Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier: IM+k2FwvirEYYLUkkI3t1rVEkU76xFozht3CIPYxU0U=
Subject key identifier: E7:50:06:A2:EB:9E:4F:30:67:5E:5E:A5:04:C5:D4:C7:0A:07:E1:9E
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 019510C6A629BA49DE8DC40DFF1AEF43122B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number: 1456
Signing time: Sun 16 Feb 2025 22:00:08 +0000
Manifest this update: Sun 16 Feb 2025 22:00:08 +0000
Manifest next update: Mon 17 Feb 2025 22:00:08 +0000
Files and hashes: 1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: DCwpUiD9lfLJCPvNo0Mifgn+A3aHeEsxSQkJ3yNYU4E=)
2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:a6:29:ba:49:de:8d:c4:0d:ff:1a:ef:43:12:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: Feb 16 22:00:08 2025 GMT
Not After : Feb 17 22:00:08 2025 GMT
Subject: CN=e75006a2eb9e4f30675e5ea504c5d4c70a07e19e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:00:db:0d:f9:53:34:73:34:ba:d5:9d:2f:99:
9c:33:1e:3c:ca:72:93:47:80:16:37:68:cc:ca:84:
f1:3e:f0:56:34:e7:1a:92:6b:5f:5b:a1:66:8b:96:
f5:92:4b:b8:77:bd:37:7e:68:4d:c2:f1:86:a0:a1:
a5:2a:66:66:ed:65:4a:4c:8e:14:09:d7:c0:3b:10:
e2:23:a2:68:7a:e3:1a:3c:f1:e7:cd:4c:a3:9a:7a:
c7:f7:7b:e3:b9:f1:33:eb:50:81:91:e5:96:fd:62:
75:19:ed:02:29:51:8e:00:b1:df:d6:d3:7c:6d:a1:
c6:92:62:c8:bd:26:eb:4d:06:bb:94:69:07:81:30:
9a:fc:75:9e:a4:85:37:5b:41:f2:c5:5d:f1:ea:b2:
3f:36:45:93:50:6a:68:fc:27:d2:0b:8b:ba:9e:49:
33:94:49:09:1b:ae:b7:87:c6:73:bd:0a:41:8f:4d:
91:45:49:dc:0a:2e:ab:c6:a4:bd:ea:a7:70:b1:c4:
49:94:fe:1d:b9:ff:fa:14:b4:04:db:64:ac:f0:99:
24:c4:93:36:dc:d6:11:69:82:5c:41:34:49:46:c7:
d0:0f:a4:53:cd:74:03:65:89:3b:63:f6:93:04:4b:
7c:cc:85:4a:2d:c7:cf:34:5b:a9:10:d2:05:02:8c:
e7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:50:06:A2:EB:9E:4F:30:67:5E:5E:A5:04:C5:D4:C7:0A:07:E1:9E
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:79:ab:0b:c8:bb:b0:9b:65:81:c7:de:89:1f:61:74:76:2f:
d4:71:4e:b6:7e:57:50:a8:f5:8f:76:df:e1:5d:ad:06:42:e9:
23:ac:9f:dd:a5:64:0b:a8:c3:3b:3c:50:6a:71:95:42:c3:8f:
47:aa:61:04:3e:1f:06:ad:94:82:f8:cc:b9:dc:c6:8f:6a:ef:
20:05:f2:51:c3:f4:8a:71:c3:78:6f:74:83:fc:84:7d:5d:18:
de:66:c8:90:87:bd:66:63:62:5c:7d:be:4e:c1:20:7b:d5:b1:
38:76:74:62:d7:2d:39:27:64:ae:d6:fd:3d:e4:d9:07:78:dc:
d1:11:34:7b:00:47:46:17:0d:93:0f:fa:30:20:90:43:a2:4c:
a6:ee:c9:f1:7b:94:63:59:bd:f5:d4:2f:1f:25:19:c2:09:2f:
5a:1e:2b:ca:1e:67:2d:5e:04:91:89:ce:17:1c:3e:e3:a7:3c:
8f:a7:b3:59:2a:71:ec:96:b0:1f:91:96:07:7b:07:aa:c7:e4:
77:45:84:b5:da:17:0c:8d:40:95:2f:30:d2:02:21:db:e9:02:
7c:ff:39:11:0e:82:7a:bc:22:0c:6e:55:a3:a5:02:f3:ac:ed:
90:0e:93:8a:f4:33:45:8e:9c:31:85:dc:e7:4d:2d:9b:50:79:
15:f8:5f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:43 2025 by rpki-client