Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: TzLdiS+dVk4vkRjUhwtv7RIsF49omUtFp+7RSpazdo4=
Subject key identifier: 64:DD:F4:32:AB:2B:87:47:C0:9A:02:BD:5B:6C:7A:F9:FE:CD:25:10
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019510C7DE00AD2CEFED8C26118F7C24A034
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1456
Signing time: Sun 16 Feb 2025 22:01:28 +0000
Manifest this update: Sun 16 Feb 2025 22:01:28 +0000
Manifest next update: Mon 17 Feb 2025 22:01:28 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: Uq50QrNfcKuKrFRrvqYrcrdTaYit4QcN/1jqeoLpnIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:de:00:ad:2c:ef:ed:8c:26:11:8f:7c:24:a0:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Feb 16 22:01:28 2025 GMT
Not After : Feb 17 22:01:28 2025 GMT
Subject: CN=64ddf432ab2b8747c09a02bd5b6c7af9fecd2510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:a9:80:62:da:2d:b3:29:2a:08:29:e4:21:
39:f5:a9:20:60:f3:59:cc:ab:f9:c3:2b:b9:61:a0:
9b:df:29:e6:c3:5b:5c:e0:31:7f:9e:ba:3e:db:9d:
bf:ab:22:0b:91:4b:d1:75:d5:2c:52:fd:1b:9a:b4:
25:16:93:79:d4:1e:b9:a5:cf:e0:dc:90:85:4a:0d:
ea:cc:98:c7:e8:dd:55:86:0b:e1:5f:b2:9f:b0:e2:
c1:bb:e8:9a:f9:9d:06:69:01:d6:51:eb:3b:db:ad:
b3:02:66:25:c9:bc:f3:85:18:11:23:75:f1:36:c7:
19:03:c7:a6:a5:e1:63:44:79:f8:7b:2d:7c:ac:e3:
34:29:e3:53:7e:57:6d:3c:d1:df:7d:26:ca:bb:b9:
1e:4e:97:d1:10:ac:b7:20:8b:c8:98:a0:39:09:50:
95:ee:7e:ba:60:1a:60:80:8a:14:5b:5f:d5:be:eb:
f0:44:e6:66:65:5b:6c:04:f2:fe:ca:49:39:7e:b1:
68:4f:12:f0:0f:c4:95:d7:fa:6c:b7:a0:55:e2:a3:
69:f5:e9:bf:26:e8:10:7c:af:68:7b:5a:23:22:94:
6a:c2:db:ec:8e:cd:d4:29:b3:dd:7d:90:3b:94:3e:
4d:6c:d6:e0:59:52:10:1d:eb:0f:29:3c:91:13:41:
7a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DD:F4:32:AB:2B:87:47:C0:9A:02:BD:5B:6C:7A:F9:FE:CD:25:10
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:10:99:1d:37:5a:b4:18:d9:93:4e:36:0e:5b:e4:4a:7d:c5:
55:dd:68:9e:4d:18:30:d3:15:9b:32:ad:bd:07:86:d7:65:2a:
2b:08:e8:f3:fc:f0:ac:59:e8:51:a8:46:ea:f5:6c:64:8b:c8:
41:04:a0:4b:d8:f9:18:4d:1e:89:cc:e1:ba:27:d6:6e:64:7a:
02:78:76:0d:33:b0:75:5b:53:70:84:77:c3:7c:b4:08:a1:c1:
b5:c2:4b:2a:a8:04:e0:8b:92:3a:82:b8:d1:05:00:67:43:10:
59:e2:a6:66:c0:5a:2a:1f:78:ba:02:1c:96:3d:1e:0e:ef:8f:
90:0a:8d:14:6e:41:8d:53:05:e9:bf:d6:d7:55:12:9d:fa:39:
59:fd:9b:be:ee:89:ac:bb:50:a2:22:9c:cf:be:17:c0:10:67:
87:6e:42:7a:ef:77:a2:21:fe:77:6c:4a:50:e2:b6:b5:10:9b:
bf:54:6e:56:2f:a0:f5:64:31:d1:48:f7:08:b7:71:64:16:7b:
2d:71:e7:c0:af:f0:4e:ff:7a:52:b7:53:e3:1f:74:25:31:3e:
54:d3:78:b0:14:d9:44:19:2d:3c:62:21:52:71:0f:2a:0f:78:
94:b7:48:cd:b4:54:75:56:b7:04:83:fd:d8:d2:5a:52:43:c6:
e7:33:0b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:38 2025 by rpki-client