Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json)
Hash identifier: duSW2q5aYSbe9GPip0JZTc16DVQSuyclFuAyeJb8fqc=
Subject key identifier: 1F:9D:AE:24:2B:F0:54:72:FE:B3:57:D9:9B:2C:F4:9C:CC:71:F4:E8
Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Certificate serial: 01950F7D4790A0F3CC06300342ABDFEFD37C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
Manifest number: 145A
Signing time: Sun 16 Feb 2025 16:00:23 +0000
Manifest this update: Sun 16 Feb 2025 16:00:23 +0000
Manifest next update: Mon 17 Feb 2025 16:00:23 +0000
Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: rxZknlKqh3/Uh9gDJZB8wE2ZkvsWF+xTEuLgYQu8iDo=)
2: 2VAk9AH_jCxBcmS3UFNJkQWmjmM.roa (hash: OTJmVbnhsENHWSTSM66puZiLKu+kw6NtZbXCQeGN/YQ=)
3: 5kzmDTi0KIXTn8Ss2d36rIX1bZA.roa (hash: VgZeJy91lZpXmzMfyFbTui1JSN8xoQwBbcwBQ01/D0A=)
4: SA8oSTczcAjgQR1zXNlc0Vgrtd0.roa (hash: fw6Ud0wGZN9ltnlpcBVHmq+wSri7RZaFK71pfthgGyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:7d:47:90:a0:f3:cc:06:30:03:42:ab:df:ef:d3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Validity
Not Before: Feb 16 16:00:23 2025 GMT
Not After : Feb 17 16:00:23 2025 GMT
Subject: CN=1f9dae242bf05472feb357d99b2cf49ccc71f4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1d:9d:15:ac:f3:76:c8:ac:43:b0:f6:7b:db:
c0:89:80:17:1c:0e:a0:95:75:08:b6:6d:3a:49:66:
5a:0d:9b:73:e8:47:fe:67:e2:b3:cb:bc:23:a1:c2:
b3:5a:f7:e2:d7:e2:7b:49:f7:ab:80:63:d3:44:5d:
6b:6a:05:fa:39:8f:d4:68:53:69:c9:66:8d:01:a8:
ba:bc:96:a2:8d:ab:a9:98:c1:12:b0:d1:d3:17:b5:
3a:ac:78:df:ca:d6:e6:b3:be:48:43:cb:71:7a:23:
5a:d6:ff:f6:8e:32:1e:6c:56:f0:09:1b:87:8f:17:
fc:d5:d2:a8:48:0f:a1:f8:5b:7d:3d:63:68:4b:73:
63:2b:f3:b9:85:e9:c0:83:60:db:c3:ee:f6:dc:12:
31:30:fc:3b:76:65:57:c7:a1:b9:bb:fd:6f:88:2d:
66:83:a9:7c:d4:78:e2:04:43:b9:1b:78:7b:89:67:
14:80:31:48:23:cf:95:e7:3e:90:5a:79:e8:2f:ee:
d8:e1:8f:5a:b1:12:4a:ae:a6:bf:6b:f3:77:13:7d:
e3:76:c3:4a:ab:5b:0e:42:c6:a9:5e:18:60:7d:29:
cf:c1:0f:97:0e:b1:04:23:26:11:56:12:e7:68:d6:
2c:e8:f9:ca:f4:18:e2:84:55:56:f5:13:1d:62:99:
33:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9D:AE:24:2B:F0:54:72:FE:B3:57:D9:9B:2C:F4:9C:CC:71:F4:E8
X509v3 Authority Key Identifier:
keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c5:cc:77:ba:fb:d9:e6:ae:c3:7a:60:cc:69:4e:7b:9c:b2:
a4:cc:3f:1a:f7:7d:01:e5:41:11:0d:f9:24:1f:fd:6c:bd:1d:
7f:e4:a3:95:38:57:dc:31:81:38:c8:20:b2:5d:25:f2:a3:d5:
5e:3c:0a:7a:f1:47:06:0a:4e:47:e9:8e:be:f6:72:4d:be:83:
a8:c4:2f:d9:f5:c6:ea:0d:fd:93:7e:cc:c6:36:b4:8d:53:c3:
45:4a:5e:a2:fa:e4:aa:53:29:27:ac:62:69:73:b8:50:c2:dc:
57:b5:c1:02:ba:8d:b1:0c:51:44:a8:0f:77:76:61:c5:14:04:
29:46:12:13:59:3a:aa:78:44:10:e6:78:2b:9e:66:91:ca:f9:
31:a8:5e:26:35:4b:54:04:f8:ee:1a:91:e6:28:87:10:2b:7e:
7b:55:4e:9b:b6:ec:46:b2:8a:8d:6c:5d:d8:43:56:f6:8c:38:
ff:86:92:e8:c0:f6:18:8c:79:b4:68:b5:ef:6e:1d:ea:ec:b8:
33:22:b8:02:b8:b5:6c:56:dd:f2:0b:10:19:9a:ba:78:6f:2b:
30:34:bd:cd:5e:30:a3:4f:a7:22:42:35:75:2c:0b:b2:07:67:
71:01:bf:74:1d:ae:9a:73:a6:15:5a:b8:13:c2:30:2c:cc:26:
47:70:02:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:34 2025 by rpki-client