Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: r+e9WJ1+arzQ1arw/HOSZCETPlqV2XgDBplqDtF6/iU=
Subject key identifier: 54:54:FD:94:42:F1:3D:F5:AC:1F:52:8E:56:DF:54:C8:AA:E0:59:D0
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 019510C7FDA7DE162E734C627754BF8FA107
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 1429
Signing time: Sun 16 Feb 2025 22:01:36 +0000
Manifest this update: Sun 16 Feb 2025 22:01:36 +0000
Manifest next update: Mon 17 Feb 2025 22:01:36 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: cTYs4ixcZgJYlyV3A86D5Y3NwjoxzPHjEwSMAT92CGs=)
2: S9IbEuckGJ-9L5NueHluP1etdYo.roa (hash: 3hI+07Eg5raje1kn4kUfDxud5d5a2unK+1/vO0g99aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:fd:a7:de:16:2e:73:4c:62:77:54:bf:8f:a1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: Feb 16 22:01:36 2025 GMT
Not After : Feb 17 22:01:36 2025 GMT
Subject: CN=5454fd9442f13df5ac1f528e56df54c8aae059d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fd:22:f1:3f:d2:a6:05:db:5b:4d:a9:48:24:
83:76:20:ad:7e:9c:9c:55:91:6a:81:54:ff:9d:59:
2e:24:6c:c0:24:da:12:f4:54:5b:02:06:91:c8:62:
8d:0d:e4:92:5d:a0:f9:63:99:ba:51:bf:02:eb:51:
40:d0:6a:16:13:c4:af:6d:87:da:30:2f:4d:35:ad:
7a:1f:96:02:f4:66:f6:da:94:24:c9:ea:48:88:44:
90:f6:93:9c:cd:74:3c:34:9c:d9:76:33:d9:09:08:
b7:8d:aa:26:8c:04:74:92:f7:08:ec:1e:83:37:6e:
4d:b9:9d:24:b9:37:f6:a6:9e:4a:e1:e1:f2:2e:9f:
dc:c9:be:9c:e3:f5:93:18:56:6c:b0:1a:ce:bc:b1:
8a:3d:e9:89:d5:62:c1:6e:d0:5d:12:1b:fe:45:b9:
5a:d4:7a:83:89:67:c2:61:b1:33:db:f0:c9:9d:cf:
d5:9d:ab:ab:ce:c9:95:c1:d5:09:0d:c4:17:c2:dd:
fd:3b:0c:08:de:28:12:dd:41:8b:34:a0:6d:1a:80:
74:7e:05:ff:77:42:db:40:74:e4:d0:c9:f0:84:ce:
b6:c2:b8:ac:cd:e3:0c:52:24:41:5b:06:61:cf:1d:
46:26:ea:3d:6a:2c:63:71:25:95:13:d1:36:9c:72:
4e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:54:FD:94:42:F1:3D:F5:AC:1F:52:8E:56:DF:54:C8:AA:E0:59:D0
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:d4:88:82:a5:31:2b:23:21:23:bc:fe:b8:fc:0e:e7:f9:5e:
b0:1a:a7:18:51:92:2c:69:9a:22:31:2b:43:c2:7f:bf:d5:03:
dc:d8:af:f9:46:24:9d:e1:0c:37:02:6a:53:cc:9a:b6:58:fc:
8d:ec:36:43:24:29:c7:ab:12:eb:28:14:99:98:d5:85:29:8e:
72:62:bb:09:ce:f7:64:01:fc:a2:02:90:a3:7b:03:50:5f:36:
c1:59:e0:44:7e:77:94:87:62:0f:93:36:3d:7f:25:77:81:1e:
d0:01:a8:eb:36:88:6b:1c:fc:39:f8:8c:94:75:44:4c:3b:72:
7e:34:4e:1c:5e:9b:33:87:26:3f:d7:d0:56:99:51:58:76:3d:
65:03:d5:2f:62:20:69:b4:05:bf:1f:9c:d9:fa:6d:7a:8c:a6:
ae:09:b3:d2:2a:34:f9:d7:c5:f9:08:e8:13:9e:9a:35:33:59:
3a:f7:79:f2:cb:71:23:e7:d0:0e:a6:d0:35:66:6e:0e:29:a9:
33:63:cd:c1:d3:f2:66:be:4f:ba:f9:28:af:9d:80:3a:8c:3a:
c7:80:03:4b:18:26:b9:c7:af:c7:f7:78:29:19:69:89:e4:70:
b2:d4:30:68:dd:e4:b8:fe:bf:95:20:bf:e6:86:78:68:a1:e9:
79:a6:34:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:46 2025 by rpki-client