Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: 7waRJqN+Kxm27d1+oofeWI3KGppEN5DqqWxLPWZkZDw=
Subject key identifier: 6F:0F:8C:10:FC:96:C3:3B:BE:CA:E0:85:CA:E6:0F:61:4C:1D:06:3F
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 01951135235D3E97B7349772E394B0BE4F4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 00:00:49 +0000
Manifest this update: Mon 17 Feb 2025 00:00:49 +0000
Manifest next update: Tue 18 Feb 2025 00:00:49 +0000
Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: 6ffd8WzefqMXZYKb/dwLxmT9o0R46tFLSD+R3eyH6Ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:23:5d:3e:97:b7:34:97:72:e3:94:b0:be:4f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Feb 17 00:00:49 2025 GMT
Not After : Feb 18 00:00:49 2025 GMT
Subject: CN=6f0f8c10fc96c33bbecae085cae60f614c1d063f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0e:bc:5a:06:96:dd:92:9a:08:bc:7e:2a:5f:
d7:bc:83:35:e4:b1:85:98:0d:d8:70:8f:c8:ae:45:
d8:74:4b:4c:54:f1:db:24:cf:e1:24:da:c7:24:3b:
a6:0d:57:ed:88:0f:55:56:b2:ad:df:d7:d3:9d:8a:
1a:d1:c8:35:f0:19:c3:8c:1b:d9:24:20:d3:56:4c:
9f:63:b7:26:25:9d:5d:4b:ff:24:95:95:ed:16:3f:
33:0c:9c:43:0c:32:ae:8e:46:36:df:b0:33:76:74:
5a:14:cb:93:6f:1c:83:80:c8:1e:fe:ef:0a:31:f4:
bd:85:58:40:05:e1:00:0e:d2:a7:6d:b5:99:22:c7:
9c:8a:f8:1a:e6:0a:e5:97:bf:22:7b:ec:3a:15:1e:
4d:b8:0c:17:15:d1:4c:03:36:b7:60:12:7b:5a:bc:
56:f2:ab:54:64:f9:56:5b:b8:0d:81:af:9f:42:28:
22:55:63:af:49:5b:1a:ed:bd:e6:29:bb:b5:1a:cb:
9c:54:13:75:2f:7e:50:50:2e:fe:08:ea:cc:6b:00:
fb:80:df:07:e8:e9:97:36:e7:2b:da:67:65:80:b4:
60:2f:91:5b:d6:e5:c0:7a:6e:1a:ac:3f:92:98:fa:
79:11:dd:9b:07:01:14:40:cf:92:dd:63:b4:7b:73:
23:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:0F:8C:10:FC:96:C3:3B:BE:CA:E0:85:CA:E6:0F:61:4C:1D:06:3F
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:3a:b4:2e:8d:8d:25:dd:1d:91:0a:ba:97:61:4c:c4:ab:bd:
96:b5:4c:0d:6f:94:d2:2a:65:c6:63:36:e9:34:04:2c:2f:73:
3f:34:21:56:85:d7:fd:7f:fc:9e:5e:d9:ba:20:51:b2:db:b3:
cf:9f:e6:f0:51:00:62:3c:80:46:ed:52:f9:e0:d1:bf:9d:e1:
32:0e:aa:63:31:72:bd:7d:b2:93:c6:c6:08:88:cb:2b:8e:ea:
04:80:f6:92:4f:68:32:97:2a:5d:d3:c5:e9:b0:f0:dd:23:63:
39:38:c3:bb:eb:7c:4a:0a:1f:45:7a:51:9b:93:49:2b:be:29:
af:de:00:4c:84:d9:94:79:f0:8f:26:0d:b6:69:6f:dc:ad:32:
f9:37:7e:2b:65:fe:ad:ff:04:77:73:c6:a1:97:f9:ef:87:4f:
81:d0:9a:82:d1:15:90:8b:e9:9b:54:60:99:e7:c1:ad:9f:ae:
dc:d2:e6:35:a7:48:91:af:fb:e5:2f:5b:3c:bb:d6:41:46:2a:
27:7c:41:b4:dd:b3:e8:3b:2e:a0:64:97:c1:a6:5c:0b:0f:2d:
3d:1b:6b:65:0c:c5:1c:3d:0d:ed:ec:95:0e:93:bb:7c:a0:2b:
f5:47:7e:fd:00:94:3b:c9:9f:86:8d:4f:4c:fb:60:8b:b0:41:
3b:9a:7b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:01 2025 by rpki-client