Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: 3VDMhUZEd4WnlXZUWXYetm+8OAcYkgl8CSfK/uWl0SE=
Subject key identifier: 73:9A:31:91:CE:BE:13:7B:2B:49:6F:95:36:BB:41:C6:E7:D8:4C:36
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0194C350DA3F3ACB8C1AE66F5860266351AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0AE8
Signing time: Sat 01 Feb 2025 21:00:43 +0000
Manifest this update: Sat 01 Feb 2025 21:00:43 +0000
Manifest next update: Sun 02 Feb 2025 21:00:43 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: QVX3Y1pK3gDYTDRlCf1cuqSGuT5GqAASzG8JcXjcY2I=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:da:3f:3a:cb:8c:1a:e6:6f:58:60:26:63:51:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Feb 1 21:00:43 2025 GMT
Not After : Feb 2 21:00:43 2025 GMT
Subject: CN=739a3191cebe137b2b496f9536bb41c6e7d84c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ac:1b:86:06:b5:32:4e:e4:8a:b8:19:9c:69:
70:52:3a:34:06:e5:8e:a4:e2:7b:2c:2d:c3:51:a8:
56:4d:f8:30:57:67:e9:17:91:23:c4:02:87:a6:28:
d7:c6:49:6c:9c:5e:91:18:8c:47:07:ba:44:c7:09:
53:78:e6:82:07:20:8e:91:de:89:65:37:9d:c3:06:
9a:41:d0:f7:8d:fd:c2:8e:53:8d:70:2c:54:e8:3b:
96:c0:79:51:0c:d6:03:6f:6d:9c:e0:f6:66:2f:f4:
de:db:81:aa:75:eb:da:74:c8:49:88:42:5c:33:3b:
bc:99:af:1a:31:37:a7:cc:e8:44:a0:b5:e3:d1:44:
30:ce:7e:4f:8f:b3:14:21:60:ff:77:fc:77:fd:64:
84:fb:31:b5:d7:c3:4d:87:3d:bc:f4:30:2e:01:83:
0c:32:2b:b2:bb:95:e3:51:ac:95:c9:44:5f:89:80:
1c:a1:bb:52:f8:f4:60:8d:59:74:f7:97:8c:9e:89:
7b:30:ce:c0:0d:d5:17:b5:46:11:ef:78:24:f1:da:
b4:e3:32:99:9b:89:08:07:38:bd:f3:ef:07:06:33:
ff:24:4f:78:d9:b7:10:22:1e:3a:bd:f0:80:c8:ba:
5a:73:a1:5d:92:6a:6f:3f:c2:c2:c1:49:42:f6:b6:
9a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9A:31:91:CE:BE:13:7B:2B:49:6F:95:36:BB:41:C6:E7:D8:4C:36
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:2b:52:50:27:d0:9a:5c:fa:55:42:fd:f1:16:fc:85:6f:84:
05:cf:f9:a6:24:1a:5c:ce:6c:5d:ee:01:05:46:53:7a:fc:1c:
33:27:07:4f:e3:63:9f:b6:da:15:38:55:db:23:b5:7f:c1:8f:
12:c6:6c:f7:a4:fb:ef:51:88:6a:e2:48:08:f8:12:ed:2f:84:
03:87:f0:d8:ff:cc:c6:7d:96:59:dc:57:a4:67:f4:43:e4:71:
f9:23:b6:76:6d:ce:37:89:c2:7f:58:d7:7e:0b:4f:af:6e:b7:
dd:d1:40:50:7e:12:f6:e1:50:06:5c:58:e8:af:d1:31:e7:56:
e6:70:81:d0:88:77:7b:3e:d8:f8:6c:c1:92:c3:36:63:1a:64:
cb:81:26:cd:9b:69:12:87:1c:65:d2:82:88:95:9b:78:d6:6d:
8e:1e:65:95:4e:b0:85:93:f5:bc:43:5d:f4:e2:70:c0:ce:14:
9d:41:38:3c:6f:7e:da:16:5d:b8:0c:d0:72:77:4b:0f:5b:8b:
ad:3c:8f:cb:80:09:67:0a:e7:55:d5:3f:ec:ad:07:97:1d:8b:
05:05:be:b2:9a:fc:8d:05:96:8e:71:ad:80:74:49:3c:1d:52:
01:af:a7:95:b8:91:a0:44:e7:1c:07:ac:81:61:4a:68:92:49:
93:9d:33:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:52:42 2025 by rpki-client