Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
File: itKTDR_h3UMEkf17gx3pxhaSreQ.mft (raw, json)
Hash identifier: waY+ztut1xmaDWWzzkIJ+WMSBTucEgnIUa26xYQf9Tk=
Subject key identifier: 44:DB:29:6C:EF:AA:56:5C:8E:E8:D7:7D:5E:8B:DD:6A:24:C8:62:96
Authority key identifier: 8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
Certificate issuer: /CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Certificate serial: 0194C4639619F2A736014DCF1541D243E16B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
Manifest number: 115D
Signing time: Sun 02 Feb 2025 02:00:48 +0000
Manifest this update: Sun 02 Feb 2025 02:00:48 +0000
Manifest next update: Mon 03 Feb 2025 02:00:48 +0000
Files and hashes: 1: BAzsPPCBy1zDTboFw5Sl-2syIOA.roa (hash: 3HXxwP+fQhhVnJuWOZekRFhU3Q46kmrc9Y0dZLDklcg=)
2: bYpyeHiVOX2l8iPl-uPkAX9zfmw.roa (hash: clblsPlZTuaRgRGxz58OPeCdg4rL7htkupWPy4rOhKg=)
3: itKTDR_h3UMEkf17gx3pxhaSreQ.crl (hash: 5+lttiRu1BiaIKIZ3/cQBTDFwrpJ0Hlaxg46bavfAr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:96:19:f2:a7:36:01:4d:cf:15:41:d2:43:e1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Validity
Not Before: Feb 2 02:00:48 2025 GMT
Not After : Feb 3 02:00:48 2025 GMT
Subject: CN=44db296cefaa565c8ee8d77d5e8bdd6a24c86296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:41:34:08:fb:ae:be:67:97:84:d1:03:e9:f7:
a7:49:55:ce:c0:34:af:ca:b0:d8:66:ca:99:6b:b2:
20:75:b6:16:0e:10:c3:c0:11:81:f4:bb:e9:68:3e:
08:00:a6:fe:77:ad:88:d8:56:2f:e3:63:b3:8c:8c:
8a:38:fa:3a:a2:88:fe:f1:4a:df:51:0e:02:83:61:
34:c4:35:97:56:95:ba:02:d0:91:2f:33:ec:e7:76:
95:d2:30:25:f2:71:7f:f3:ee:41:10:82:b0:65:7e:
95:b8:fb:7b:bb:cc:74:38:3a:e1:1f:3f:db:b8:a4:
f2:5a:d2:ee:02:88:93:31:3f:fa:5c:a7:29:67:46:
92:42:5e:72:d9:34:f4:c2:97:ba:4a:c5:3d:db:f2:
df:f0:c4:e7:89:2f:a1:43:b0:22:f8:c3:80:b7:45:
08:47:7b:a2:6c:4b:e0:fd:ee:00:a7:e7:38:90:e3:
90:ac:37:37:a7:51:2d:7d:91:c3:d7:f3:7b:ba:e9:
48:26:9e:16:f5:e6:e3:5d:1f:20:ad:65:b7:2e:4c:
ad:9d:c2:6b:62:a3:bd:ca:40:5c:56:30:b3:b3:21:
f7:ba:27:31:0d:2c:ab:aa:ab:88:e6:ef:6a:65:e2:
36:74:95:45:69:62:e2:4b:f9:e0:1b:d0:c2:8c:21:
37:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DB:29:6C:EF:AA:56:5C:8E:E8:D7:7D:5E:8B:DD:6A:24:C8:62:96
X509v3 Authority Key Identifier:
keyid:8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a5:92:83:a8:b2:da:0a:e0:88:ae:e7:7b:a4:9c:89:b8:33:
2a:41:c1:4e:64:9b:a5:3c:73:0f:30:cb:75:67:1a:bf:5f:10:
8c:42:94:66:d7:ef:7a:47:ba:ae:03:0b:97:ce:f0:41:6c:bd:
9c:df:16:1e:74:2c:72:a7:b2:d5:12:98:69:0c:d2:67:dc:b4:
57:5b:f8:e7:63:e7:b7:2e:89:1b:da:45:18:d8:05:f0:24:99:
c8:7d:10:dc:9b:4b:37:ee:49:a8:8c:4f:ca:9a:38:cf:d4:65:
95:a2:97:6e:41:c5:37:b8:c6:57:4e:75:1c:18:51:e4:b6:f2:
32:f3:d8:f2:00:87:5f:e9:40:0f:43:01:ee:bf:6b:78:26:bd:
01:ae:41:aa:8e:ab:95:8e:fa:bb:78:72:24:e2:d6:81:0a:fa:
43:a5:32:94:65:6f:fe:72:6f:b3:c8:fb:41:e2:1d:09:b9:65:
bc:f9:28:bf:ad:ee:16:b5:6d:0c:65:15:2f:19:74:43:25:a3:
32:98:31:46:db:a7:4d:5d:89:69:04:6d:3a:f9:ec:ce:51:39:
61:5b:52:70:b6:27:a1:ce:38:96:27:6c:08:c1:fa:11:2f:b4:
be:5f:36:60:5c:ad:1f:24:86:7a:b8:b8:e5:f2:f2:ca:34:16:
03:40:c9:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:47:28 2025 by rpki-client