Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
File: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft (raw, json)
Hash identifier: tvDXTr6XtBqloJL6zFOGqZMaFm5VfSLRhnHCuwbNBeA=
Subject key identifier: 80:A5:78:96:C0:F7:A2:1E:EC:54:9A:EC:B4:D9:1C:EE:F5:E3:AF:72
Authority key identifier: 4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
Certificate issuer: /CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Certificate serial: 019510FE136FF651E01E5ED43BE2D7E32890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
Manifest number: 12A3
Signing time: Sun 16 Feb 2025 23:00:41 +0000
Manifest this update: Sun 16 Feb 2025 23:00:41 +0000
Manifest next update: Mon 17 Feb 2025 23:00:41 +0000
Files and hashes: 1: 4HxC1YnWdGWm4g8pwWn_Hlow4Qo.roa (hash: qpMp8mE7oIuGxE7UiKhcFCXTbJmQfeSevFyEhmL5FpM=)
2: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl (hash: Xfxpdc2kwjzFZ8cZhVYa2yj1hAhPDHzGQtfwgOX6KhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:13:6f:f6:51:e0:1e:5e:d4:3b:e2:d7:e3:28:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Validity
Not Before: Feb 16 23:00:41 2025 GMT
Not After : Feb 17 23:00:41 2025 GMT
Subject: CN=80a57896c0f7a21eec549aecb4d91ceef5e3af72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d4:ac:aa:17:4a:77:b4:1f:ca:38:7b:07:11:
65:26:70:42:00:56:b6:a9:75:ee:c7:3a:4d:e3:33:
3d:48:e6:29:d5:55:96:73:fe:af:96:e1:5f:0a:c7:
79:c9:c2:04:2b:40:a3:e6:a1:11:cf:df:49:5c:df:
72:0c:44:c7:ae:67:b4:99:ec:8d:cc:6f:23:50:52:
87:bb:7a:1e:f6:2b:30:14:b8:ba:75:37:14:cf:7e:
83:82:b6:f4:b1:96:8d:a8:14:6e:df:90:48:5a:a0:
2f:e2:1f:e4:05:cf:12:5d:d5:07:59:46:1c:34:1d:
3c:93:12:a7:ab:bf:a1:c9:76:b5:45:06:b4:78:25:
25:6e:e1:88:dd:3f:0c:cc:96:98:89:1c:05:1b:b6:
e7:1a:13:8c:4a:4a:b4:c9:27:24:bc:aa:5b:67:59:
c8:b8:b3:f5:7d:68:29:ab:5b:6e:47:0f:2a:b9:6c:
d4:e7:a7:24:f7:e7:b8:26:11:e4:9d:ca:eb:67:19:
92:a1:5c:cd:35:8e:da:92:76:55:bc:7b:75:c1:f4:
a1:77:5c:1f:00:41:2f:ec:2d:4c:b6:44:5c:ea:86:
22:0d:0a:87:a1:f0:cb:57:3b:81:9b:a0:97:71:b4:
de:5e:7d:c1:63:85:41:b0:91:3e:5e:0c:9e:a0:57:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A5:78:96:C0:F7:A2:1E:EC:54:9A:EC:B4:D9:1C:EE:F5:E3:AF:72
X509v3 Authority Key Identifier:
keyid:4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:d6:fb:5d:94:1d:1f:c1:6c:ec:c0:16:38:97:7d:59:40:6c:
66:13:c8:96:63:f6:52:69:7b:08:67:a4:82:21:75:68:77:b8:
ae:10:cc:93:57:de:8c:fa:88:2f:7e:10:82:21:c3:c3:cf:82:
b5:f1:58:cb:e3:0e:ad:19:66:7a:d3:bd:33:9c:13:9b:95:f4:
4d:6f:53:cb:66:31:6e:60:2f:52:51:a5:8e:9c:71:82:29:8a:
31:e0:66:31:f4:02:e5:b0:a7:46:f0:14:cb:28:d3:a5:04:f2:
01:22:92:1e:d5:1b:fa:2f:08:d0:db:ab:ce:b9:3b:f5:2e:32:
9a:8c:61:8b:02:c2:43:d2:69:a1:21:e3:01:fe:8c:94:94:53:
f3:f4:c8:83:ee:91:77:ca:3d:6d:aa:26:e5:c4:b1:39:ad:78:
9a:b9:d4:d3:b3:49:c6:55:c8:ee:6c:bc:e3:51:8b:3b:7f:6b:
e1:5a:47:fe:6e:58:f6:77:ed:96:1a:13:e6:b3:cb:3d:2b:5a:
7d:00:53:fb:cb:ab:46:4b:e0:01:2a:45:45:4b:2b:6e:67:e6:
ee:57:5e:e0:31:b9:e6:61:a6:31:f1:6c:b8:23:b9:d6:ea:2f:
a6:2f:c0:2f:2d:fe:35:2c:a2:11:b4:c7:c4:e7:51:49:cd:bb:
b5:8a:f7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:40 2025 by rpki-client