Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: wWDgQ/3uIEb+Z0OHfgrSV1S8jZ8QvKweUccrJXwyz5g=
Subject key identifier: 83:E8:96:0C:E4:F7:9F:57:8A:05:60:23:CA:28:99:FF:6F:0E:D1:4D
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 019510C7E1B5E8D6CBA1F3BA0101B731BB59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0AD8
Signing time: Sun 16 Feb 2025 22:01:29 +0000
Manifest this update: Sun 16 Feb 2025 22:01:29 +0000
Manifest next update: Mon 17 Feb 2025 22:01:29 +0000
Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: +Eh3zQ2lgqNrnnM4jzT9ZPFOr9b/Wsfj2HVQpgQBEtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:e1:b5:e8:d6:cb:a1:f3:ba:01:01:b7:31:bb:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Feb 16 22:01:29 2025 GMT
Not After : Feb 17 22:01:29 2025 GMT
Subject: CN=83e8960ce4f79f578a056023ca2899ff6f0ed14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:da:0e:26:5f:18:e6:18:23:2a:72:67:12:98:
99:13:25:ff:9b:35:87:e6:07:9c:65:0a:64:5e:b0:
bf:57:03:bf:98:20:80:62:5b:3f:40:78:e4:93:21:
36:02:aa:0d:34:e2:e4:a1:96:23:45:81:9e:37:c0:
f1:26:47:22:22:2a:f2:ce:33:1a:b6:e4:e7:52:3d:
24:1a:9f:03:ae:69:34:e9:33:c4:bb:4f:97:9f:74:
74:f7:e0:5c:25:23:3f:ff:5b:0f:a9:53:12:1d:b8:
35:7d:6c:82:35:a4:34:72:29:5d:26:cd:f6:48:78:
96:58:1b:40:31:ec:0a:8c:97:08:4d:d6:da:66:11:
d8:17:13:aa:81:89:24:76:02:ba:a2:3d:1d:36:bf:
62:9b:56:6b:f5:d1:29:e7:e2:d6:1c:83:13:d0:7f:
4d:af:a1:a6:b4:23:2f:32:73:6a:f3:ec:a3:d7:d4:
77:71:e6:99:a7:9b:13:3b:cd:87:4f:06:cb:4e:77:
29:17:06:2d:ea:32:04:28:60:71:f6:f4:f1:ba:ff:
b6:3c:53:40:bf:f3:bc:98:d6:ff:a3:de:ad:9a:d2:
ae:ff:f4:c4:77:0a:4d:37:f4:88:87:e6:ca:2f:8f:
83:f5:32:3d:a9:f4:8e:86:74:b1:e7:8e:65:28:cf:
05:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E8:96:0C:E4:F7:9F:57:8A:05:60:23:CA:28:99:FF:6F:0E:D1:4D
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:c0:52:a8:41:f4:a7:70:72:ee:34:a4:ec:c0:dd:cb:87:9e:
fd:27:f1:b2:55:08:16:62:2a:3f:f5:fc:ff:9d:67:a5:a9:3b:
5d:74:a2:30:3b:07:f7:12:0d:5a:50:14:dc:11:0d:61:f7:dd:
65:f3:71:e4:8a:68:fc:d9:c3:a7:12:eb:39:e5:5e:f2:8b:a4:
e0:88:c2:e6:2f:83:8f:37:01:fd:f8:c9:be:38:8c:42:3a:2f:
4b:bd:ca:9e:02:50:4a:c4:de:e4:7b:7a:fc:5f:53:bc:c6:94:
bb:65:8e:50:57:4a:5d:c8:cf:68:eb:1e:ee:a3:c5:8b:b0:6c:
1f:2a:ba:ff:ae:db:e4:58:75:4d:6a:88:d3:68:c3:33:b1:7f:
a2:2b:95:6c:b6:9a:7b:89:2a:b5:ee:03:81:97:2c:ca:55:0b:
6c:15:d1:b4:32:15:a3:bc:6e:ab:ea:ac:50:4a:7c:21:b7:67:
6d:dc:05:ec:12:43:e5:65:86:90:21:c4:0d:11:56:05:1c:26:
ff:ba:4f:fa:df:40:d4:7e:17:aa:0a:9e:8b:c4:e7:34:df:b1:
d8:32:87:95:6d:8c:45:48:f6:bc:49:15:35:5d:2b:c1:be:ae:
e3:07:56:ca:d2:dd:ce:d4:f5:43:08:ad:32:da:18:82:d5:17:
d4:b5:b6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:30 2025 by rpki-client