Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: R1mWVux8yitiASlPtOiN2MOwamx/CTC8iwuiOKCWEt0=
Subject key identifier: E9:E8:93:59:63:F0:F8:D9:73:19:0A:AC:7B:0D:6A:2A:63:7F:58:65
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 019511A2E8997E5557050D6B3A8F81CA229A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 0BD3
Signing time: Mon 17 Feb 2025 02:00:43 +0000
Manifest this update: Mon 17 Feb 2025 02:00:43 +0000
Manifest next update: Tue 18 Feb 2025 02:00:43 +0000
Files and hashes: 1: 1-EeSCCOFCUoz0VplGP1Lo0h-9As.roa (hash: ZLnUsrTQcRzljBuufN+eacOU/oxAjJXf2wRzESRepgg=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: wfbeBrPv2sLK5OwTxBiBELVIaogOuhyFKuVj+xZhWKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:e8:99:7e:55:57:05:0d:6b:3a:8f:81:ca:22:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Feb 17 02:00:43 2025 GMT
Not After : Feb 18 02:00:43 2025 GMT
Subject: CN=e9e8935963f0f8d973190aac7b0d6a2a637f5865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6d:8e:fd:69:2c:0c:b4:71:d7:55:45:c0:aa:
94:c7:d9:78:62:78:a2:a4:20:a4:a2:86:5c:23:bf:
01:37:9b:46:d1:5c:40:5c:e5:37:65:4c:0b:48:20:
61:c5:4f:cf:aa:4b:8d:82:cf:95:92:d1:85:b8:f4:
61:88:76:03:3e:11:6c:aa:eb:4c:83:69:c3:d9:a1:
c6:1e:f0:fc:3c:45:24:a8:cd:ce:bd:70:4c:cf:1a:
2a:7d:61:ce:8d:e9:86:23:be:c7:b9:05:2f:2e:94:
ff:af:5a:0e:8a:c3:e7:87:e7:89:c5:c5:6b:bf:08:
05:55:47:c0:18:24:e1:79:6a:62:f2:b3:2e:f2:07:
63:51:0a:54:47:5b:cd:6b:58:15:80:19:44:60:5b:
f4:47:07:f0:be:7b:84:90:58:c5:12:23:0f:9b:91:
ed:09:a9:2b:2c:0f:36:91:fc:16:70:76:05:5a:1b:
3d:21:63:14:9e:2a:d3:cb:aa:1f:43:07:88:35:95:
0f:08:5b:cb:b3:cf:cb:29:f3:78:d8:4b:d4:26:53:
b6:03:9f:6a:c5:57:d4:91:b6:7b:e0:2b:74:93:ef:
52:7d:d6:29:d9:67:4b:7e:9f:ad:9a:bc:c3:86:1d:
9a:0a:62:a6:47:de:84:bd:b0:fb:1e:c8:09:2e:8e:
81:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E8:93:59:63:F0:F8:D9:73:19:0A:AC:7B:0D:6A:2A:63:7F:58:65
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:1c:47:60:89:bc:c3:39:33:ea:6c:d6:9d:47:ba:2a:02:ae:
4f:59:b5:5b:21:04:ac:fb:34:7f:ca:ec:0a:bd:bb:65:e7:dc:
9c:c7:4b:e1:0b:25:1c:06:08:74:ef:42:f0:df:fa:0c:99:52:
d3:72:1e:18:f2:b4:d6:a1:5a:f9:44:17:37:fb:80:33:6c:b0:
dd:23:2d:1d:82:69:68:8d:85:b3:c4:d7:44:ae:0f:b9:f6:a3:
c5:eb:29:64:31:34:9a:0c:eb:d1:95:2a:e0:02:0a:de:0e:c7:
86:65:3c:ee:28:ba:d7:36:23:94:a2:52:bb:1a:c0:b1:bc:63:
6f:32:9a:f5:22:60:00:94:aa:a9:8e:2b:05:90:b5:b0:47:4a:
b2:5e:ea:70:86:aa:c4:c7:6e:b0:16:a2:9b:09:6c:f7:c9:9a:
4a:41:54:40:05:c9:56:f1:48:f1:e4:2e:4b:a4:88:32:a0:d1:
25:58:1c:b7:e7:3f:5b:19:a1:c1:22:77:da:87:65:67:fc:6f:
f9:72:d9:3c:e2:a2:09:ab:02:62:dd:e1:ea:c9:98:ee:a4:b0:
e2:fe:98:af:19:12:24:af:32:0d:8c:70:9b:c3:17:56:2a:ca:
76:d2:7f:19:0b:09:7b:c0:9f:c1:1e:36:7b:bf:2d:a1:88:3d:
3d:04:ed:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:12 2025 by rpki-client