Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
File: pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft (raw, json)
Hash identifier: c/o8ebH4VaL40jeqDcpgK1lyHOtf4rFZqUG05OpZ6Ek=
Subject key identifier: C6:21:E1:67:3B:B0:65:65:CC:DB:72:20:98:C3:E3:33:35:8F:19:FE
Authority key identifier: A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
Certificate issuer: /CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Certificate serial: 019511A307CF25FB256476A0AAA738A49C07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
Manifest number: 0D3C
Signing time: Mon 17 Feb 2025 02:00:51 +0000
Manifest this update: Mon 17 Feb 2025 02:00:51 +0000
Manifest next update: Tue 18 Feb 2025 02:00:51 +0000
Files and hashes: 1: WhtcuJJ0NSWsio8f8rQNMbqqeD8.roa (hash: uBIazeW9ZJrIEfawzpjRmH4sNuGdOT1AiFSbiZsPXDU=)
2: pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl (hash: s0E4K26vRg+HRve1SGe0nYz7Z9/iGxhvad9/Iv3e8yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a3:07:cf:25:fb:25:64:76:a0:aa:a7:38:a4:9c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Validity
Not Before: Feb 17 02:00:51 2025 GMT
Not After : Feb 18 02:00:51 2025 GMT
Subject: CN=c621e1673bb06565ccdb722098c3e333358f19fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:c1:d2:5a:30:93:f2:62:ed:c9:e9:bf:16:
2d:94:02:79:b3:5f:89:a5:26:50:3f:12:c5:04:44:
32:22:3e:e1:a9:7c:18:cb:b7:88:03:d7:82:5c:f8:
15:58:a7:97:e6:1c:19:0c:47:f5:d4:e7:c3:44:53:
47:7a:e7:d2:7c:2d:16:4d:51:cd:ed:d3:69:5e:cf:
8c:db:b7:5d:e5:f4:9f:4c:76:fb:d0:81:96:a1:be:
c0:35:95:55:83:83:d8:35:fe:c9:79:a5:20:2f:a1:
3c:61:5d:74:61:eb:ec:82:36:3b:97:b6:5b:d0:58:
6e:a6:d4:39:d0:7b:e7:81:16:92:ea:f1:65:a6:55:
ce:5f:cc:77:86:e3:e1:c0:9e:a8:e4:97:94:29:19:
05:88:ba:71:a3:c3:6e:f8:8b:7b:1c:58:f2:4f:cd:
25:a6:85:24:fb:91:a4:ee:2a:95:bc:94:d6:63:27:
e0:2d:d0:c1:f2:1f:95:b0:37:25:a4:9d:c8:7f:b1:
c9:a7:be:ce:66:84:f2:97:14:34:3e:2d:35:fd:60:
19:e8:7d:50:af:5e:fe:14:df:cb:92:8e:ff:8d:33:
e8:af:f0:7f:a2:39:d5:3e:7e:af:af:74:46:8f:25:
ee:c3:06:d7:a5:c8:e7:e5:5f:d5:65:94:f2:da:4b:
32:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:21:E1:67:3B:B0:65:65:CC:DB:72:20:98:C3:E3:33:35:8F:19:FE
X509v3 Authority Key Identifier:
keyid:A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:67:8b:c9:17:58:50:dd:b3:4c:45:2c:60:1b:94:93:44:3a:
05:67:c6:59:68:2a:dc:0c:bb:69:48:1e:03:2a:b1:b8:aa:69:
24:00:32:04:52:a6:d5:09:76:ac:77:b0:91:1a:15:24:31:87:
33:81:24:a3:33:bf:60:a4:4c:f6:bf:a0:4c:8f:39:ee:84:4c:
81:86:c9:42:90:b6:4e:d6:77:a4:2c:44:7e:2d:a1:22:86:58:
c7:18:01:dc:f0:84:d6:7c:63:98:eb:27:23:33:45:78:eb:63:
fe:bc:29:34:ec:29:46:11:19:24:16:f0:42:70:97:f2:f3:28:
47:f0:d5:04:42:3d:ce:15:a6:47:2f:c7:24:e8:b5:54:1f:9a:
8f:e3:4e:04:c5:63:05:ad:61:43:eb:54:97:2c:5a:97:57:cf:
e7:4f:99:7d:4a:a0:1a:a2:1f:db:0d:18:b8:a9:9c:56:92:58:
f9:fd:48:68:7d:63:bd:a7:51:53:be:a7:00:71:23:2f:03:d6:
98:08:b5:21:32:86:a7:f8:08:eb:ae:a3:56:67:3a:06:f5:06:
f4:c0:50:eb:ce:66:96:6d:36:3d:1c:87:bb:94:12:73:66:65:
77:d2:f0:0f:69:c4:db:8a:8d:f4:5b:fc:ad:cd:45:61:45:d8:
fd:05:6a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:00 2025 by rpki-client