Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: g+jshYC4Avtnw7f2fTBclyWRbKfOk8dPunT7X2bfvbA=
Subject key identifier: 90:DF:D7:3F:8D:A9:B9:62:F8:C1:5C:A2:B2:68:DF:15:1E:46:EC:C8
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 0194C38828FE9635828DDB1341292605BA6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 142F
Signing time: Sat 01 Feb 2025 22:01:07 +0000
Manifest this update: Sat 01 Feb 2025 22:01:07 +0000
Manifest next update: Sun 02 Feb 2025 22:01:07 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: haGPu5QJAWw/F3wf59NyZ8IGJjY6xGW8cY8SJyBIOl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:28:fe:96:35:82:8d:db:13:41:29:26:05:ba:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Feb 1 22:01:07 2025 GMT
Not After : Feb 2 22:01:07 2025 GMT
Subject: CN=90dfd73f8da9b962f8c15ca2b268df151e46ecc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cd:a6:f8:a4:9e:66:1f:f6:4b:cf:57:3e:61:
b8:1e:41:d0:a2:4d:a1:c1:4a:61:2c:0e:9b:c0:6e:
21:1e:1a:49:43:c9:2e:84:a8:75:77:7e:5c:12:54:
b4:e2:8a:05:b9:bd:1a:76:52:2f:52:2b:d3:a5:ca:
06:30:7f:62:28:78:b7:af:80:c3:85:d3:d3:00:c5:
e4:62:ae:9f:85:60:30:db:7f:a3:27:5f:bb:9c:cb:
21:a6:f6:55:dd:fb:93:a6:2a:8c:a9:5d:af:21:d1:
90:9b:13:c6:b4:ea:10:7b:9c:f2:19:8d:16:94:90:
51:b1:68:ec:37:6a:49:15:d4:f6:d3:22:be:94:fc:
45:26:fd:5d:c1:53:e7:8c:40:aa:7e:7a:39:aa:d9:
09:e2:e9:16:22:49:b4:c9:57:9d:a6:31:7f:37:e2:
ca:67:be:fd:a6:2c:0e:e6:8a:15:75:a2:01:b3:28:
41:c9:29:c5:b1:c2:b1:ec:23:42:7c:76:f4:7c:93:
d7:d1:a7:d1:38:d3:86:ee:b3:14:fc:f1:f5:5e:78:
17:0a:20:65:d5:49:1e:36:83:61:c7:f8:d4:a8:f1:
f3:e7:92:fd:d3:20:c5:ef:1c:ce:fd:3d:c8:5f:21:
69:0f:14:d4:d8:06:8f:02:0b:2f:a8:20:13:f5:00:
0d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DF:D7:3F:8D:A9:B9:62:F8:C1:5C:A2:B2:68:DF:15:1E:46:EC:C8
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:7a:08:d8:41:46:3e:07:41:39:6f:4e:69:bf:84:e8:71:ab:
47:46:5c:b4:01:83:c9:d3:c1:01:bd:08:53:b6:9f:1f:b5:af:
96:eb:70:ec:d2:1f:dd:5e:2c:e3:3e:72:99:cd:a1:b7:f4:a3:
c9:04:b7:9a:4a:17:26:78:8b:f0:db:ff:cd:6a:7f:f7:2a:49:
da:86:d7:53:9a:eb:db:6b:b6:db:fe:92:0a:f5:ed:7f:7d:34:
79:c2:db:c6:6f:c4:5f:33:2a:66:5f:ea:4b:a5:4b:81:cc:70:
f9:87:62:c2:77:e1:0e:19:b6:b0:48:70:b7:83:b0:52:70:cb:
c5:10:0d:2b:5b:4c:60:bf:72:47:2b:00:d1:7e:44:ae:01:27:
4b:d1:9d:96:be:a1:0c:77:fb:99:61:51:bd:55:3a:62:15:47:
c2:ee:51:9f:69:ca:81:82:a9:5d:97:01:17:aa:8c:15:e3:54:
3d:f9:14:a0:e8:13:9f:b9:d7:b9:20:f1:48:b4:e4:d2:53:03:
45:68:e4:d0:ba:f5:c1:08:c9:f3:d5:1b:6e:2c:30:87:d8:20:
3e:78:24:77:e2:5a:15:cb:ab:1f:6e:72:cb:94:5a:c3:09:b8:
74:09:23:f8:83:85:94:aa:b9:e7:5d:6b:06:1f:b5:5b:1b:22:
7e:04:cc:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:50:10 2025 by rpki-client