Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: 7ujh+ZbKCp0jl6ET2p3cfeLs8CqDQjK2BJ1rRW7CJEc=
Subject key identifier: C3:5E:D2:A8:D0:FF:CB:B7:F2:39:5D:94:91:04:E5:80:74:C1:03:FD
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 0194C463AFF25EE87753744818F7B310F2C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 015F
Signing time: Sun 02 Feb 2025 02:00:54 +0000
Manifest this update: Sun 02 Feb 2025 02:00:54 +0000
Manifest next update: Mon 03 Feb 2025 02:00:54 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: mdMJ17ZAOFuGPx/3i/tchsOzy/BNc8WCFLvN1cxWiWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:af:f2:5e:e8:77:53:74:48:18:f7:b3:10:f2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Feb 2 02:00:54 2025 GMT
Not After : Feb 3 02:00:54 2025 GMT
Subject: CN=c35ed2a8d0ffcbb7f2395d949104e58074c103fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8b:93:ce:e6:6a:9a:2d:da:b1:e3:7c:9c:91:
f2:74:48:c4:85:39:36:c9:d6:c3:e7:18:91:e6:cb:
35:27:7b:27:ea:87:de:65:dc:3a:25:a2:76:83:80:
73:3c:24:9f:5e:d3:3f:24:46:94:c2:1f:f9:9c:55:
3c:c2:10:59:d0:a7:6e:b4:ee:69:67:28:88:11:97:
fe:80:4d:84:53:80:97:95:70:dd:04:d6:42:ab:38:
a7:c2:af:59:5f:01:83:2f:59:01:f1:ab:0d:2b:4b:
89:7c:e3:12:24:83:11:7e:c5:de:c0:4a:b8:f9:f9:
9b:d5:57:8d:f7:d8:7b:d8:40:e8:f7:74:21:96:e7:
e9:74:f0:2b:74:ae:12:89:aa:54:bc:1f:18:00:02:
d1:79:23:45:e8:58:67:fe:a6:64:6e:b0:97:23:ae:
4f:f4:5b:c2:82:0d:9e:d8:1e:47:d8:86:76:ad:d9:
42:19:e2:90:93:fe:bf:3c:02:b0:e4:81:bf:70:7e:
d6:52:25:71:51:d9:9a:8c:39:c8:bc:27:29:76:17:
a8:1a:0b:0e:a2:7c:b4:58:c2:1c:dc:33:d7:bb:e3:
97:71:29:a9:61:9d:23:a0:a7:0a:af:8c:be:66:ea:
79:ba:b4:94:1d:99:d3:7a:73:87:9b:d8:81:aa:28:
f2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5E:D2:A8:D0:FF:CB:B7:F2:39:5D:94:91:04:E5:80:74:C1:03:FD
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:dd:3f:00:ab:76:d2:d7:4d:61:db:48:94:55:c6:74:ed:30:
d5:e8:14:b0:30:64:0b:fc:87:aa:bd:d5:df:78:b7:ef:cc:ed:
f9:ed:8e:99:40:29:73:99:05:3c:62:84:3a:a3:32:41:54:73:
c6:00:31:ae:f0:42:12:93:84:2d:05:7f:aa:98:60:cc:45:1a:
3d:1f:8c:1b:8d:c3:87:4f:7b:06:27:c5:7d:55:67:87:cd:fa:
c6:93:f1:2c:41:0b:5d:42:4c:aa:be:49:dc:83:90:02:aa:b0:
58:65:27:27:37:24:3a:33:bf:0c:f9:09:26:a6:5a:49:d7:76:
d4:5f:17:ee:e5:65:e3:3b:0f:9e:33:4f:9e:94:32:83:f2:9e:
fd:64:60:7f:16:17:9c:c4:0d:c2:e3:f9:88:e8:49:a8:c9:9b:
3a:f9:a4:92:2d:67:8e:51:31:f7:a8:4d:f0:f6:eb:71:4c:09:
57:4d:10:ca:0f:ed:e5:3b:1c:b7:8f:53:b0:d5:a4:fa:54:55:
91:97:af:9a:76:48:e2:1d:a7:c6:d1:cf:98:5d:1d:fb:53:aa:
05:c1:fa:2d:b5:ef:d9:08:81:4a:22:61:04:0d:eb:2d:65:0a:
71:09:6b:d7:26:81:91:6d:fa:86:21:3e:31:44:77:21:00:e9:
ee:64:88:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:52 2025 by rpki-client