Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9b3453-ae79-4f3c-bc72-5d8fe9acef83/1/d00hXK7bBQ1vb-hCbVBYr-KaqJY.mft
File: d00hXK7bBQ1vb-hCbVBYr-KaqJY.mft (raw, json)
Hash identifier: KidW0kWX1krM3J1tGL8y5+p7sY99X2S4I//ZdDLkJRw=
Subject key identifier: CD:80:54:28:A6:80:AE:67:0E:65:DD:D0:82:C4:5A:27:7E:52:2A:D9
Authority key identifier: 77:4D:21:5C:AE:DB:05:0D:6F:6F:E8:42:6D:50:58:AF:E2:9A:A8:96
Certificate issuer: /CN=774d215caedb050d6f6fe8426d5058afe29aa896
Certificate serial: 019510C765F5E0D572431910F018189E52B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d00hXK7bBQ1vb-hCbVBYr-KaqJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9b3453-ae79-4f3c-bc72-5d8fe9acef83/1/d00hXK7bBQ1vb-hCbVBYr-KaqJY.mft
Manifest number: 1458
Signing time: Sun 16 Feb 2025 22:00:57 +0000
Manifest this update: Sun 16 Feb 2025 22:00:57 +0000
Manifest next update: Mon 17 Feb 2025 22:00:57 +0000
Files and hashes: 1: PkCW-_NsM-T7UPkn9ndPg_lm2Cc.roa (hash: 6zURgMS5q85VCfD90tOCn/JEDDZzrGjQCgloW9Hyt6U=)
2: d00hXK7bBQ1vb-hCbVBYr-KaqJY.crl (hash: GddRGFrq+NS9nhQ0K/wcb9GoYlK12DLFfSrTulmRPUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9b3453-ae79-4f3c-bc72-5d8fe9acef83/1/d00hXK7bBQ1vb-hCbVBYr-KaqJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9b3453-ae79-4f3c-bc72-5d8fe9acef83/1/d00hXK7bBQ1vb-hCbVBYr-KaqJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d00hXK7bBQ1vb-hCbVBYr-KaqJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:65:f5:e0:d5:72:43:19:10:f0:18:18:9e:52:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=774d215caedb050d6f6fe8426d5058afe29aa896
Validity
Not Before: Feb 16 22:00:57 2025 GMT
Not After : Feb 17 22:00:57 2025 GMT
Subject: CN=cd805428a680ae670e65ddd082c45a277e522ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ea:5b:9e:18:cb:30:26:9b:b5:b3:22:3f:6e:
94:67:c8:c6:5d:c5:c3:18:81:30:18:c3:b6:75:13:
93:82:31:f3:76:e7:0a:11:93:81:ac:31:c0:54:7b:
0e:96:2b:57:e9:81:b2:1d:34:d5:b6:07:9e:b9:9d:
0d:cb:8e:92:a3:7f:bd:ec:5f:66:1f:59:f0:c1:7f:
14:c6:6b:61:69:5f:57:29:aa:4c:51:04:1f:6d:ed:
4f:4e:ca:8c:92:80:6f:6f:57:1d:0f:f9:69:94:4d:
9e:cc:cd:09:9f:51:b8:0f:e4:de:4b:c5:74:11:31:
c9:95:79:39:a1:69:64:20:d9:fb:88:8a:59:bf:d3:
89:ee:6e:11:fe:b5:ef:90:ba:a1:ec:ad:13:4a:43:
23:0e:c8:74:ca:15:34:e9:26:c0:15:d3:0b:30:1d:
e3:a9:30:f9:eb:d0:dc:27:cb:ee:4a:d9:2d:20:23:
8e:97:9c:5b:88:29:f9:d6:e4:32:1e:3d:2c:3f:6c:
bf:13:02:3b:a7:e5:79:13:e4:5b:3b:0e:9e:86:9b:
e0:76:b6:20:0d:b6:ad:52:1e:ec:ea:7a:88:59:2c:
5c:b1:a1:ed:ba:e2:4a:32:43:da:aa:c3:40:9c:c7:
ee:f0:75:63:36:f2:4b:8c:b2:2e:5f:0a:eb:8b:4b:
3f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:80:54:28:A6:80:AE:67:0E:65:DD:D0:82:C4:5A:27:7E:52:2A:D9
X509v3 Authority Key Identifier:
keyid:77:4D:21:5C:AE:DB:05:0D:6F:6F:E8:42:6D:50:58:AF:E2:9A:A8:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d00hXK7bBQ1vb-hCbVBYr-KaqJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9b3453-ae79-4f3c-bc72-5d8fe9acef83/1/d00hXK7bBQ1vb-hCbVBYr-KaqJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9b3453-ae79-4f3c-bc72-5d8fe9acef83/1/d00hXK7bBQ1vb-hCbVBYr-KaqJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:61:de:4f:42:3d:41:cc:1f:3d:1e:a5:84:aa:a1:2d:e4:48:
85:92:1b:54:80:5c:5b:98:6d:5a:41:a2:eb:0e:c0:69:eb:da:
63:f9:8b:d3:dc:8f:cb:52:64:14:df:c3:12:f9:e8:d3:04:83:
1c:6a:71:af:ca:5a:35:24:c7:ef:37:35:a4:a3:cd:4d:71:f2:
c6:96:3a:2e:ea:a7:69:0e:82:fe:4f:fe:b4:0f:3c:24:a1:73:
38:e0:10:b9:55:28:1c:2a:e7:5b:17:c2:cf:af:45:8c:30:2a:
ce:26:5d:9a:f2:82:f8:16:e4:44:ef:14:75:16:95:f8:da:59:
88:f0:9c:04:33:2f:7a:5d:6a:c0:1c:23:bb:5e:70:8c:c6:0d:
7d:df:b3:35:07:68:b2:3b:eb:af:d3:e3:5b:a3:75:0e:07:47:
48:18:31:3e:d3:91:45:b8:4a:24:0f:78:20:4d:23:54:92:de:
78:c7:e5:75:61:7c:f2:29:9f:42:1f:cb:4f:96:23:ef:d7:fd:
f7:ba:32:2b:8b:ac:0a:c5:aa:6d:4b:7e:74:cd:6a:36:52:b1:
d4:cd:45:02:81:1f:bb:c7:07:02:e2:20:92:a6:61:9a:b2:9d:
87:c6:6c:0e:9d:7e:92:51:b4:58:ef:45:59:28:5e:3d:d8:6c:
a2:30:08:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:17 2025 by rpki-client