Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: bFatpvqsf39EJPtugu4PxaIun6a8B4d+Ot88bcYEKdI=
Subject key identifier: 1D:BB:10:A7:D3:6C:BC:A9:98:F2:59:A5:7B:E7:33:00:0F:65:0E:62
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 019511352695396361341EA5A5ADC9DA3C94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 00:00:50 +0000
Manifest this update: Mon 17 Feb 2025 00:00:50 +0000
Manifest next update: Tue 18 Feb 2025 00:00:50 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: EAzNbpbgjGAVDkhnItjZZoB8dSllA2UTot8shOJlhX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:26:95:39:63:61:34:1e:a5:a5:ad:c9:da:3c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Feb 17 00:00:50 2025 GMT
Not After : Feb 18 00:00:50 2025 GMT
Subject: CN=1dbb10a7d36cbca998f259a57be733000f650e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:47:0e:36:f6:90:7b:5d:59:d7:51:b3:c9:
bb:e2:db:cb:0f:6a:76:ea:8d:34:0e:14:77:e5:56:
35:d2:1a:ba:de:7b:ee:68:62:6f:a6:9d:9f:2c:00:
19:b3:01:d5:53:0f:df:04:8c:6e:31:8f:24:f0:0f:
1f:7b:68:41:e4:76:e7:00:61:4a:f5:ad:40:59:22:
20:f1:fb:eb:34:1c:11:8f:b1:52:22:53:23:09:a6:
12:b6:9c:2f:0c:40:18:af:fc:05:6c:f0:f8:a5:43:
00:03:67:f9:1a:08:25:eb:c2:1d:a8:a8:f7:6a:c8:
f9:06:5b:4a:cb:1e:0e:14:d0:d6:c6:06:0f:ad:3e:
9f:97:72:f8:10:75:16:9e:d7:b1:01:bc:28:95:04:
1d:9e:d5:5f:cb:9a:96:13:54:8d:6a:68:eb:42:e0:
f5:8e:d4:78:d0:9f:18:54:94:bf:1b:8e:46:5d:25:
9a:0a:ac:ed:89:b8:e0:25:fb:23:a3:a1:bd:78:01:
cb:c6:a1:ef:af:1f:60:ae:c1:6a:13:63:01:d0:40:
d4:d5:44:70:43:3a:a2:36:fe:75:8a:7e:65:3c:15:
27:01:78:09:a2:d3:ad:49:4e:b5:eb:32:72:18:9c:
ed:04:79:a4:d8:9b:5a:48:c2:f7:d3:5f:37:e5:a7:
25:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BB:10:A7:D3:6C:BC:A9:98:F2:59:A5:7B:E7:33:00:0F:65:0E:62
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:86:ec:40:c8:20:a7:05:e0:37:f5:e3:f0:81:34:b0:0f:bd:
32:ed:e3:2b:06:d3:e1:4b:67:2c:24:04:f9:00:03:82:91:06:
e9:db:9b:42:03:3e:10:ab:3d:4b:58:87:19:ed:03:5f:b2:f8:
d2:1c:18:f6:de:2e:1e:ea:3c:77:86:1f:3a:3c:ec:a3:15:73:
f6:07:2f:ab:cd:e5:83:53:c0:40:c0:42:c5:3c:6d:cf:ae:fc:
ea:a8:eb:41:5a:8d:11:47:d7:01:61:4a:5e:8e:96:79:18:db:
fc:b4:4f:0e:e7:38:4d:72:bd:17:c6:7a:30:6e:d4:19:93:f1:
b6:7c:e9:95:f8:38:a1:3f:1c:0c:60:f9:6c:44:60:bd:4c:54:
5d:ce:12:ad:ec:18:2d:1e:14:47:54:8d:ff:f5:d7:5e:01:bf:
cb:ac:17:13:22:06:6a:13:ef:f3:7e:05:fb:b4:f7:71:19:05:
71:68:a4:04:e7:40:fa:20:da:43:a8:78:1a:58:cf:c7:bf:11:
37:a1:b7:6f:24:e0:c0:2b:f5:6b:12:36:d9:82:49:8d:a5:25:
4f:d1:7a:73:41:2e:b4:57:01:b5:27:72:aa:05:17:58:5f:ec:
e1:48:c7:ca:ab:80:a0:51:96:42:65:9d:96:c7:0a:16:28:f5:
38:6d:c9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:46 2025 by rpki-client