Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: rNaDA0ISs9BkU7lux+K/w2nbUx9VobeUiKwav1F4fIY=
Subject key identifier: DD:A0:AE:0D:3B:B3:7C:0D:1C:DF:80:6D:4A:EC:20:22:86:D3:58:7C
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 019511A2E2B84403A5C1D9CB0BF2B5534CD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0346
Signing time: Mon 17 Feb 2025 02:00:42 +0000
Manifest this update: Mon 17 Feb 2025 02:00:42 +0000
Manifest next update: Tue 18 Feb 2025 02:00:42 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: gcx+Gt/rMukSt0UHozxtqo86OQTBDOo7PCXJbOypKZQ=)
2: fE9GzrH3d-6Th3wBzYY1G9LbRew.roa (hash: xyXKNFQngeKokd5hS0djUT+QlJzpKydn7zNDkVQlZFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:e2:b8:44:03:a5:c1:d9:cb:0b:f2:b5:53:4c:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Feb 17 02:00:42 2025 GMT
Not After : Feb 18 02:00:42 2025 GMT
Subject: CN=dda0ae0d3bb37c0d1cdf806d4aec202286d3587c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:23:65:26:f3:09:2c:7a:fd:5b:ab:b8:ba:0a:
ad:6b:cb:92:4a:48:9a:6f:40:4e:cf:78:47:89:c4:
c4:6e:91:80:a3:41:e0:f4:cf:74:80:0a:e6:2f:f0:
4e:6b:90:dc:95:2a:4d:f7:8a:4e:ce:c6:ef:3f:10:
55:29:e8:56:34:46:59:8a:27:7f:05:e7:92:84:3c:
ec:c8:dd:0f:a3:48:03:7e:e2:df:24:41:ee:8f:48:
e8:41:40:ec:7f:09:2d:43:73:1a:e2:6f:01:40:1b:
83:c4:cc:60:38:dd:94:d0:e6:26:26:64:67:f6:48:
51:88:4e:dc:ec:39:b5:91:cf:d8:1d:d8:52:b7:6a:
b1:5d:dc:51:7c:79:44:e0:4c:34:2c:41:ea:b3:77:
6d:06:68:95:e1:71:9a:c5:c2:50:28:c0:0d:cf:04:
de:2c:8d:0b:e0:9b:66:41:cc:1e:2a:60:19:cc:af:
c1:6c:a5:f8:01:6a:56:3f:9e:d0:ef:f2:07:d1:4f:
58:fd:70:72:fd:bb:3c:82:1d:6d:14:2c:ab:1b:d7:
6a:f6:03:38:41:3e:5f:7d:5f:8a:3a:a0:21:d2:a9:
8f:4e:49:fd:9f:5a:c4:e7:89:8d:72:ba:7f:03:89:
b2:2c:fb:11:74:d5:74:d5:14:1e:c1:63:56:95:4b:
95:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A0:AE:0D:3B:B3:7C:0D:1C:DF:80:6D:4A:EC:20:22:86:D3:58:7C
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:38:b8:ae:98:cd:36:6b:52:52:a0:48:15:5f:05:8e:60:48:
ba:37:e3:a9:99:d6:6b:0b:63:f6:21:f1:7f:a4:db:6e:fc:f5:
85:29:46:64:94:82:2b:60:a8:7c:e3:d2:d1:b5:ac:e5:ec:f6:
c4:92:83:4c:df:cb:8f:32:2a:81:81:9c:86:85:db:7c:32:d3:
2f:f5:2c:01:db:83:82:aa:63:9c:95:00:fb:11:b7:91:38:03:
57:51:b0:e4:b3:94:c5:81:17:60:04:93:92:37:71:e7:4c:42:
f7:a6:48:db:2c:1a:1b:d0:5c:c4:80:e8:1b:8d:d5:7d:21:aa:
c9:4a:1c:b0:17:e1:8c:86:29:28:0f:e8:08:ef:e5:18:23:51:
70:c5:70:cb:c9:b4:6e:f1:82:35:76:d0:15:84:42:3b:fe:77:
c0:58:6c:d8:59:16:34:ca:4f:8d:c2:94:da:02:96:79:1b:dc:
79:79:06:68:c8:1b:da:0b:46:67:fa:d7:9f:7e:a3:f7:61:f4:
fa:e9:07:58:92:61:81:e2:32:d1:72:dd:2b:53:8f:b4:aa:4a:
b4:ce:f6:e1:c8:ca:51:03:51:04:ed:79:80:72:8a:01:b7:1d:
aa:e7:15:c7:2b:f6:87:2d:1c:c8:c2:48:20:4a:11:1d:2f:42:
de:51:22:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:44 2025 by rpki-client