Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
File: my2tSBy6VIO6qw16DM3BregyrRY.mft (raw, json)
Hash identifier: KW9tYk/88BA5tZW14+nf/xI+9JLP3tn7WlRGwGwFp/M=
Subject key identifier: A7:C5:8F:80:7D:10:6C:CE:FA:2F:47:05:B1:42:73:D6:43:AB:81:0B
Authority key identifier: 9B:2D:AD:48:1C:BA:54:83:BA:AB:0D:7A:0C:CD:C1:AD:E8:32:AD:16
Certificate issuer: /CN=9b2dad481cba5483baab0d7a0ccdc1ade832ad16
Certificate serial: 0194C3BE6F5883399E532137CC3761BDBC4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
Manifest number: 05C9
Signing time: Sat 01 Feb 2025 23:00:24 +0000
Manifest this update: Sat 01 Feb 2025 23:00:24 +0000
Manifest next update: Sun 02 Feb 2025 23:00:24 +0000
Files and hashes: 1: iUGe5ciIVDZ_vtvHcYAi2dKEvOs.roa (hash: GD3GHNZKL4fdpgdi7l7xwFI/fIJOKFQjsdvcNA8UW4E=)
2: my2tSBy6VIO6qw16DM3BregyrRY.crl (hash: ZNdE78/Ab7tDsrlOhFpiq63JhEgMBzn+P33UldNVIZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:6f:58:83:39:9e:53:21:37:cc:37:61:bd:bc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b2dad481cba5483baab0d7a0ccdc1ade832ad16
Validity
Not Before: Feb 1 23:00:24 2025 GMT
Not After : Feb 2 23:00:24 2025 GMT
Subject: CN=a7c58f807d106ccefa2f4705b14273d643ab810b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:dd:ad:f9:05:1d:ef:cb:98:5f:d3:8b:e0:07:
76:a3:ed:52:40:b6:27:1c:cb:10:b5:e4:92:ba:bc:
9a:44:a7:47:4e:1b:f9:8a:e0:a4:93:b8:53:19:21:
cf:b2:72:b4:cd:b2:84:cc:90:4f:33:a9:31:62:cb:
11:e6:c2:3e:ba:af:2b:2a:72:b6:1d:a3:7a:d0:1d:
e3:82:05:9d:c6:9c:25:db:a5:17:6e:45:5d:4d:ae:
ed:24:fd:86:a3:24:ea:a4:c7:8b:99:ee:ad:19:07:
18:69:61:dd:8c:a2:e7:00:73:ab:de:6a:9a:3d:05:
89:96:2a:1a:5b:b8:7e:cb:bb:a6:50:e6:d6:bd:9b:
b3:20:bc:41:fa:fb:14:ed:78:4a:43:cd:28:ec:da:
e7:f2:0c:8f:46:77:98:10:0e:90:fc:1d:87:24:d1:
51:ee:75:87:c8:51:95:42:8e:41:fa:a9:d3:d8:07:
5a:40:e0:52:1e:5c:c3:7e:2c:5c:36:a1:f3:25:e7:
91:4e:fb:91:4a:b0:5f:b3:13:f4:1f:42:41:d6:22:
fb:e7:14:b7:de:dc:81:9e:04:7f:7f:6c:5b:fb:b5:
3d:a6:b7:88:e8:7c:a3:ce:dc:03:d0:f8:a8:b1:55:
b1:d7:7c:a6:b0:95:1b:73:a0:87:4e:be:c3:7b:7a:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C5:8F:80:7D:10:6C:CE:FA:2F:47:05:B1:42:73:D6:43:AB:81:0B
X509v3 Authority Key Identifier:
keyid:9B:2D:AD:48:1C:BA:54:83:BA:AB:0D:7A:0C:CD:C1:AD:E8:32:AD:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f4:85:86:76:3d:50:11:86:51:76:78:70:18:07:2d:3f:91:
97:22:20:02:ac:75:f7:38:f0:47:ed:39:17:df:9e:7a:c7:05:
26:2a:63:86:e8:20:bc:82:74:31:8a:19:b4:a7:41:73:3b:30:
c2:0b:a1:da:9f:4f:4a:45:21:6c:0d:9f:f6:72:36:74:fc:55:
e5:bf:ce:61:6b:d2:dc:25:60:d9:b3:22:3b:61:99:26:c3:20:
35:19:6f:87:d2:f4:b6:ed:52:d3:27:95:c8:71:45:dc:4a:17:
58:fb:67:71:a3:47:fd:70:13:87:8b:db:94:8c:dc:7d:fa:ef:
1e:af:20:36:01:6d:cb:2b:70:b1:74:77:f7:3b:cd:75:fb:ed:
da:ab:b5:22:34:44:df:01:7d:74:b4:4f:4d:9e:38:25:ce:ed:
d4:78:88:49:33:d4:47:73:0d:11:34:7d:86:c0:94:bc:60:eb:
f2:e4:81:b0:fe:81:7c:7f:9a:f9:05:85:20:66:2f:81:07:f4:
3d:6e:50:34:a1:86:60:87:0c:be:23:c9:bc:af:68:07:f4:5d:
72:e8:68:80:bd:da:40:b5:a5:15:5a:5a:b5:87:68:32:76:aa:
a6:0c:aa:b4:5e:ce:09:01:4c:3c:ee:10:4b:2d:11:f0:71:1a:
05:59:c8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:51:56 2025 by rpki-client