Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
File: a4QIvvwC39bmGQhUh4WgCKS3TWc.mft (raw, json)
Hash identifier: bFJ1YRJ1UmvXBedYlM/2EEQhpoDVKnNlVp4APgCT0Nk=
Subject key identifier: 9F:93:B5:3B:AD:EC:9A:BB:26:2E:52:0E:C1:1F:43:CB:30:1D:26:C5
Authority key identifier: 6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
Certificate issuer: /CN=6b8408befc02dfd6e61908548785a008a4b74d67
Certificate serial: 0195116BA8CA8D12278B9762FB76F4994D9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
Manifest number: 08A9
Signing time: Mon 17 Feb 2025 01:00:22 +0000
Manifest this update: Mon 17 Feb 2025 01:00:22 +0000
Manifest next update: Tue 18 Feb 2025 01:00:22 +0000
Files and hashes: 1: XG_GoCIjsfzx85ZAfU48cGk_g2A.roa (hash: O4zvtPOigYM3HdyO+PNnJwZMHPFxCAa0+qt7cBa9RoM=)
2: a4QIvvwC39bmGQhUh4WgCKS3TWc.crl (hash: EETdm/kgADzM1Lnq4MDJCh5Z+YluGTtiKVLw0wpPdPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:a8:ca:8d:12:27:8b:97:62:fb:76:f4:99:4d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8408befc02dfd6e61908548785a008a4b74d67
Validity
Not Before: Feb 17 01:00:22 2025 GMT
Not After : Feb 18 01:00:22 2025 GMT
Subject: CN=9f93b53badec9abb262e520ec11f43cb301d26c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ad:b5:f2:76:51:c0:1c:a6:2c:ea:73:b4:24:
6d:27:2d:1b:08:6d:76:78:78:92:66:3b:70:c7:f5:
1c:9d:cd:c1:1f:27:58:fc:2d:a3:fb:4f:60:75:2a:
98:c2:78:d9:1b:b9:76:38:ee:92:00:5f:ad:63:44:
f8:6a:c1:58:00:55:79:19:8b:71:ff:67:6a:cc:93:
2f:30:f9:54:8a:b3:99:2c:79:84:92:d9:61:10:67:
72:3d:6a:e2:c2:c0:a7:84:35:02:9e:2a:ce:54:c5:
02:6c:5e:fb:7a:5a:51:43:a8:2e:47:bb:a4:de:92:
8b:af:45:02:61:71:17:30:97:63:7f:32:f6:4f:a2:
3b:e8:83:a1:44:c2:87:04:94:36:db:16:9c:2c:e8:
d5:3d:3b:37:29:d9:76:5e:5f:80:58:ab:30:c0:03:
1d:cf:34:2c:14:d1:3c:20:72:5a:50:59:37:c4:8e:
74:f4:29:d7:bd:69:60:94:35:69:16:e1:df:a6:d7:
a5:77:0b:a6:98:13:52:e0:87:df:19:06:65:a9:d2:
bd:9f:eb:18:b9:30:79:72:c0:06:07:32:db:26:2c:
42:b4:f8:14:45:14:3e:78:e1:8d:38:71:42:10:b9:
48:20:7e:70:eb:99:2e:db:ae:b9:a5:8d:e9:77:33:
77:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:93:B5:3B:AD:EC:9A:BB:26:2E:52:0E:C1:1F:43:CB:30:1D:26:C5
X509v3 Authority Key Identifier:
keyid:6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:66:03:34:eb:d0:df:cc:12:18:9d:fc:06:b2:25:d1:e3:46:
57:d9:11:a2:5b:c5:f8:b8:c7:26:a6:9d:7d:15:ba:89:79:b5:
0b:e1:8c:d6:f2:49:4b:53:03:c4:8e:57:7a:96:52:64:d1:69:
99:cf:3b:79:c7:71:d6:e8:0f:80:90:90:3d:a2:07:e6:60:81:
13:5e:71:24:07:a8:05:25:28:04:9e:de:49:98:1a:18:96:f4:
ec:fe:06:7c:46:20:fc:d3:cf:bf:fc:12:b9:84:b1:cc:45:29:
5b:e9:18:d6:38:39:e5:4f:9f:b6:ca:b2:cf:c1:8f:31:a2:c5:
8f:43:87:69:ea:9f:08:e1:a5:60:6b:b5:b4:a6:fb:0b:16:01:
4c:7f:de:de:7e:7e:05:17:29:c6:2a:7a:ed:09:4d:11:bf:56:
a2:d0:18:9d:4d:4a:46:fa:a6:0b:39:8a:b3:e2:06:0b:78:73:
81:da:64:07:02:2f:da:c3:d0:ce:6d:f1:92:3e:be:ed:ca:f3:
5e:ac:8f:02:8a:d6:6c:1d:eb:41:58:e4:b0:34:74:ee:3f:fc:
e4:4e:88:85:eb:d2:2d:ba:2c:e5:6d:28:14:83:d2:33:c3:54:
15:53:b0:be:c3:4d:cd:ce:e8:cf:20:2e:a7:14:9d:58:58:c4:
fa:9e:de:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:37 2025 by rpki-client