Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
File: dahWeFOS2ifQC9snCRxZJsMVXYk.mft (raw, json)
Hash identifier: 45Tah5qBE0q+ooNzKIVNW1oRV5RCND8TcsT1lWsK/K0=
Subject key identifier: AE:35:B0:FD:56:8B:45:B8:9D:44:32:5B:42:82:75:7C:5E:BD:1B:46
Authority key identifier: 75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
Certificate issuer: /CN=75a856785392da27d00bdb27091c5926c3155d89
Certificate serial: 0195108FBAC24DB5A3A133555718F3C8DBA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
Manifest number: 0C89
Signing time: Sun 16 Feb 2025 21:00:09 +0000
Manifest this update: Sun 16 Feb 2025 21:00:09 +0000
Manifest next update: Mon 17 Feb 2025 21:00:09 +0000
Files and hashes: 1: 4Ibv1mRm3BSugEZRLZ50GEzm6Bc.roa (hash: Ox7Eku50X67DCQ6L0nXfJGgK/iPhql76+0sQGSQq9Q4=)
2: dahWeFOS2ifQC9snCRxZJsMVXYk.crl (hash: oPGKdqiyWFeD+c8FPkNZD25P4v/dHk9O6Jn6Jzh7dX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:ba:c2:4d:b5:a3:a1:33:55:57:18:f3:c8:db:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a856785392da27d00bdb27091c5926c3155d89
Validity
Not Before: Feb 16 21:00:09 2025 GMT
Not After : Feb 17 21:00:09 2025 GMT
Subject: CN=ae35b0fd568b45b89d44325b4282757c5ebd1b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:be:b0:42:c2:21:ad:95:3a:d6:05:65:93:8e:
8d:a6:2f:b5:02:d1:3d:30:a3:9e:f6:ba:80:f6:f1:
d4:24:d7:a0:da:bf:c8:9f:07:ec:20:93:ab:90:65:
ef:c6:41:64:d6:45:8f:d0:f0:12:8e:43:21:d1:a6:
40:6f:55:c2:38:db:90:ab:75:b7:4e:63:1e:7d:83:
94:f1:e9:8b:67:eb:39:ca:5e:58:f0:95:a9:0d:1b:
5a:97:b6:21:8a:28:e8:ea:2a:11:06:12:61:fc:6f:
69:42:e6:dd:ee:37:76:48:77:ad:68:56:39:71:0d:
68:0c:4b:5a:56:eb:8d:ca:63:32:85:8b:2f:4f:9b:
73:66:5a:bd:88:57:40:a2:d2:50:e9:3f:fe:3e:85:
5f:0b:91:0f:dd:5a:2c:78:07:69:52:2f:a4:2f:83:
5f:59:80:bc:76:8d:6c:35:25:92:80:53:1c:a0:a8:
89:e6:6f:0f:fa:24:6f:f7:eb:fa:fd:29:fc:2d:04:
59:e9:b4:4c:36:1f:36:55:6f:91:58:90:3a:29:7c:
a0:db:5a:4e:b5:49:95:b7:95:72:22:1c:7c:36:14:
9d:14:04:af:94:d9:b6:25:e0:60:e1:ba:c2:b1:18:
31:a9:f1:ce:0d:d0:a0:0c:ff:98:e7:a5:66:fe:62:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:35:B0:FD:56:8B:45:B8:9D:44:32:5B:42:82:75:7C:5E:BD:1B:46
X509v3 Authority Key Identifier:
keyid:75:A8:56:78:53:92:DA:27:D0:0B:DB:27:09:1C:59:26:C3:15:5D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dahWeFOS2ifQC9snCRxZJsMVXYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec0da9-ea8c-4b8e-a32a-a5bc0c70c513/1/dahWeFOS2ifQC9snCRxZJsMVXYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:af:b5:8e:54:3d:66:4b:7f:e6:0d:77:f1:a5:d2:62:af:50:
46:12:b8:00:0e:34:36:fd:43:12:1c:08:be:41:fd:35:d5:ca:
74:3d:d7:9f:c4:c9:24:fc:4b:70:b4:fb:95:40:47:44:3e:09:
8b:7f:d9:a2:5d:1f:97:df:ac:35:59:0b:d6:9a:40:b0:7c:68:
89:23:6d:47:c7:77:7c:fb:62:a0:ae:e7:90:1e:4e:9b:0d:3c:
e3:60:7a:b5:de:dd:7e:99:67:5d:17:5b:18:f9:a3:c4:3c:1b:
62:01:3d:d6:74:fc:10:42:9e:c2:2d:a4:8f:80:04:de:5e:ad:
8f:aa:b5:45:32:07:5b:ae:72:36:6a:d8:3f:68:4c:72:c0:a0:
3f:b5:ac:68:f3:9b:3e:5b:0a:5e:e0:42:96:84:69:79:b5:7e:
c9:53:1e:6a:0f:2e:23:a9:82:2b:6c:b4:35:ec:f6:06:4b:cd:
cc:a2:ab:de:58:0c:ea:fd:c3:4e:e4:bb:36:a1:14:de:ec:e2:
57:da:52:13:6a:3f:82:e1:e5:2a:0f:1f:1c:25:10:32:47:a6:
f3:9e:e3:83:69:df:77:3f:21:2d:f4:dc:82:f5:2b:66:19:79:
33:c8:34:7a:99:75:08:27:40:ce:f5:e1:ce:a0:18:5c:97:76:
2f:2d:16:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:46 2025 by rpki-client