Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: XKXRwqQHrFgpPIeCzKVEEsJSSfKQioZf+4IXNtWUYnY=
Subject key identifier: 23:AF:64:69:A3:E2:4B:D1:5D:CF:48:1E:00:1D:FF:A4:B1:E4:B9:F0
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 019510C765C5D09F249EDD68D80154C42164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 0136
Signing time: Sun 16 Feb 2025 22:00:57 +0000
Manifest this update: Sun 16 Feb 2025 22:00:57 +0000
Manifest next update: Mon 17 Feb 2025 22:00:57 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: AkhUYs+OukDei81k+etXDQs2Tfr2vmp6Ngftz476X+I=)
2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:65:c5:d0:9f:24:9e:dd:68:d8:01:54:c4:21:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Feb 16 22:00:57 2025 GMT
Not After : Feb 17 22:00:57 2025 GMT
Subject: CN=23af6469a3e24bd15dcf481e001dffa4b1e4b9f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:9c:fa:cd:e6:53:d4:74:12:72:fa:c7:73:
6b:73:3e:8e:a1:d2:53:39:4c:d0:86:0b:e8:35:0f:
be:b8:6f:14:4b:a2:13:d5:c4:ad:63:30:92:d4:4b:
b5:be:58:4e:c7:2f:93:1a:82:84:bf:89:ee:48:f8:
d7:68:88:13:2f:a0:b9:08:ff:85:76:b2:17:3e:e7:
e9:4f:5c:3e:64:4e:19:34:fc:d6:fe:49:4c:3e:3c:
85:61:f0:84:61:3d:1b:5d:8e:ca:ca:66:8f:2f:61:
d6:f1:d3:f0:0e:89:d5:90:37:5d:53:62:6a:5f:08:
f1:39:d2:75:f9:24:fe:af:24:04:90:d6:0b:1c:e5:
ea:f8:21:26:ef:57:4c:97:f7:08:47:a5:13:12:7a:
9c:c4:8d:43:f9:f2:f0:3b:ce:49:4f:98:ed:88:20:
e9:ef:30:1d:73:ed:50:b1:d1:75:0d:9e:5f:a3:da:
56:7b:55:48:5b:c6:dd:17:82:fd:6f:7c:e6:54:fa:
12:3b:8c:e9:d2:28:b4:31:68:95:12:e2:27:67:19:
ed:ee:80:85:c0:d0:83:e4:f6:2c:60:d0:37:b7:b2:
90:83:ad:dd:21:2e:72:49:dc:59:a6:33:a4:f4:bc:
9c:21:bb:5b:3d:2e:09:05:7d:48:19:78:a6:6e:ec:
57:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:AF:64:69:A3:E2:4B:D1:5D:CF:48:1E:00:1D:FF:A4:B1:E4:B9:F0
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:fa:b3:ce:6b:bf:fa:88:c5:c6:10:1e:9e:d0:5c:dd:46:eb:
57:53:8f:fd:c3:6c:08:af:49:07:fd:d8:43:78:81:97:08:d5:
8c:c7:75:71:db:a9:30:99:c7:ce:c1:af:c0:ea:20:22:c8:4f:
d9:e0:ff:ac:9b:ab:4c:7f:02:28:7b:ba:90:1e:37:30:4f:e1:
a8:9f:d2:2e:0d:20:2b:5c:ca:09:bd:9d:b8:7f:a4:df:a8:60:
1f:71:2f:84:82:44:62:f6:91:f7:4d:27:92:68:b4:1e:13:c5:
d1:39:c9:7c:e1:6e:91:ef:74:38:03:70:c8:19:49:bd:61:d4:
2e:e3:ee:38:d2:36:96:1e:c9:bc:e5:62:3a:39:e9:44:68:ef:
19:5b:dc:42:4f:53:6a:29:dd:09:5f:0a:24:36:ff:93:83:50:
1f:85:a1:a9:f1:17:2c:35:b0:3a:78:2e:73:58:b6:51:5b:cb:
94:a8:16:33:63:7a:3d:c0:a8:a6:7d:29:52:7b:16:ad:5b:cc:
64:be:92:04:61:96:ca:96:e9:0a:7b:4c:22:aa:a7:3b:e6:5d:
56:be:c3:b0:26:a0:88:5f:57:1c:4b:f0:0c:1c:f3:f6:a5:44:
b3:5e:24:78:63:11:ec:6c:ec:87:fb:3f:79:ed:a9:89:8b:fb:
b7:7f:2d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:46 2025 by rpki-client