Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
File: dahWeFOS2ifQC9snCRxZJsMVXYk.mft (raw, json)
Hash identifier: 8bIYED+YaurB18CpzYQxNq9SGcUgt3/Iz4aii1gxcjk=
Subject key identifier: F1:91:4F:C4:B6:55:F8:7D:C2:A1:D2:A2:81:44:C2:41:90:CD:18:E2
Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89
Certificate serial: 01958C2906EBE95E0DBAD46BC019A3D55D14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
Manifest number: 0CC9
Signing time: Wed 12 Mar 2025 21:00:53 +0000
Manifest this update: Wed 12 Mar 2025 21:00:53 +0000
Manifest next update: Thu 13 Mar 2025 21:00:53 +0000
Files and hashes: 1: 4Ibv1mRm3BSugEZRLZ50GEzm6Bc.roa (hash: Ox7Eku50X67DCQ6L0nXfJGgK/iPhql76+0sQGSQq9Q4=)
2: dahWeFOS2ifQC9snCRxZJsMVXYk.crl (hash: CxQax4FLkgQ82524+YOrFr+lR8ILCHgoL1sKiGf/S0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:06:eb:e9:5e:0d:ba:d4:6b:c0:19:a3:d5:5d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89
Validity
Not Before: Mar 12 21:00:53 2025 GMT
Not After : Mar 13 21:00:53 2025 GMT
Subject: CN=f1914fc4b655f87dc2a1d2a28144c24190cd18e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a8:e7:b7:6c:be:95:35:24:9b:04:24:ec:1b:
98:8c:5f:bf:8f:95:26:33:d9:8b:1c:f5:f9:9c:d5:
4f:4c:11:32:b4:82:2f:4f:09:b6:4d:4d:45:e7:52:
9d:32:8b:5c:d0:04:bb:0e:2b:6d:d3:fb:f6:79:bf:
6b:0e:11:16:58:d2:b6:ad:2c:70:59:55:a7:3f:11:
44:0e:d8:22:26:37:aa:f6:49:3c:8b:82:e8:8b:f5:
fa:e7:b0:25:31:83:3e:65:49:26:b5:22:29:1f:50:
59:d4:90:b1:0b:e1:91:99:0e:1e:d4:d0:38:3f:8f:
51:73:fc:bc:d8:dd:9a:25:b3:4f:44:c6:68:5f:63:
4f:d6:49:56:2a:aa:e0:f4:a7:c3:54:ed:06:da:3d:
62:ea:a7:de:05:2d:83:11:dd:45:46:ab:a2:62:3e:
c2:93:5c:35:30:38:55:24:15:a3:66:b8:56:9f:1c:
95:21:bf:f1:c6:46:5e:35:1f:1a:f2:3c:db:0d:03:
3d:cb:f9:01:94:cf:96:bc:ed:7d:1e:42:6b:04:e5:
e0:59:b0:f4:4f:c0:d2:b0:78:d5:7d:92:08:29:77:
57:52:76:b9:1f:6d:13:fc:ba:01:f2:a1:03:b6:c6:
3e:22:cb:7e:46:0c:c4:45:61:43:7c:19:4a:9d:5e:
d1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:91:4F:C4:B6:55:F8:7D:C2:A1:D2:A2:81:44:C2:41:90:CD:18:E2
X509v3 Authority Key Identifier:
keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e5:ed:49:35:7c:88:82:41:b9:e1:08:2b:d3:3f:2f:ec:9f:
db:af:50:d3:02:e8:36:c9:41:33:3d:46:b4:00:0f:a1:76:f5:
8c:35:ca:ce:f4:41:c9:71:c0:57:58:a0:97:7e:23:08:d4:c1:
9c:9b:fa:d5:84:1f:c6:4c:5d:bb:bf:44:f5:e0:de:a2:6c:9d:
c9:88:55:12:8d:dd:e5:a6:c9:54:0c:e0:c3:94:f9:eb:01:2b:
f3:6f:12:62:4c:09:9a:ef:d0:1e:62:78:8a:c4:2c:ee:c0:a5:
01:38:78:49:1a:84:2a:47:4b:2d:3b:74:c6:a2:1f:7a:d7:d9:
02:1b:6c:78:14:47:11:38:2f:3b:e9:48:8f:51:f6:2a:91:42:
e2:c4:df:ab:3d:c9:17:2d:91:81:09:7c:17:fb:24:74:7e:a6:
44:39:a9:fd:b7:c6:d6:d9:ef:fd:e9:51:f7:fb:43:7b:d6:e8:
f6:e6:c7:ad:64:7a:7f:7f:fa:ba:42:6d:96:be:98:21:09:ee:
e0:26:44:c4:c0:eb:03:e2:3a:63:a8:35:19:21:ba:17:72:f9:
0b:22:dc:94:f7:6d:bd:33:ff:36:dd:2b:39:97:47:95:7e:b2:
c3:62:a5:4a:ef:2c:4b:f7:b2:3d:9a:4d:8c:f7:45:48:bc:1d:
60:10:dd:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:55 2025 by rpki-client