Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: OXxw9xne581tO+DpkbkTzsATslle+ELdWS9mnvzivSU=
Subject key identifier: AF:03:77:EA:9F:9B:CE:9A:01:69:8D:66:97:A6:F5:D4:F6:34:49:CB
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 0194C3885903970C252F5CF6A5AF44B58F1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 142E
Signing time: Sat 01 Feb 2025 22:01:20 +0000
Manifest this update: Sat 01 Feb 2025 22:01:20 +0000
Manifest next update: Sun 02 Feb 2025 22:01:20 +0000
Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: gKrFOy2wU5V7qpucApPsUBgfXtmHC+Qf7KXWUnI/iuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:59:03:97:0c:25:2f:5c:f6:a5:af:44:b5:8f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Feb 1 22:01:20 2025 GMT
Not After : Feb 2 22:01:20 2025 GMT
Subject: CN=af0377ea9f9bce9a01698d6697a6f5d4f63449cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:34:cc:f9:ef:18:34:bb:91:9c:a1:25:2e:eb:
e9:b6:c2:5c:d5:6b:50:31:95:55:b2:84:0c:08:6d:
5a:a8:aa:e7:68:ab:4d:e1:fc:4c:14:45:f0:c9:7f:
01:19:7d:09:79:10:68:a5:13:4e:9f:52:e0:77:68:
99:5b:ee:f9:d6:ab:b9:a0:d0:ff:64:a6:b3:bf:2c:
05:31:47:4c:6b:08:4b:8a:85:ab:09:82:42:5c:b3:
b4:61:00:57:a4:8c:20:d2:01:6d:31:d7:7c:ff:bc:
63:13:5f:56:25:4d:4d:47:ff:9c:5e:9e:3b:54:a4:
02:75:a5:eb:8d:3d:12:f7:15:e6:8a:d4:cf:03:46:
8e:45:c3:9f:0c:79:ff:9d:dd:0d:2e:4f:ad:55:3b:
b1:9a:ea:51:1c:17:fc:6b:77:f0:06:08:48:c5:b7:
13:8f:f5:f0:1d:00:5e:70:5c:68:e4:b1:f8:8d:24:
a5:a9:a0:3d:ad:5a:31:74:2a:39:0f:17:4f:64:d5:
eb:8f:49:2a:0a:ad:b9:a5:ed:63:ec:ab:07:44:22:
5b:cd:f6:5f:d5:d7:1c:fa:b2:3d:2e:b3:36:bd:24:
7b:67:b7:b8:e3:37:d2:8f:b5:db:e2:ad:b6:12:95:
59:9c:2b:f9:e0:a9:72:b0:81:8e:39:bb:bc:85:71:
5d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:03:77:EA:9F:9B:CE:9A:01:69:8D:66:97:A6:F5:D4:F6:34:49:CB
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:45:59:18:6e:63:78:82:c3:6f:14:d9:84:b9:d9:cb:a0:8e:
8f:be:a9:eb:28:bf:db:0f:af:15:68:58:7d:00:f8:b0:94:95:
d0:f4:23:f2:49:72:5c:a4:6b:f8:79:e5:5b:be:e3:17:82:3b:
ea:96:28:a1:f1:07:13:38:3a:36:11:97:50:85:f9:fb:d5:f9:
d2:30:99:1e:77:6c:58:a4:94:a8:a2:08:60:81:b0:4f:e9:59:
0e:84:23:bc:9a:f0:02:79:7c:4a:03:0c:6f:83:c0:67:52:44:
c0:7b:3f:54:c6:85:3c:c1:3f:43:83:ca:6e:15:7d:c2:48:9b:
b4:fa:28:73:cc:69:f8:00:08:c6:14:29:7e:45:29:56:e9:7d:
7e:09:4f:97:75:93:92:7d:29:74:bd:9a:2a:f5:5f:56:ca:24:
61:7e:da:36:8b:f9:b4:e2:08:5b:10:e1:7a:b1:96:50:be:9f:
7e:14:ce:75:5f:96:60:d2:9c:0a:6a:a7:6b:de:eb:30:67:ac:
ea:b2:6f:89:c3:6c:17:c7:af:ba:b8:01:08:c0:62:91:ae:54:
37:a7:20:46:99:bb:d9:6d:44:70:31:26:21:cb:39:43:fa:4a:
e4:57:e3:a5:c7:d5:28:88:b3:4f:34:87:da:0b:30:5b:ff:d6:
08:f0:4c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:46:20 2025 by rpki-client