Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: 8WvrJbfxp0Jmxy4GlUgrPixGytc6+F/9ISG85yhuQaA=
Subject key identifier: D9:78:C5:E6:EA:24:09:A0:F2:84:B7:39:7F:FB:79:7E:F1:17:5B:D6
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 0195116B9B12BF99F6E962B14E061E9416A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 0E51
Signing time: Mon 17 Feb 2025 01:00:19 +0000
Manifest this update: Mon 17 Feb 2025 01:00:19 +0000
Manifest next update: Tue 18 Feb 2025 01:00:19 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: WJ0EeVQ+lBk+AoRpnW29E6HI3lH0AZHKhOSzuE1UQrk=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:9b:12:bf:99:f6:e9:62:b1:4e:06:1e:94:16:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Feb 17 01:00:19 2025 GMT
Not After : Feb 18 01:00:19 2025 GMT
Subject: CN=d978c5e6ea2409a0f284b7397ffb797ef1175bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:77:3b:38:26:94:c2:7f:fa:da:24:92:ae:d5:
27:d0:a5:1e:82:7a:75:d4:42:f4:40:7d:33:44:89:
52:24:19:fd:29:fa:f0:18:c8:fc:11:5d:00:ac:3d:
df:a6:f5:23:dc:6c:2b:30:73:a8:de:f6:4e:ef:e0:
e5:8e:e2:b5:e2:bd:44:b8:9b:6d:72:9a:10:dd:1b:
4e:d1:03:19:d6:3c:60:fa:a0:ba:b2:10:f6:b9:84:
00:20:9d:3b:fa:e4:ca:a4:a7:af:1b:15:fc:ad:5b:
13:2c:bc:b8:cb:f0:d0:1d:17:5f:fa:59:47:e3:00:
3f:fa:91:ec:1e:54:bc:ac:75:6a:8f:46:f0:02:2e:
63:d8:ac:1d:1f:d9:07:5e:7d:fd:d3:80:b1:dc:49:
4a:bc:f2:c2:41:a7:20:98:6c:05:67:c5:dc:77:a1:
35:01:5c:ea:1a:e4:7a:68:18:2c:8f:42:df:66:87:
f0:01:4b:9e:80:d1:76:45:67:37:50:a9:2e:5a:6d:
13:81:77:5e:14:ac:ff:f0:86:44:e5:63:87:8d:b7:
ca:f7:e5:18:15:3a:e4:ed:eb:31:29:da:66:4b:8b:
ea:5c:e4:f5:0d:c9:64:00:ea:a6:d5:67:0e:04:c5:
9b:99:93:9a:d6:5a:c4:c7:cb:da:e6:11:b8:b6:ca:
b6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:78:C5:E6:EA:24:09:A0:F2:84:B7:39:7F:FB:79:7E:F1:17:5B:D6
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:1f:86:b5:d0:ef:f9:69:31:4f:9b:02:50:09:97:25:c9:ae:
2a:cc:97:5e:dd:09:4a:e6:46:b9:0c:02:cf:d2:71:71:6c:99:
10:c2:fb:c2:85:ad:cb:b4:5e:e3:14:c8:33:b3:20:70:fc:13:
89:b4:9e:c8:bd:2c:39:26:22:fe:c9:43:14:16:c2:b1:bc:86:
70:e1:18:01:bd:70:ff:7a:33:55:0a:27:fd:6d:ef:90:de:c8:
8b:e5:63:d1:5a:79:a6:b5:30:f7:f7:07:97:3f:40:f3:de:a2:
16:db:83:4d:08:73:80:ee:cb:99:c4:67:fc:2d:ee:88:b4:c1:
f5:9b:fb:f1:c9:07:85:f1:27:76:8f:73:10:7b:bd:b5:9b:8e:
83:63:73:a7:58:d4:41:fc:8e:e7:9a:55:86:0a:e8:ae:c2:3d:
6a:cf:3b:0b:2d:a9:e9:b1:59:d9:d0:65:a1:6b:20:a6:cb:3e:
5a:2f:4c:e3:b1:69:91:bd:13:a6:74:94:2b:6b:2f:d7:95:0e:
fa:2f:95:27:64:20:ce:06:69:d3:8c:68:c4:d9:6e:aa:6b:f9:
d8:f1:28:ba:df:88:cb:c2:41:81:fe:8d:62:a6:95:ae:17:48:
21:03:a8:9c:dd:7c:2f:12:d9:73:8f:1e:ba:ab:b6:26:7b:93:
a3:f1:e6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:11 2025 by rpki-client