Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: PCQHYfprCI7o04ilw9DQhnZssdTom4/VHwoILAb3gJI=
Subject key identifier: FC:F8:72:05:0B:95:AB:9E:3F:F1:62:B6:16:6A:0F:EC:D6:D1:BF:38
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 0194C3508D600833CDCD9E824DEDE5875022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0986
Signing time: Sat 01 Feb 2025 21:00:23 +0000
Manifest this update: Sat 01 Feb 2025 21:00:23 +0000
Manifest next update: Sun 02 Feb 2025 21:00:23 +0000
Files and hashes: 1: IPVqTow4BPog0VgWrmL6j3UlRyc.roa (hash: yHocQSt6Dh1L30jflXp+Oc+mQ08tmbAfLa5FFYWt/64=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: LxO9103CmPwQK+zOpJODy6czIbLZ5Mt9Lov4Dmcvn+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:8d:60:08:33:cd:cd:9e:82:4d:ed:e5:87:50:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Feb 1 21:00:23 2025 GMT
Not After : Feb 2 21:00:23 2025 GMT
Subject: CN=fcf872050b95ab9e3ff162b6166a0fecd6d1bf38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:21:7a:fb:65:43:38:32:14:69:84:f9:d5:86:
6f:e8:3f:4f:4c:97:8d:ab:16:3a:a5:19:8c:b3:ca:
92:46:7c:fa:e1:fe:23:69:45:36:af:1d:93:d8:e7:
f7:9b:76:fd:f4:5a:60:27:92:0b:35:f5:21:8d:52:
b3:1a:0f:4b:ef:70:a8:8b:28:1a:02:61:5d:2d:7c:
54:0f:3a:a4:82:85:6e:9d:f5:a7:f1:c5:98:7b:ce:
5f:19:b9:12:ee:ab:4a:c1:13:c5:04:8d:b0:8f:3c:
66:94:55:dc:7e:20:b5:49:9e:ce:c1:12:51:4e:3e:
26:da:ba:15:80:4b:d3:39:c1:b8:24:26:64:dc:d7:
60:15:15:2d:d7:22:c2:fe:6b:b8:77:85:43:dd:2f:
87:a8:7a:58:45:69:13:11:5c:6b:bb:ff:ec:cc:c8:
75:42:4a:87:89:4f:b0:b5:17:c6:9c:ec:25:08:4e:
00:37:48:70:21:be:dd:95:55:7f:51:de:91:ad:50:
6f:db:8b:76:ee:41:58:2d:07:cc:b4:3f:61:11:c8:
61:17:5a:85:2b:e2:50:47:3d:3b:f6:26:92:5c:27:
ee:67:bf:f4:a8:7c:29:b7:ef:02:c8:33:fe:1a:8f:
83:de:59:3e:94:64:0c:3a:4f:32:70:23:3e:65:45:
70:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F8:72:05:0B:95:AB:9E:3F:F1:62:B6:16:6A:0F:EC:D6:D1:BF:38
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:51:bc:4a:59:da:bf:25:65:27:87:1d:ea:7a:a4:55:ce:49:
c7:4f:11:12:e0:07:02:a6:87:a6:22:92:8e:d2:38:20:42:bd:
30:4f:8d:4f:35:82:33:1b:6e:73:89:2d:bf:c5:67:b0:4b:d0:
39:fc:96:f0:4a:01:a8:d2:a9:38:85:67:21:77:66:9d:4b:4c:
9d:f8:60:8e:58:5a:81:86:c2:0d:b7:26:0b:90:a9:37:1a:fb:
e9:b6:d1:70:d0:19:07:2d:02:cf:4f:74:29:29:1a:2f:aa:36:
8b:5f:50:08:ec:53:c5:c8:9f:c1:04:90:9a:24:43:b7:36:e3:
80:d2:f3:58:11:3c:71:11:13:61:8c:66:b3:56:d9:05:7e:c8:
2f:dd:9d:6d:73:ae:b1:4c:e6:35:f7:8b:67:6b:71:7d:d8:0c:
c2:69:e1:bc:8b:35:e1:0d:8b:dc:c4:4c:d8:35:45:f6:c3:41:
80:7c:e3:79:ad:a4:08:84:95:ec:a9:55:4e:45:18:56:02:12:
cf:0e:9e:98:20:e9:40:06:ee:6b:75:0d:28:01:cf:7d:45:d5:
76:23:95:03:12:33:9a:95:30:03:45:5f:b9:bd:9f:63:ad:67:
24:e9:ea:53:ce:28:97:2c:74:49:12:1e:fd:94:9d:3f:e1:a7:
7f:25:a7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:11 2025 by rpki-client