Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: nAZLdMkd+7LYiM77aBC/bHbpd1pykoLmFd9K/kfWrA0=
Subject key identifier: E1:E0:34:35:9F:0C:40:2A:1C:4E:43:0D:A4:80:3D:C0:03:1E:19:97
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 01951134E63AEA835FBD1BC11403DD09D893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 12AB
Signing time: Mon 17 Feb 2025 00:00:34 +0000
Manifest this update: Mon 17 Feb 2025 00:00:34 +0000
Manifest next update: Tue 18 Feb 2025 00:00:34 +0000
Files and hashes: 1: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: 2jcuUHY7eO5dzsjfoj3VJfNg/ZBtyAehNsWlRbA6KvM=)
2: zUVgbIXYeTGVKXvGEymmIIswak0.roa (hash: byi69vgfiULR5t5etKbYt0ap14VdTPxIUc5JBAXpbBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:e6:3a:ea:83:5f:bd:1b:c1:14:03:dd:09:d8:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Feb 17 00:00:34 2025 GMT
Not After : Feb 18 00:00:34 2025 GMT
Subject: CN=e1e034359f0c402a1c4e430da4803dc0031e1997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b5:49:87:dc:1e:da:67:2b:41:74:8d:2f:66:
30:3e:02:e2:71:68:32:fb:b4:9d:69:c9:46:16:9d:
4c:d6:fa:dd:14:a6:42:16:b0:03:14:b9:4f:2b:05:
92:4f:24:cd:2e:ed:db:58:56:ed:17:1f:1f:1e:b9:
bd:fe:54:21:df:ff:49:8b:8c:a0:e3:4e:f6:dd:60:
11:21:22:ad:e6:d3:62:a5:75:15:3a:36:e3:0f:e7:
14:cf:09:f7:dc:67:49:86:ab:4c:30:03:3b:84:89:
36:16:9f:b9:99:98:5b:e7:ff:23:60:37:97:63:bc:
ab:bc:5d:57:a3:0c:31:11:ab:31:70:21:c3:b5:26:
97:0f:e4:56:e7:14:d8:c4:87:f3:f3:92:1b:78:e3:
16:4e:23:c7:ea:f1:43:7d:d3:98:ea:ab:9f:77:70:
48:b1:06:1a:12:1d:e6:4e:e8:d4:06:af:16:3b:e7:
ec:0f:1a:22:5b:08:1c:49:dc:63:f4:54:5b:3d:24:
a7:86:ec:56:cf:57:70:e3:77:42:16:1a:b6:2f:43:
0a:99:e3:c4:75:86:d7:d7:81:55:48:d7:db:bd:3d:
09:52:91:e1:bf:66:fe:5c:e3:eb:e4:db:37:d0:78:
80:87:23:1d:42:46:ad:10:e9:a4:69:3f:aa:6b:a3:
75:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E0:34:35:9F:0C:40:2A:1C:4E:43:0D:A4:80:3D:C0:03:1E:19:97
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:f9:71:c8:97:b5:f2:7b:2d:77:64:f2:1a:15:d7:9b:6e:0e:
48:07:16:eb:00:dd:ad:38:7d:36:44:25:59:dd:00:e1:0b:c9:
ca:eb:c2:c3:d3:fc:c9:d8:10:94:f2:e3:f1:e0:6d:93:c0:d5:
13:c4:fe:bf:81:c3:4d:72:57:45:69:ca:66:1f:5e:49:65:71:
40:ce:84:ae:91:10:eb:41:2f:5e:58:2a:6f:13:08:c8:d5:db:
17:a1:55:71:32:f7:67:d4:01:66:15:a2:80:e5:70:5e:1d:7d:
b8:bc:99:f4:fb:3d:63:11:f2:f6:29:ad:3d:95:12:e0:ae:2d:
2f:fc:84:20:bd:5f:dd:58:5e:fd:b0:96:ff:2b:64:3d:96:78:
8d:b1:f4:f6:47:45:01:55:b5:9c:25:41:b4:0e:d3:3a:b6:99:
17:7d:f5:b7:2c:00:48:a8:c6:11:6e:ab:f5:e8:95:eb:04:72:
ed:54:e7:5e:f6:76:d8:4a:ba:b3:c2:0e:88:a2:7b:7f:38:f5:
ed:8d:9f:e4:c1:09:14:92:24:bd:fb:eb:ef:96:cd:16:1e:08:
69:49:d3:4e:ee:4a:c8:f9:a8:4a:16:65:37:1a:3c:45:fc:9c:
78:31:54:33:cc:bf:9c:eb:d6:c1:08:c5:bf:cd:89:32:20:c0:
4b:26:47:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:08 2025 by rpki-client