Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
File: q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft (raw, json)
Hash identifier: NKexJA6CyNs9nQ4xo8adciMmUVzVOeyDeZ37wSWDeM4=
Subject key identifier: 40:A5:C3:FB:CC:5D:CC:34:9C:3C:BA:13:31:20:32:91:E1:FE:E3:0A
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 0194C42C79A23FDED8F13FC59223D90B66EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
Manifest number: 146A
Signing time: Sun 02 Feb 2025 01:00:36 +0000
Manifest this update: Sun 02 Feb 2025 01:00:36 +0000
Manifest next update: Mon 03 Feb 2025 01:00:36 +0000
Files and hashes: 1: nNVHHKEfsJfG44XdxGfL73GAMRg.roa (hash: NI/XC0iPPtIGOryqbltBIbJFjdHoTuU2EzfphzNeVjU=)
2: q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl (hash: fmJP/SYcMB5V6KTc67CI0moDc+DAgdFCV2bivltRbGI=)
3: uoQypbe_WXl9fUjjkza2xu-8nhM.roa (hash: YX+cx3IEUEYmyF+dpQ2e75vD+fBMEYY3zSfURoavVBs=)
4: ut3Ia6-mOfUCkcqND1t7uvinIqc.roa (hash: aJkTC/NqOQ2/INKdyvEr1miuxsKpaWRMdWzEAJzyDDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:79:a2:3f:de:d8:f1:3f:c5:92:23:d9:0b:66:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Feb 2 01:00:36 2025 GMT
Not After : Feb 3 01:00:36 2025 GMT
Subject: CN=40a5c3fbcc5dcc349c3cba1331203291e1fee30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4b:a8:e7:23:2a:58:94:53:de:35:04:f3:8b:
7c:b7:26:27:a4:de:10:1a:a1:87:66:1c:42:c5:fc:
a8:87:9f:10:ac:1c:0c:bf:f5:85:cb:e6:d3:60:4f:
70:7d:e1:ae:9c:8d:6f:14:73:1d:c7:c5:ab:17:a7:
14:25:d0:a0:a6:b5:0e:6b:44:71:dc:9e:e7:45:81:
3d:b6:3f:2c:6d:3c:ce:e8:71:d6:5c:a0:d7:37:87:
0a:5e:a2:b5:f2:45:cf:10:9e:e7:df:f8:0a:fd:21:
45:ab:da:6b:b0:74:d9:ea:42:dd:99:9c:e3:4b:33:
a5:3c:1f:f1:5c:dd:e0:84:e6:d9:64:b2:64:ee:3c:
0e:49:cf:d5:0b:a7:b3:33:5b:d6:ad:e2:a2:93:a6:
db:43:07:4a:99:78:67:16:05:bd:63:b4:8a:ff:70:
e5:25:82:d2:c0:01:f1:b8:96:59:f8:b2:49:23:de:
01:2a:28:fb:11:7f:5e:f0:72:51:7b:90:d9:4a:75:
9e:e5:42:b5:77:a5:45:46:9f:31:8f:7c:1c:30:c3:
46:3d:36:25:f3:82:44:7b:72:90:44:57:fd:c6:8d:
9f:a9:23:5a:76:4e:d8:d4:ec:f0:6e:ed:87:d2:65:
ab:0f:82:d5:bf:47:85:42:74:ce:ca:38:25:5c:d7:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A5:C3:FB:CC:5D:CC:34:9C:3C:BA:13:31:20:32:91:E1:FE:E3:0A
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:43:50:d0:df:b4:66:08:ca:1d:6b:2c:ec:75:ff:e9:fb:2b:
c7:7d:bf:fa:83:a2:7b:e3:2c:63:f0:7d:a9:57:7e:fd:92:f6:
f0:3b:9b:0b:b8:38:3c:06:6f:ee:cf:a0:d8:57:3b:32:a5:f9:
ed:9b:84:47:a2:a6:bd:09:95:bf:b4:88:66:e9:82:4c:e1:db:
08:6f:b9:f0:20:dc:7f:98:42:86:99:0d:89:c6:e6:fd:cc:7e:
19:96:cf:d0:74:14:64:c7:5c:de:9b:fe:76:60:8e:1b:0e:a8:
63:c3:2c:73:c3:c4:05:47:1d:09:38:d0:95:40:4f:81:ab:8d:
71:c6:59:bc:fb:6c:0d:c9:84:31:9c:a9:97:37:2e:2b:0b:52:
72:6a:45:03:3c:67:a6:61:36:3d:b4:02:73:79:e2:ee:03:65:
33:13:89:80:ad:34:db:61:d0:fe:af:f0:ff:09:87:9c:3c:c3:
c0:58:9d:7a:f6:10:ba:aa:82:71:26:ce:67:8d:df:ab:a8:be:
0b:00:7e:aa:fd:1f:5e:b3:b0:a8:04:0f:36:f5:8f:97:79:26:
8f:87:66:81:7c:15:18:89:41:02:1b:3b:90:8a:7d:28:e9:9e:
0b:e7:4d:41:5c:5c:2c:e1:a0:26:07:83:23:33:88:36:8c:2a:
60:69:45:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:01:32 2025 by rpki-client