=
Subject key identifier: CB:E0:89:69:FD:4C:B2:F7:B6:A3:31:E1:51:39:90:E3:F7:F3:17:6D
Authority key identifier: 3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
Certificate issuer: /CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Certificate serial: 019510FDB9B64A799034B92B18D3EB6ED145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
Manifest number: 05E9
Signing time: Sun 16 Feb 2025 23:00:18 +0000
Manifest this update: Sun 16 Feb 2025 23:00:18 +0000
Manifest next update: Mon 17 Feb 2025 23:00:18 +0000
Files and hashes: 1: FNcoFmyMsrmKFW3pVuTLoiKb9Y0.roa (hash: L2M1ZIYqNE7da9VzHmMG0LiaV1K9e8NQgXmk4Xn6knE=)
2: PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl (hash: aq10705HwYehpmTMcSagV0w1b0m+SwGj/bSVOMl/4Mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:b9:b6:4a:79:90:34:b9:2b:18:d3:eb:6e:d1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Validity
Not Before: Feb 16 23:00:18 2025 GMT
Not After : Feb 17 23:00:18 2025 GMT
Subject: CN=cbe08969fd4cb2f7b6a331e1513990e3f7f3176d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:dc:78:aa:27:7c:4e:1b:0e:ff:ec:55:9f:
7f:14:7b:72:e0:4c:1f:c2:3a:41:c3:7d:ff:9b:88:
45:89:8a:28:ea:ae:5f:41:45:5b:e4:ed:b5:61:90:
49:92:77:8c:09:d5:5d:fb:da:7b:56:c0:83:55:37:
49:d6:85:42:b0:64:25:cb:82:1a:e7:ed:4c:23:ee:
c0:90:3a:b0:28:40:df:7e:39:b3:4f:9c:19:7b:45:
4a:33:66:75:5c:bc:fb:3f:a0:d2:35:08:8e:1c:30:
e4:c4:0a:c7:45:b1:f7:60:8f:fd:04:1b:96:4b:27:
1a:d0:e5:e9:b9:1d:b1:13:2f:00:9b:0b:ff:bf:6d:
58:9f:91:c3:51:53:1c:92:a7:21:fb:27:39:ec:4a:
00:bc:83:6b:5f:48:61:1b:d5:5f:9a:e6:e5:76:c1:
9d:e2:81:45:07:3f:53:54:d3:a7:7c:a7:8f:8b:8e:
dd:76:80:86:33:05:e3:1d:ac:d9:df:3e:62:f2:3a:
e3:0e:fc:90:3f:2e:2a:36:0e:35:7f:3d:1d:60:0e:
ae:91:ad:dc:7b:b5:9d:12:5e:d2:5c:6e:98:77:3c:
85:18:23:15:a3:46:39:de:5f:0d:04:7d:21:d4:8e:
70:26:da:85:af:65:45:b7:ef:3d:44:43:b2:45:55:
4b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:E0:89:69:FD:4C:B2:F7:B6:A3:31:E1:51:39:90:E3:F7:F3:17:6D
X509v3 Authority Key Identifier:
keyid:3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3b:67:fa:bd:23:89:28:2c:a6:34:91:bb:ae:9f:e6:3e:2c:
1f:0c:cd:15:49:65:ba:49:d9:1a:6f:9e:80:ee:b9:ee:2f:72:
db:ee:d2:01:1e:f6:4a:5a:b3:c2:71:49:13:a0:d4:52:ed:dd:
23:a0:d0:0c:d7:c2:44:2d:e9:17:16:63:ab:08:bf:bc:6d:61:
b2:e9:b1:66:2f:7d:56:6b:83:e9:7c:69:21:6b:54:16:b2:38:
30:64:cf:3a:e4:d8:0d:66:19:e0:50:cd:ac:6e:bc:7c:42:48:
8a:75:f7:fd:70:75:1e:f3:d2:66:0f:26:98:41:e4:48:98:d1:
c4:fd:4d:f6:31:fd:29:26:e5:03:d1:f2:37:6c:10:50:6b:e6:
4a:57:89:ac:9c:fa:d0:b9:3c:50:2e:23:a0:0d:ad:13:1e:0d:
c4:f7:cb:22:c2:bf:7c:5c:ef:2e:04:52:93:a6:92:30:17:8b:
00:51:ad:d1:f9:01:4a:d4:5e:0a:43:43:56:26:39:aa:af:ae:
38:44:7a:fa:82:ce:da:dd:58:30:5d:fd:ba:99:83:0b:dc:d4:
53:a5:81:7c:2d:95:01:ff:c5:52:dd:63:cc:c8:8d:a5:59:f6:
bc:8c:aa:0e:9e:55:ce:ad:4f:58:fb:40:60:53:5c:6b:0a:c3:
be:55:3b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:01 2025 by rpki-client