Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
File: Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft (raw, json)
Hash identifier: EDerXfHO+/3A98P2TvOdE8l2Sjatrw2y4bVUW+pd2fs=
Subject key identifier: DC:7D:A3:6B:AD:4D:04:59:80:E1:A9:1C:EC:26:AE:07:34:70:C9:F8
Authority key identifier: 02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
Certificate issuer: /CN=022d580f4a069358f8fa57ef065e18f5fe936980
Certificate serial: 01950FEAEA53CACC02D77353FF9825255191
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
Manifest number: 087F
Signing time: Sun 16 Feb 2025 18:00:08 +0000
Manifest this update: Sun 16 Feb 2025 18:00:08 +0000
Manifest next update: Mon 17 Feb 2025 18:00:08 +0000
Files and hashes: 1: 7vPaeyI0ln68dhOnAOFd-xv37nM.roa (hash: ZgJ32R2xiY7rG7KLNZLVMbbgQ70wWnVYAoeDmfccZx4=)
2: Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl (hash: KXTzW+C1C4IZ8Pz0S1QI6jG6y0FGM7U5Drouhq5Ghe8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:ea:ea:53:ca:cc:02:d7:73:53:ff:98:25:25:51:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=022d580f4a069358f8fa57ef065e18f5fe936980
Validity
Not Before: Feb 16 18:00:08 2025 GMT
Not After : Feb 17 18:00:08 2025 GMT
Subject: CN=dc7da36bad4d045980e1a91cec26ae073470c9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:10:61:9e:74:9e:16:62:80:5e:c8:65:5c:6c:
25:9d:4c:9f:2e:a5:e0:dd:4f:97:28:68:9a:a2:a5:
86:6b:e3:b2:71:8b:0f:10:93:f1:3f:25:e0:2f:65:
cf:6c:ec:3f:58:f0:14:ce:d2:dd:00:66:09:f6:09:
f5:c5:a3:df:d2:34:e8:8c:c8:33:8f:06:d6:50:86:
c2:15:94:0c:2f:5c:bf:f3:46:c7:90:e7:a6:ae:62:
88:3f:64:fe:6f:02:ce:a8:5d:71:1d:1c:5e:ba:13:
58:34:74:4d:17:98:df:df:02:57:83:6f:8a:00:d9:
d2:8e:42:81:d3:7f:95:cd:0f:82:71:6f:1a:f5:30:
85:75:9a:b2:68:81:ff:62:4f:5e:83:71:34:55:e2:
e3:9e:de:03:2e:d6:dc:e3:66:a7:0a:c9:54:0d:95:
d5:00:85:ad:a4:05:6f:74:dc:18:11:e9:fb:86:95:
e7:91:45:a8:15:9a:cd:aa:2b:71:17:5e:24:d2:14:
70:20:d4:ba:e4:02:ad:03:9c:52:cb:86:41:fb:7c:
a1:22:25:67:b5:0e:f4:09:75:af:78:03:04:9c:2a:
c8:a3:d3:f6:b7:40:78:3c:dc:7c:aa:14:d5:db:db:
1e:d4:89:4e:ef:20:45:aa:c3:d5:94:13:55:e4:9c:
df:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:7D:A3:6B:AD:4D:04:59:80:E1:A9:1C:EC:26:AE:07:34:70:C9:F8
X509v3 Authority Key Identifier:
keyid:02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:0e:be:55:be:8f:12:5c:9e:a5:04:7c:16:9f:29:c2:0b:44:
2b:87:76:7b:5d:f7:7b:5a:9a:ac:f8:0b:9f:6d:71:86:e3:85:
2b:6a:9d:ab:f5:33:b7:d8:6a:43:7b:5d:10:a1:10:e4:00:7e:
dd:18:8f:16:cf:55:69:6a:2d:9b:f0:8e:22:51:8d:a2:77:03:
47:c3:13:4e:30:38:0f:a2:9b:93:09:74:c8:a6:7c:e1:b6:2f:
66:b4:82:83:d4:f7:d4:45:01:96:c1:7a:14:09:b4:62:71:9b:
34:0b:57:4b:45:e7:b6:a3:22:ee:8a:64:23:1e:ec:90:7e:da:
3b:fd:03:f8:13:b0:c3:7b:85:74:7e:cb:19:14:00:49:32:cf:
4c:58:c3:cd:5d:e3:23:28:1f:db:5d:69:33:05:fe:45:58:1e:
fc:1d:74:84:ae:57:32:79:e7:ab:d1:8e:8d:b6:66:5a:ed:02:
68:21:28:75:40:6d:19:2a:71:f0:92:67:ef:74:27:59:09:de:
9e:20:52:0f:34:cd:9f:12:76:8f:82:32:dd:d5:74:4f:06:26:
e4:ec:db:c3:b0:86:bd:ce:55:07:4c:b3:2d:0d:0e:74:a3:eb:
40:93:73:e5:61:ce:59:81:bd:e0:10:14:bb:eb:be:69:ed:6c:
0c:bb:52:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:30:16 2025 by rpki-client