Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
File: POsgUJhzLLkIgjBF79XXQCUMayc.mft (raw, json)
Hash identifier: T/8gBIs440R2Jl8c0hlnYMTE/E46Te/dWuJxoG3QH5Y=
Subject key identifier: 4F:18:BC:93:0E:E2:EF:4B:34:68:65:9B:BB:44:9B:4D:1F:3E:05:58
Authority key identifier: 3C:EB:20:50:98:73:2C:B9:08:82:30:45:EF:D5:D7:40:25:0C:6B:27
Certificate issuer: /CN=3ceb205098732cb908823045efd5d740250c6b27
Certificate serial: 0195797DF0662E4E17E3BF48C35294B33795
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
Manifest number: 148C
Signing time: Sun 09 Mar 2025 06:00:51 +0000
Manifest this update: Sun 09 Mar 2025 06:00:51 +0000
Manifest next update: Mon 10 Mar 2025 06:00:51 +0000
Files and hashes: 1: POsgUJhzLLkIgjBF79XXQCUMayc.crl (hash: WmMq8UvHlVUMuuPhAwmVHqqjV4IACKXk7+Ks0Gqh3eY=)
2: glhaGjYvz9mGirczYGxMS81rRfI.roa (hash: cPBvD492Ea2g7PNrZgsOnSXH4CPshMieJYjaq9P+dD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:7d:f0:66:2e:4e:17:e3:bf:48:c3:52:94:b3:37:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ceb205098732cb908823045efd5d740250c6b27
Validity
Not Before: Mar 9 06:00:51 2025 GMT
Not After : Mar 10 06:00:51 2025 GMT
Subject: CN=4f18bc930ee2ef4b3468659bbb449b4d1f3e0558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f9:6c:72:ec:d1:e5:f6:7a:fb:b0:48:52:21:
70:72:7f:74:09:be:4c:f1:3b:c0:08:b9:6c:20:75:
0c:51:30:9f:40:1c:36:6d:43:3d:f7:97:57:54:79:
c2:78:eb:e5:25:4d:9d:48:a6:e5:e2:82:c0:21:67:
97:44:c4:cd:ef:4e:b6:b9:ce:16:6f:89:bc:10:59:
02:8b:3a:5e:7f:4f:de:2a:f8:17:8e:b3:93:15:1b:
ea:ad:e5:85:13:27:fc:a2:cb:6d:cf:94:1f:39:b0:
6b:37:1b:37:63:4a:eb:6f:33:d0:fc:cd:2e:5b:78:
3e:b0:0b:e0:6b:d1:00:56:08:49:b3:de:b4:97:13:
82:ce:5a:fa:10:34:80:9d:58:a2:38:3b:f3:21:ac:
e5:eb:ea:ca:23:49:c6:03:38:6f:12:c2:cd:0b:5d:
5f:a0:60:e5:e7:4a:1e:a7:e3:e2:6c:14:be:a2:e3:
60:3b:f9:1b:eb:5d:eb:97:ed:e2:3a:76:c5:6f:76:
c0:df:2f:47:5c:7f:41:7a:54:cb:da:86:f5:7c:6d:
dd:2f:81:10:b5:ca:e2:85:b0:4e:20:9b:4f:a3:29:
75:35:e8:35:8c:c7:a8:86:46:da:d6:d5:25:6f:40:
38:06:41:42:08:90:46:65:78:81:79:ce:0d:dc:e9:
82:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:18:BC:93:0E:E2:EF:4B:34:68:65:9B:BB:44:9B:4D:1F:3E:05:58
X509v3 Authority Key Identifier:
keyid:3C:EB:20:50:98:73:2C:B9:08:82:30:45:EF:D5:D7:40:25:0C:6B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ac:71:17:36:df:7a:f2:f6:f1:6c:3f:c7:59:75:bf:d4:c3:
ec:d9:2d:a7:83:a1:33:e0:5a:1c:c2:95:6a:91:f2:a9:cf:dc:
dc:47:6b:fa:09:24:ea:56:65:6f:57:52:41:03:45:d1:58:f8:
8a:67:1a:f2:27:93:5f:6e:bc:f5:12:a0:c3:95:33:3f:42:d8:
8f:fe:01:cf:16:7b:b2:fa:8c:41:16:dd:3a:a2:e9:d1:31:43:
b6:fd:21:28:c4:f2:0c:4e:84:0f:e0:1c:cb:21:88:2d:fc:94:
af:7c:e3:b6:44:b3:dc:1e:da:7c:d2:79:88:f0:bc:72:3f:40:
cd:8c:ac:76:0b:c2:d2:fb:25:e9:49:f4:e6:ad:0e:ea:63:73:
55:6f:0b:6d:9d:a2:69:b8:84:db:05:ef:6b:3b:b6:42:62:65:
a7:95:5e:0f:6e:0d:29:8c:78:1a:92:27:10:08:10:d6:4f:2f:
19:5c:8f:84:5b:43:99:ba:74:a2:55:2a:4b:31:9b:6e:69:5f:
61:38:45:76:9d:0e:a6:4d:bf:8e:45:3a:fb:9a:62:ba:da:4d:
a2:97:60:32:a0:b2:20:d1:7e:9a:f5:86:df:a0:c0:4b:6d:c7:
29:f8:46:20:4b:bb:a0:6d:a5:b7:b9:94:18:17:a7:2b:f2:86:
86:8b:eb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 07:16:53 2025 by rpki-client