Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: 6yN5Nszu8divtZFAA94dNwelHqhEp3Xs8CkOwY/+bKc=
Subject key identifier: 1D:0C:BC:CF:BE:86:97:C9:21:CF:2F:47:A2:21:8F:30:30:A6:31:08
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 0195108FE42D79E376DE7E5665DD20AD2B70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 145A
Signing time: Sun 16 Feb 2025 21:00:20 +0000
Manifest this update: Sun 16 Feb 2025 21:00:20 +0000
Manifest next update: Mon 17 Feb 2025 21:00:20 +0000
Files and hashes: 1: NApugC31V5WK63Ny4-racw1twJY.roa (hash: bVtlfHYisvNWIzitGovNgNsC2+/TaBl7fpGIvEq6gaQ=)
2: OI4m2d90B9xfmwLaDwu0RLIhyHI.roa (hash: 1tPpSMdOXEc4uC4QEVA58ahEFZcfSMXztb+GTkRhAk8=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: L/23X6yY763f+KVVJiPOWIihVdrt3/VdoiesbL5gOBY=)
4: i4v6AZ8AjCY-DaijxXBLxpCWr-o.roa (hash: IzqUiUJUiq+h6Lhm9373nMFr5yy8oOrsxUoRI4smlK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:e4:2d:79:e3:76:de:7e:56:65:dd:20:ad:2b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Feb 16 21:00:20 2025 GMT
Not After : Feb 17 21:00:20 2025 GMT
Subject: CN=1d0cbccfbe8697c921cf2f47a2218f3030a63108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:27:89:21:12:8c:26:ac:ed:ba:f0:a9:a4:bf:
f5:17:1f:33:b7:90:37:92:6f:3b:9f:b2:57:78:5a:
2c:8a:a5:9e:88:bf:51:0a:dd:1c:e3:49:dd:b1:ab:
6c:dd:1a:0a:3c:34:59:fd:5e:b1:c6:d9:14:dd:3c:
62:e5:09:b9:b8:0d:72:91:1d:e4:24:32:e7:72:6c:
1c:6a:80:5e:23:bf:7f:8b:4a:f4:a1:99:69:74:9f:
08:35:d8:2c:6a:51:b6:c2:08:22:97:a3:43:80:9a:
c8:fe:a4:21:25:41:db:9e:d4:a6:3e:10:eb:4e:f4:
23:59:1f:12:0b:44:3e:37:ca:aa:ec:83:de:3a:f6:
82:ec:97:57:e5:6f:c3:7e:6f:e2:34:52:6c:65:25:
58:d0:c6:af:da:73:65:1a:1e:ed:b1:21:fd:6c:5f:
0f:a8:ff:0b:4e:c3:07:dc:9d:3f:2e:a3:59:12:6b:
38:47:eb:0f:4d:0f:7f:a7:f0:8a:03:66:5e:98:28:
cc:91:e9:4e:0e:dc:13:4f:eb:ba:c3:b6:65:9c:77:
1c:d5:ea:93:15:87:cd:99:6c:4a:4c:be:46:b3:4a:
54:6e:8b:01:c3:5f:cf:20:29:1a:b8:46:67:c3:fc:
bd:94:07:51:06:ac:2a:6c:d9:57:d6:0b:e3:a9:60:
13:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0C:BC:CF:BE:86:97:C9:21:CF:2F:47:A2:21:8F:30:30:A6:31:08
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:ca:f7:a0:bd:cd:de:a0:8b:32:05:7b:71:bd:9e:1e:04:19:
af:b0:36:e1:6f:40:2c:41:64:83:7d:81:b9:12:5e:9b:a6:ff:
5e:cf:4a:e7:ad:a9:f2:b6:9c:b5:fe:2f:ae:6d:03:22:3c:3a:
e2:c7:be:eb:73:86:e8:21:28:52:5b:42:fc:58:a6:f9:f7:99:
bf:64:e9:43:b7:f7:0c:8e:bc:dc:66:9f:fe:bd:ce:bf:6d:0b:
88:93:a9:da:1b:bf:59:4a:5a:97:29:9b:9e:00:94:c7:6d:ee:
c9:a9:77:74:b3:5e:8f:97:46:a8:61:9e:f4:b3:bb:c7:19:6f:
14:16:29:d3:af:95:32:cd:ab:e7:3c:c8:a5:6a:fa:44:b4:19:
ae:72:db:01:aa:55:31:83:6f:bb:31:37:d4:19:18:96:00:0a:
16:64:e6:62:58:35:a7:4d:e2:e3:16:ac:d4:13:12:a7:3a:42:
06:1f:c8:59:75:aa:5b:78:ea:ab:99:31:ba:65:bb:e7:14:94:
3b:84:8e:a6:0f:50:24:2c:83:56:bb:11:04:c0:09:82:51:b3:
99:cc:ad:4e:ef:a5:af:61:e1:72:60:d9:0c:5a:64:d9:a3:ed:
81:12:33:35:15:ee:06:6e:89:9c:fe:30:25:41:e4:6d:42:ad:
ad:20:62:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:13 2025 by rpki-client