Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
File: tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft (raw, json)
Hash identifier: bV0MlV8JwKWpPC+NTLh5xMyN8AlM5lO4vusBIJriJYM=
Subject key identifier: 2B:EB:5F:93:51:77:60:0B:27:CD:D0:2D:B5:09:1B:D7:E4:89:4E:F1
Authority key identifier: B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
Certificate issuer: /CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Certificate serial: 019511D970196B0E1B843A9369008B71E749
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
Manifest number: 0ABB
Signing time: Mon 17 Feb 2025 03:00:17 +0000
Manifest this update: Mon 17 Feb 2025 03:00:17 +0000
Manifest next update: Tue 18 Feb 2025 03:00:17 +0000
Files and hashes: 1: J0ZgfR5U6lkaUqXFqkaevK5zE7Y.roa (hash: /1drMWi8WHeYZMzayKCKRAt2zHYV3mIjXjepj/lhD8k=)
2: tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl (hash: OYecn/ebC9gqSAFVFfXMxSRGPIg2riUewOg3hMRJri8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:70:19:6b:0e:1b:84:3a:93:69:00:8b:71:e7:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Validity
Not Before: Feb 17 03:00:17 2025 GMT
Not After : Feb 18 03:00:17 2025 GMT
Subject: CN=2beb5f935177600b27cdd02db5091bd7e4894ef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1f:bd:68:46:a3:25:d2:86:ad:e5:fa:e0:41:
90:6c:8b:d9:cf:e9:2d:da:7e:0f:8f:77:9a:b9:eb:
9b:d1:2e:e7:b0:3d:8c:9f:59:d9:b1:6b:2a:88:05:
01:17:7d:7f:eb:2f:73:e9:9e:7a:d9:69:41:9b:ee:
c7:c0:ed:01:b0:ee:1e:70:3f:a1:14:a1:0a:96:c7:
1c:32:6a:f5:2e:8a:4f:1e:57:26:6a:97:92:04:7c:
0b:ea:8f:de:1d:51:5e:6b:ba:26:30:0f:ad:b6:c0:
90:68:54:c2:03:67:98:0f:17:e6:58:e9:d9:94:f5:
27:5d:e3:19:07:a8:32:99:bd:cf:26:92:69:aa:7c:
b4:10:29:b0:08:de:3e:55:4a:ac:8c:ab:1a:91:d6:
8e:d7:16:78:d1:66:7d:67:ef:66:3b:13:56:53:7c:
29:fd:91:85:38:80:69:3b:7c:8e:7f:a3:23:2a:7f:
f0:03:17:0f:91:e7:05:b6:42:57:5f:df:03:e5:b0:
f5:3c:70:3c:86:1d:e8:f2:1d:c2:03:80:d2:75:e9:
6f:a7:ad:4e:e1:0f:2d:93:44:69:2f:f0:04:01:b5:
04:e7:e9:04:36:87:0c:6b:69:9c:18:83:a6:eb:ca:
8c:6f:56:34:9f:e6:e5:18:8e:14:c2:df:29:b0:46:
f1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EB:5F:93:51:77:60:0B:27:CD:D0:2D:B5:09:1B:D7:E4:89:4E:F1
X509v3 Authority Key Identifier:
keyid:B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:68:b0:16:7d:1e:95:c8:82:85:ea:60:47:e1:e1:68:fd:55:
b6:57:f1:5d:16:49:4a:06:c4:b5:bc:35:cf:95:62:b0:7b:87:
7c:d6:9f:b5:7d:d1:f5:15:65:a8:0b:9c:1c:6f:71:5a:be:24:
23:38:a2:17:f1:53:17:73:d5:4c:88:4a:47:e6:fb:87:4e:fb:
33:1e:12:06:b4:33:1b:7c:4b:8d:15:a2:f9:bc:9d:fa:62:88:
92:a4:b6:81:9b:49:1e:44:b7:7d:f4:e1:1c:d7:e3:c2:40:7d:
dd:64:03:90:22:59:39:1e:2d:f8:be:ca:c1:61:2a:ec:4e:dc:
f6:a4:9a:55:ce:8f:16:de:38:9f:13:55:d9:ff:6c:bd:41:62:
47:23:c6:b7:fb:39:7d:43:f6:bb:68:70:9f:16:66:5e:7d:2d:
6a:03:a4:ec:b8:ea:77:20:10:7e:05:27:47:9a:cb:d1:15:b5:
7c:a5:b5:f2:20:b1:cf:cc:83:ef:cb:83:b1:eb:bf:65:6b:13:
c9:5e:11:a4:40:ca:f6:eb:07:6a:0e:7f:c9:f4:64:45:9c:7d:
f5:c2:c0:54:48:ee:a5:64:31:73:c4:57:34:6c:83:a6:b2:38:
c0:5b:8f:14:3c:89:8a:f4:b7:f8:cc:98:aa:23:36:72:eb:29:
3b:da:d9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:07 2025 by rpki-client