Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: xBeJlyz4c0Clc7YVtqbPP175GKseDq0x8Nba7chT4vo=
Subject key identifier: E2:1F:D1:05:20:4D:A4:E6:10:5A:D6:30:3C:1D:7C:FF:26:BC:3C:E6
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 0194C35104E3CEF8A09612D6EDE0B517D824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 142C
Signing time: Sat 01 Feb 2025 21:00:54 +0000
Manifest this update: Sat 01 Feb 2025 21:00:54 +0000
Manifest next update: Sun 02 Feb 2025 21:00:54 +0000
Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: b7y5KJAa5Nt6thbrROni6dSschOP071YfCZOHei7U4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:51:04:e3:ce:f8:a0:96:12:d6:ed:e0:b5:17:d8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Feb 1 21:00:54 2025 GMT
Not After : Feb 2 21:00:54 2025 GMT
Subject: CN=e21fd105204da4e6105ad6303c1d7cff26bc3ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:25:43:64:6b:36:af:34:7e:05:56:49:91:5d:
5d:76:11:6f:2d:7d:d2:b1:0f:1a:6e:3d:07:b5:ed:
7c:02:22:36:6e:25:e1:f5:3f:a7:f6:e3:93:fd:51:
0b:a7:93:db:d8:6e:a4:68:78:1e:81:2d:97:7d:7a:
8e:b2:50:2c:d5:30:8a:2a:08:1a:e4:ab:5a:42:ba:
b2:51:5b:86:e8:a1:fa:86:77:e0:82:e9:32:ae:a7:
29:b3:cd:6b:ce:c9:92:71:0d:22:d3:8f:5a:74:0b:
b3:9e:87:60:d8:d1:44:5d:28:fa:a6:6a:3b:9c:a3:
89:ee:a3:41:c4:86:0c:3d:bd:ff:14:13:37:d0:21:
96:db:07:92:f1:ac:55:ef:53:36:33:8e:f3:ae:ee:
1c:a4:ae:e5:f8:30:ac:32:33:c9:7e:22:98:19:db:
2f:83:30:6c:a2:0d:7f:2e:05:37:61:c3:03:fb:56:
4d:8f:b2:d3:e1:95:63:52:e3:27:27:51:ce:d1:a2:
94:08:e9:b4:4f:2d:ad:30:a4:4c:eb:83:13:2e:5a:
36:e6:35:ad:00:ff:8a:6b:15:81:45:4d:e9:93:a6:
47:a3:e4:d6:e8:7d:9e:36:51:a4:ce:43:54:37:86:
24:cb:8d:c5:f8:bb:36:26:f9:6b:b0:48:eb:a4:52:
f7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1F:D1:05:20:4D:A4:E6:10:5A:D6:30:3C:1D:7C:FF:26:BC:3C:E6
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:e1:55:00:18:8d:0b:4e:48:a5:1a:1a:d8:ea:dd:1e:fd:f1:
2c:cb:7d:33:9d:57:59:3c:69:80:de:0e:6c:97:3b:6c:42:7c:
cb:9f:e1:a2:68:f5:77:1c:c6:6c:38:d3:b1:2c:f6:a1:e9:f2:
1f:d0:be:f0:cb:05:ea:cd:41:0f:ca:66:78:12:e8:92:65:d1:
b4:db:30:29:40:18:a5:25:84:0a:d7:18:60:91:d7:6e:9b:3b:
0a:6e:23:f6:ae:73:49:22:94:2e:e1:78:46:8e:1d:fb:4e:02:
7c:e9:31:93:e4:14:22:43:63:5a:9b:24:1b:c0:1d:ac:4a:08:
15:61:34:cf:85:9a:8a:61:a0:66:07:cf:75:18:56:bd:b0:2d:
62:03:bf:4e:96:7a:c9:e8:9c:95:41:62:f6:b0:6f:f6:c0:57:
25:8e:42:ab:83:8a:8a:1e:b0:5c:fa:65:63:58:d4:2e:0d:c3:
fd:ef:bb:23:74:88:10:fd:91:19:a6:37:04:f0:d9:e1:43:87:
b0:38:c9:5a:8e:0b:1f:16:fd:f5:d2:98:69:e5:9f:b8:ea:50:
e8:a1:78:bd:49:7d:42:8d:da:be:11:bb:12:58:6d:d6:91:88:
81:e2:3e:b7:13:c5:09:c5:4d:59:ed:e0:6d:95:12:7d:95:fd:
5e:20:2d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:46:56 2025 by rpki-client