Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
File: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft (raw, json)
Hash identifier: vLOSb6RsWV1F8gGteWnqsAKgUMjQZ4Fs6ic0OUd1MUw=
Subject key identifier: 01:A9:ED:17:1F:E5:47:4E:0E:7C:CA:D7:8C:50:87:AA:53:D6:B5:36
Authority key identifier: FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
Certificate issuer: /CN=fde72d43f4c82b1146737b116197231830bf65d6
Certificate serial: 0194C387A048DBB7F48C3810FA82DA921136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
Manifest number: 142D
Signing time: Sat 01 Feb 2025 22:00:33 +0000
Manifest this update: Sat 01 Feb 2025 22:00:33 +0000
Manifest next update: Sun 02 Feb 2025 22:00:33 +0000
Files and hashes: 1: NEbsKu77gYfpibY3_TC8dQH80XA.roa (hash: aeVQJbng3C7RHWncwne+AehQ3FDANQdssqp/Bjc9vag=)
2: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl (hash: EeFXwR902gRK/buragYa7REGSC6fpHJ9i6Iz79Kwp7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:a0:48:db:b7:f4:8c:38:10:fa:82:da:92:11:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde72d43f4c82b1146737b116197231830bf65d6
Validity
Not Before: Feb 1 22:00:33 2025 GMT
Not After : Feb 2 22:00:33 2025 GMT
Subject: CN=01a9ed171fe5474e0e7ccad78c5087aa53d6b536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:34:a8:27:19:9f:f0:f7:49:27:a1:6a:5d:d3:
34:0c:09:aa:2f:fd:20:f7:36:7a:26:99:a3:0a:c4:
80:26:a5:f3:ad:94:3d:b7:19:f6:10:36:fd:76:dd:
d3:30:fd:b1:69:e5:57:c5:a4:e7:20:8e:71:01:ee:
33:69:e8:a4:d4:06:c3:fc:c8:40:02:0d:16:d2:22:
e5:04:ca:11:65:9b:c1:ef:23:8b:e6:78:c9:9c:b9:
c0:a3:ca:83:0c:07:96:fc:49:b4:a7:ea:15:bb:cd:
b6:1f:10:f7:6a:32:01:12:fa:63:22:61:36:f3:7a:
e2:6d:11:92:52:a8:0e:e6:c9:0e:43:e8:36:66:e5:
f6:55:0b:83:02:e1:06:1f:48:89:eb:df:18:df:5f:
1d:24:1b:13:c1:22:61:fe:0d:41:9e:c6:94:cf:07:
1b:a2:e0:ab:24:30:c5:99:6a:c3:fd:44:fb:64:38:
38:2b:1c:c2:33:8f:9c:5c:cc:30:13:a8:38:d1:97:
07:19:7f:ce:4b:42:51:72:32:d7:b0:e2:2a:99:99:
f4:15:5a:e2:d8:a3:15:d0:a2:e1:5b:ae:a6:b3:dd:
69:a5:1c:a9:6c:5e:30:a7:c3:be:69:cd:59:41:8c:
29:9e:26:78:d3:a1:89:8d:e0:05:33:f5:b6:87:8b:
ac:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A9:ED:17:1F:E5:47:4E:0E:7C:CA:D7:8C:50:87:AA:53:D6:B5:36
X509v3 Authority Key Identifier:
keyid:FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4d:76:90:f6:21:5f:a7:72:02:31:fc:48:7f:6b:e0:0e:d4:
10:6b:f2:8a:b3:06:25:51:8b:da:8d:a4:c2:67:46:a0:e8:aa:
51:bd:02:28:5c:f4:b8:c3:5a:25:55:26:48:7b:a9:65:a5:a3:
96:2e:f7:42:a8:c9:b9:0b:51:d2:d5:43:fd:6b:2e:6a:99:e2:
97:25:9a:fc:79:af:70:0a:1c:6f:c6:eb:6b:0b:98:3f:94:f6:
20:6c:61:1f:f6:25:4a:3d:8d:28:c3:bd:96:b0:ab:d4:8a:bc:
d1:5d:63:f0:a5:a4:c4:35:57:d9:7c:5e:c7:4a:34:67:16:0a:
53:84:b1:83:df:f7:7b:a8:1b:63:6e:b9:96:0b:ac:f4:bf:1f:
aa:94:e3:84:b6:cb:ae:3c:3f:98:e0:42:ab:bb:e4:e7:59:75:
cf:ee:ec:3a:6b:70:fa:25:d3:3b:71:a8:f1:4e:16:6c:3c:76:
f9:d1:09:f0:17:df:fc:ad:77:3a:3b:f0:f9:52:6b:54:57:97:
ac:35:75:0d:d3:70:20:e5:9b:96:71:d6:e1:8a:d2:9b:8b:d0:
dc:9c:c7:2b:69:02:7c:b3:61:b1:a7:07:72:b8:8d:54:63:df:
19:88:9b:26:a9:3f:6f:2e:30:b9:56:03:4c:e0:b8:6b:13:68:
3e:7f:28:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:05:10 2025 by rpki-client