Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
File: 8R8omgChsRW386TRuAEb-Q0aL3I.mft (raw, json)
Hash identifier: bCP4Xh/36rlwc6fIKjPse9OY4CGdOHx0Z1iGLh22uHI=
Subject key identifier: 48:45:72:FC:89:98:5B:0A:A8:A6:0F:49:76:AF:4D:AF:0D:36:60:30
Authority key identifier: F1:1F:28:9A:00:A1:B1:15:B7:F3:A4:D1:B8:01:1B:F9:0D:1A:2F:72
Certificate issuer: /CN=f11f289a00a1b115b7f3a4d1b8011bf90d1a2f72
Certificate serial: 019510C7A2FFA7BA20694A8B9B829E7EAEC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8R8omgChsRW386TRuAEb-Q0aL3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
Manifest number: 0825
Signing time: Sun 16 Feb 2025 22:01:13 +0000
Manifest this update: Sun 16 Feb 2025 22:01:13 +0000
Manifest next update: Mon 17 Feb 2025 22:01:13 +0000
Files and hashes: 1: 8R8omgChsRW386TRuAEb-Q0aL3I.crl (hash: sfFVj4EEA16KGhX3x9Y1tLFMtBj5ZrdUhfI5gau3pDo=)
2: tRxgXr9YQwTbEh2NqyL9M68npkQ.roa (hash: QcuVE9jeWpJsMM52+9+6n7mFIjZuC9lNEDcWkB7O3NI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/8R8omgChsRW386TRuAEb-Q0aL3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:a2:ff:a7:ba:20:69:4a:8b:9b:82:9e:7e:ae:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f11f289a00a1b115b7f3a4d1b8011bf90d1a2f72
Validity
Not Before: Feb 16 22:01:13 2025 GMT
Not After : Feb 17 22:01:13 2025 GMT
Subject: CN=484572fc89985b0aa8a60f4976af4daf0d366030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:77:eb:e9:5c:98:a8:0e:cc:e1:57:a3:88:f6:
ee:0a:fa:a7:1a:a8:49:8a:c5:44:52:16:ed:bb:99:
12:14:84:21:29:90:81:fc:35:3b:c2:85:2b:f1:4c:
aa:9c:f1:d9:12:5b:83:14:ab:09:8e:ce:31:36:bc:
05:28:e5:8f:69:82:7f:59:43:51:86:7b:63:a9:e1:
e9:c5:9e:ea:24:03:92:39:19:b8:0b:c9:07:0e:a9:
55:5d:f7:ef:c9:66:aa:ee:20:9b:78:6f:a9:a6:f3:
ca:38:05:72:b0:fe:42:68:2a:93:e1:2b:16:8c:f4:
9b:64:d2:91:2f:e2:5f:c4:69:5f:f6:80:f7:64:b1:
e0:49:b0:6e:e8:77:d8:81:49:87:10:d3:18:f8:03:
f2:33:ec:0c:88:29:aa:78:53:c1:e0:27:6b:8b:67:
8d:fb:0d:82:d9:3c:4e:c9:90:a6:6e:5e:d4:7b:a5:
48:13:61:8d:e0:75:31:6a:29:cf:71:18:38:a1:b8:
09:05:a0:99:87:4c:7a:f9:bb:6a:c3:17:da:55:82:
90:74:ea:0c:e7:36:5b:af:b4:7b:2c:bb:31:51:91:
f5:5e:12:93:95:29:9d:a7:b0:34:ac:20:30:bf:02:
58:4a:30:53:7a:0d:17:17:c2:6d:47:88:05:c4:0c:
45:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:45:72:FC:89:98:5B:0A:A8:A6:0F:49:76:AF:4D:AF:0D:36:60:30
X509v3 Authority Key Identifier:
keyid:F1:1F:28:9A:00:A1:B1:15:B7:F3:A4:D1:B8:01:1B:F9:0D:1A:2F:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8R8omgChsRW386TRuAEb-Q0aL3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/5151e1-36b7-4205-9af7-74e84967168b/1/8R8omgChsRW386TRuAEb-Q0aL3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:7a:dc:6d:5e:c1:03:30:16:c9:fd:cb:83:9c:1f:bf:9f:6c:
9e:9d:a3:d2:e8:74:eb:a7:8d:34:9a:73:03:70:0b:6f:7f:ca:
8c:dc:d0:0b:a0:5a:5a:27:94:e4:30:b6:dc:af:c0:0e:67:e5:
0e:40:08:e1:7b:0c:a3:82:69:aa:52:a6:e4:ab:f0:01:f5:6a:
f2:08:eb:91:3e:77:d0:00:a8:0a:09:a1:e2:91:02:a9:32:f2:
5b:0b:fe:c5:aa:de:c9:22:16:4a:a2:94:b9:72:1f:7f:44:08:
d1:ee:97:42:fc:6e:55:1f:a7:77:79:e8:86:99:d0:e3:58:33:
51:eb:a0:de:81:4e:49:9e:0b:55:55:9b:8b:38:3d:e1:b6:23:
c4:12:07:e0:20:ed:1f:8c:12:4d:11:b8:02:ac:9a:05:05:7d:
c1:d4:52:8d:99:0a:47:c8:3c:3d:98:2b:25:00:c7:18:a1:14:
d3:0d:ac:64:18:e6:11:d5:f9:8b:8c:24:df:2f:c7:cf:64:60:
c8:43:38:32:09:ec:a8:40:13:77:f6:e7:32:d9:d8:e3:b6:3d:
58:b0:2e:ea:c2:8d:ab:33:b5:5f:58:ea:b2:f8:df:d9:4e:28:
d3:e2:54:76:02:b2:11:47:4b:0e:32:0a:a2:1d:fd:59:ff:24:
4c:24:ce:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:02 2025 by rpki-client