Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
File: 4ygMY1Kgv7t50knIh17RhuzOioY.mft (raw, json)
Hash identifier: VuAWhY9F/KkE/tDw7Bj/XuoW/TOFvSKQmTv9RhlwwIM=
Subject key identifier: 32:1E:49:54:59:7F:C3:11:BD:4D:14:4F:74:AD:32:22:BD:D0:C4:12
Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Certificate serial: 01951210DD8AF3F255C0E9336B2EFB3C86E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
Manifest number: 145D
Signing time: Mon 17 Feb 2025 04:00:49 +0000
Manifest this update: Mon 17 Feb 2025 04:00:49 +0000
Manifest next update: Tue 18 Feb 2025 04:00:49 +0000
Files and hashes: 1: 4ygMY1Kgv7t50knIh17RhuzOioY.crl (hash: n2ZnYnDJE3VwPNyNTLv45njLdaNXkH0PwTMocYPcYbY=)
2: LKQwgiepoVu5_u8taIAcRutuJ-s.roa (hash: g/2UuKpKO1KSqMbVUrFxetjbdTbJKbXQ9uje0qgEhYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:dd:8a:f3:f2:55:c0:e9:33:6b:2e:fb:3c:86:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Validity
Not Before: Feb 17 04:00:49 2025 GMT
Not After : Feb 18 04:00:49 2025 GMT
Subject: CN=321e4954597fc311bd4d144f74ad3222bdd0c412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d0:53:1b:c0:4f:92:59:a8:b9:82:9d:81:31:
dc:e3:83:7e:d7:31:d0:5e:00:6f:3b:97:e7:95:d7:
ce:de:25:fe:f2:14:1c:1e:d0:59:35:10:e8:6c:05:
b1:d8:55:88:9a:c7:e2:e7:a0:56:94:a1:f2:6a:75:
a4:2e:3c:56:38:2b:7a:05:25:da:0e:b4:be:08:1e:
7c:fb:ee:28:1b:be:6e:4b:05:4c:1f:60:c7:ea:4f:
c9:60:51:9b:b5:8b:93:fb:1f:9f:86:0b:4a:dd:85:
3b:8a:52:4f:cb:54:d3:cf:e1:62:ee:ce:a9:86:8c:
78:47:e7:47:d0:21:f2:39:ea:25:67:41:43:c5:2f:
b1:7f:e0:04:ff:c1:e7:b5:e2:c6:5e:ad:1b:6c:15:
38:c0:c6:6a:63:bd:88:78:d4:a8:31:3f:30:5f:6c:
9f:09:57:dc:32:ff:7a:be:6c:e5:36:02:6f:04:54:
24:b4:7c:62:e5:a5:6e:ba:2b:cc:fa:05:b4:a0:e6:
03:a2:18:61:ae:c4:c0:de:01:d1:9f:5b:92:7f:64:
35:f2:b1:34:1c:74:d2:71:90:8b:6c:7b:c0:c9:3e:
d1:ff:54:d1:db:25:f9:bd:8d:5d:61:6e:c9:9a:b3:
83:bd:f5:74:b1:12:8d:27:af:3b:86:10:a8:40:36:
97:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1E:49:54:59:7F:C3:11:BD:4D:14:4F:74:AD:32:22:BD:D0:C4:12
X509v3 Authority Key Identifier:
keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f2:8c:79:45:c0:4c:e8:41:87:88:c3:69:cc:b9:02:b6:9e:
3a:38:ac:b6:13:a5:8f:b2:9b:96:b5:db:27:5b:22:62:61:6d:
f5:6d:e5:ab:71:9e:13:30:34:ac:9d:03:d8:59:c1:0e:46:3d:
ef:30:d5:9e:43:2e:9e:2f:a4:b7:fe:5b:a0:69:23:04:4c:c0:
c2:04:47:f2:0a:61:73:a3:36:27:9c:ec:5c:d1:cf:74:c8:72:
44:99:45:50:d6:0c:6c:77:db:6c:64:3b:a9:0b:f9:d0:f5:46:
4d:7a:c8:ca:89:6c:68:8e:8d:b2:18:6d:6f:a6:dd:d3:53:b0:
92:e6:94:0f:b7:bc:4d:bc:75:28:e8:2c:47:74:7b:01:3a:02:
82:e5:a4:8a:13:0c:f4:c8:2a:86:39:5d:a7:c1:f3:1c:a1:94:
29:5c:c7:54:2b:15:68:fd:75:ae:ab:ac:d6:2c:32:0e:99:e1:
4c:47:e5:59:b7:df:47:ea:40:45:c1:84:42:f9:2d:4d:ba:ab:
b2:94:79:26:35:91:9b:f1:e4:bc:e2:48:17:9b:26:97:d2:6b:
8a:36:13:62:37:68:50:c8:60:b0:e0:4f:a0:ae:f3:4d:e2:d9:
76:47:b0:ed:d9:d7:dc:5c:49:b3:0f:7f:2e:92:d1:ca:3c:c2:
cb:5a:41:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:43 2025 by rpki-client