Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
File: XbWMRb7iUfx1daY-W0kN7GEU5so.mft (raw, json)
Hash identifier: JdMkPB3P4jNaYAh6fVxInBiWpKB2NZ2iziMi0jF8Lik=
Subject key identifier: D7:51:8C:77:26:BC:DE:D7:DD:BC:AF:73:67:8D:26:A3:37:E8:4E:9E
Authority key identifier: 5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA
Certificate issuer: /CN=5db58c45bee251fc7575a63e5b490dec6114e6ca
Certificate serial: 0194C507F65E499217DCB082B0E45B33FDD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
Manifest number: 11DA
Signing time: Sun 02 Feb 2025 05:00:20 +0000
Manifest this update: Sun 02 Feb 2025 05:00:20 +0000
Manifest next update: Mon 03 Feb 2025 05:00:20 +0000
Files and hashes: 1: XbWMRb7iUfx1daY-W0kN7GEU5so.crl (hash: 1piEa0Y5avlqVr2jViwRNjSjobdm2Rmz1Olf4K1SbL0=)
2: rIHO9BGM8FbqBMmG5rRph997QKc.roa (hash: 8yht5PsqRnylMZKjON2/XT2bc+vyA/zY0feaEVSh3nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:07:f6:5e:49:92:17:dc:b0:82:b0:e4:5b:33:fd:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db58c45bee251fc7575a63e5b490dec6114e6ca
Validity
Not Before: Feb 2 05:00:20 2025 GMT
Not After : Feb 3 05:00:20 2025 GMT
Subject: CN=d7518c7726bcded7ddbcaf73678d26a337e84e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:3a:3a:1c:50:33:7a:86:bf:27:3f:0f:4a:
8e:23:4d:a5:12:e8:8f:35:01:4a:24:80:10:40:3e:
1a:95:21:3b:3d:45:48:da:5a:6c:5c:ca:a0:1c:38:
27:4b:2f:16:61:39:5d:06:28:f2:0c:9c:ec:e8:61:
a8:22:51:61:e5:db:b8:e0:23:07:72:62:23:27:61:
24:f9:a5:65:93:51:11:74:e1:5a:9a:7d:7d:a5:94:
f5:e6:6e:1f:23:4d:d1:81:9b:02:7b:f6:97:7d:67:
9e:bf:ee:4a:f1:3b:ed:32:70:e6:8a:fb:ac:01:03:
83:1b:4d:60:89:75:62:f1:3a:51:49:09:d0:f6:d7:
39:f3:58:e0:f1:88:eb:d2:6b:3f:95:53:62:10:41:
76:0a:3d:1a:43:c6:76:5c:dd:f0:a4:bd:a1:61:d6:
b6:2a:34:41:6c:ee:57:db:03:3a:02:58:54:3c:22:
e8:91:5d:7b:5a:81:af:f5:f7:dc:3c:63:77:c9:72:
a2:ea:c5:c4:0f:b1:92:a9:12:75:a2:e8:4b:dc:e9:
b2:65:2c:1e:de:ab:9c:1a:a5:3e:fc:da:e4:5f:ae:
3b:93:f4:7b:ff:e1:ed:d2:37:de:54:74:d3:3f:b9:
09:68:43:a8:30:c6:64:80:c2:a5:f0:79:1e:56:3a:
2a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:51:8C:77:26:BC:DE:D7:DD:BC:AF:73:67:8D:26:A3:37:E8:4E:9E
X509v3 Authority Key Identifier:
keyid:5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:0e:c9:43:cb:5b:45:ab:26:ef:64:ff:b3:a0:78:72:85:01:
3a:52:b3:83:83:36:af:6e:58:5c:51:3e:3d:63:78:08:6d:fd:
08:d7:ca:77:fb:9e:ed:72:6b:17:fa:3b:44:c5:82:e7:94:ac:
06:a1:47:05:51:61:b4:5e:53:2e:4c:82:4a:d7:02:35:db:ab:
27:87:fd:6d:f5:89:f1:f0:84:a4:72:c8:a1:6e:e4:58:3a:9f:
4d:8f:82:da:72:69:c1:ed:f2:54:cc:3a:c7:80:58:98:70:88:
92:84:2c:e7:3b:9f:1c:c3:d5:20:31:e1:03:7f:ae:3c:87:84:
f5:83:35:02:31:09:83:d7:27:7c:e2:b9:54:bf:6e:f6:3f:08:
6c:26:fb:ec:6a:6a:63:61:48:9b:6d:af:75:ce:e9:6e:7f:5d:
b9:19:b5:97:d4:70:dc:12:ca:58:62:4f:0a:f0:dd:51:18:c7:
6f:10:6c:7a:c4:2c:66:57:6e:ce:6a:61:a6:81:c7:b9:6e:5d:
f9:7d:61:fc:26:c0:fa:18:0e:6b:c4:11:b6:8c:70:c6:90:f2:
56:83:99:b9:d8:4b:4c:ad:8d:3d:bf:11:0b:e2:7a:33:46:07:
a3:93:a5:ef:c0:93:a3:8a:0d:fa:af:71:82:13:24:d8:12:cb:
8d:c9:d8:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:13 2025 by rpki-client