Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: bxA3h5lLrbK2jiuMGsSK2OLAIzZO+RulBv79zxCfiio=
Subject key identifier: 74:8D:34:D7:19:F6:75:6A:B8:B5:D7:36:E3:62:D4:65:13:A7:4C:E0
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 019510C7E5388BC1E9B6305CE3C4FF66C6DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 0FD4
Signing time: Sun 16 Feb 2025 22:01:30 +0000
Manifest this update: Sun 16 Feb 2025 22:01:30 +0000
Manifest next update: Mon 17 Feb 2025 22:01:30 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: 43cW7JjpWsPPF+fqLidzOd4X1Z1OuhQejSbSgdKOKkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:e5:38:8b:c1:e9:b6:30:5c:e3:c4:ff:66:c6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Feb 16 22:01:30 2025 GMT
Not After : Feb 17 22:01:30 2025 GMT
Subject: CN=748d34d719f6756ab8b5d736e362d46513a74ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9d:e4:e3:f2:36:db:81:26:75:b2:4d:6a:d7:
9b:01:f7:eb:9c:18:65:59:c2:b1:bf:47:02:0a:49:
22:f0:3a:d0:ba:a4:35:6e:ca:4e:63:b3:40:de:0f:
92:8e:e1:71:c5:2e:93:3a:2c:2b:02:32:51:38:16:
80:4c:60:80:dd:5a:d0:5c:76:33:fa:ed:d4:0e:ee:
e0:fc:65:2a:ae:0c:12:77:72:76:bf:81:d9:ed:21:
c0:d6:43:9b:47:83:3a:1f:60:58:ae:04:4b:6d:cd:
57:6f:25:e9:31:12:30:af:d8:d1:7b:cd:5a:fc:44:
b1:1f:08:d2:81:3a:71:3c:a5:77:4a:23:25:4c:7f:
cd:88:8e:80:61:e2:68:9d:f8:93:34:47:f6:07:3e:
24:a0:c8:c2:45:59:a7:80:58:9f:b6:7d:cd:7d:45:
53:0d:76:a0:be:93:5d:85:7a:42:b5:06:f9:f6:60:
da:21:c9:34:ea:5a:e8:7e:04:19:3e:69:86:7a:ad:
bd:14:4a:af:e4:7a:f5:29:8a:25:0f:2b:c7:ca:1e:
42:eb:e1:8c:be:11:bd:44:9b:b9:82:82:31:6d:5b:
90:42:7e:d9:7f:0a:4f:19:32:06:7f:b5:86:f5:2b:
cf:78:fb:fc:5e:20:76:be:5d:81:a4:26:00:a4:35:
66:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8D:34:D7:19:F6:75:6A:B8:B5:D7:36:E3:62:D4:65:13:A7:4C:E0
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:48:30:ab:55:94:e2:a4:d1:85:23:5e:6f:93:d5:ae:6d:25:
80:bc:50:25:3a:06:c1:6a:01:36:25:9b:a1:d5:5c:d6:1e:9a:
1f:95:33:bb:d8:5f:4a:17:cb:8f:ba:f9:51:60:cd:f7:32:48:
bb:d5:bd:8a:34:5a:be:34:b1:4c:4f:b2:07:7b:70:ae:4f:1f:
f3:1c:5b:0a:44:b3:d6:fc:5a:c2:78:51:4f:cd:d8:a7:5c:24:
2a:a8:68:3f:fb:18:c6:e6:de:8e:b4:36:da:71:ae:01:8c:4b:
5a:a5:42:5e:3a:91:97:55:ba:b4:70:f4:d5:a4:03:61:0b:2b:
54:9b:c5:3d:76:53:9a:10:d8:23:88:e5:73:c8:26:94:97:ec:
82:d2:2f:98:d0:e4:08:11:b0:fb:df:f7:d3:a3:a5:8b:a7:a8:
98:76:e7:eb:93:e1:9c:2d:c2:f6:54:cd:57:14:7a:96:16:2c:
95:4e:cf:24:fe:1e:fd:79:65:c5:d7:11:50:3e:90:0e:fa:2e:
89:ce:2f:e9:61:2d:af:9d:c3:66:c5:7b:85:cc:aa:8d:29:6e:
9b:9a:2c:3a:86:3a:6f:b2:09:65:0c:f5:73:57:a2:85:15:4f:
64:8f:c4:06:bb:7e:95:53:8c:36:90:5e:60:79:80:03:1b:6a:
d2:a6:35:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:42 2025 by rpki-client