Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
File: ug4SZOB7Nwi8udtaFOfMknCGOVg.mft (raw, json)
Hash identifier: GhYuNgdd6fLtDPmE2g0f+kv2EGYHYEhMgcsXSZw2C/Q=
Subject key identifier: 90:3C:D8:05:3F:73:7B:34:B4:A9:83:98:B2:42:B7:BD:DE:F4:F1:74
Authority key identifier: BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
Certificate issuer: /CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Certificate serial: 01951134C1049235E8AA9D9015F67D6B7545
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
Manifest number: 145D
Signing time: Mon 17 Feb 2025 00:00:24 +0000
Manifest this update: Mon 17 Feb 2025 00:00:24 +0000
Manifest next update: Tue 18 Feb 2025 00:00:24 +0000
Files and hashes: 1: ug4SZOB7Nwi8udtaFOfMknCGOVg.crl (hash: lF8O/YYH/94E5c7w4RHoxGflTOM29elyabHMuRDkzD4=)
2: xXvm8v3Fqzu_dszdmjsgqNl1Hcw.roa (hash: Nh/ftcdTWsREAPkqBZbyfany4F8e1nXpYHmf8szSz/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:c1:04:92:35:e8:aa:9d:90:15:f6:7d:6b:75:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Validity
Not Before: Feb 17 00:00:24 2025 GMT
Not After : Feb 18 00:00:24 2025 GMT
Subject: CN=903cd8053f737b34b4a98398b242b7bddef4f174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b1:0f:80:9e:ca:dd:14:6d:04:d2:e0:8e:f1:
7b:e7:56:94:94:ec:0a:61:42:fe:72:f9:14:3f:cb:
40:45:7d:95:b9:e6:e0:4e:e8:f6:1f:c2:9a:58:5c:
96:9a:ca:be:0a:87:73:ac:17:02:09:f0:db:cd:a0:
20:2b:92:bc:cc:a4:f4:00:85:c3:73:9d:26:d8:09:
c7:9d:b8:48:7b:e4:37:a9:fc:0a:c6:2f:13:ae:9e:
cd:35:b9:37:9d:4d:77:30:b4:89:65:fc:6e:20:1a:
3a:46:a2:f0:00:b5:12:69:83:a0:c9:bd:43:4b:45:
9b:8c:ff:4a:3b:87:db:f1:ca:51:b4:a5:47:36:35:
52:2c:4f:30:83:5b:d5:97:42:5e:34:7e:5b:87:74:
3c:bc:5b:6a:f8:ee:4a:87:d7:92:0d:cb:a0:62:84:
99:f6:ec:7a:8a:a5:52:db:84:89:5e:3e:b0:78:dd:
8d:57:eb:2f:04:de:3a:8a:8b:21:79:07:72:a8:7f:
92:a7:e1:e7:85:3d:8d:cd:f4:fe:dd:0d:c8:92:6d:
73:69:5d:f1:60:35:a1:fe:eb:ff:66:fa:0a:68:d8:
d2:8d:f2:f9:45:c8:15:e1:51:5d:74:4a:ef:9d:84:
a3:12:9f:e4:57:75:d9:84:c7:88:20:ee:1e:7c:42:
8e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3C:D8:05:3F:73:7B:34:B4:A9:83:98:B2:42:B7:BD:DE:F4:F1:74
X509v3 Authority Key Identifier:
keyid:BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:66:21:9b:29:ee:08:a6:f3:4c:eb:74:2f:55:28:ab:b5:84:
4b:1c:93:69:43:ff:a2:13:d8:ef:9d:44:ee:42:30:71:1a:c1:
95:05:08:8e:5d:a7:2f:01:a1:70:41:57:68:71:96:5b:bc:80:
c4:f0:b5:a7:17:d7:60:72:e5:a7:5e:c2:28:e6:14:9a:b6:0d:
2b:1a:b1:3f:7a:8b:37:14:f9:ab:0c:65:17:8f:e3:72:4a:c5:
66:35:e3:b5:eb:bd:48:b7:4e:36:c3:54:d3:06:f9:6f:45:83:
2f:d0:2c:21:20:bd:a5:bf:fa:ba:a2:d0:a1:b3:1b:9c:c2:83:
5a:88:0d:8a:c9:e3:05:72:e7:8c:0b:44:9d:60:3e:fa:7c:fd:
d2:6f:59:8e:66:81:65:87:51:f2:0c:03:79:7f:2e:ac:1f:b0:
c9:14:11:5e:17:a8:05:3e:5d:ce:78:0f:85:4c:74:9c:c2:10:
ef:62:27:83:40:61:fc:a9:d3:72:27:64:97:19:3d:a8:89:4b:
30:30:2f:32:26:4b:30:9e:5e:45:58:3e:f5:e9:03:d2:08:f5:
40:a7:d6:ab:ae:32:7d:38:9e:1d:83:a9:97:1f:00:73:6c:e7:
41:e8:71:64:fa:f6:96:6f:e2:cb:b7:32:16:fe:a4:e0:71:75:
d3:84:62:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:23 2025 by rpki-client