Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: B3et206lxQnD7rBcAgoikKBqEexqdC44J1b2/RAwr68=
Subject key identifier: 83:5B:CB:94:FA:F4:1A:88:50:56:B1:C5:6B:F3:83:9B:F6:BA:F0:BB
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 0194C3880E0739E3D9382B07C37BDFD9621B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 142E
Signing time: Sat 01 Feb 2025 22:01:01 +0000
Manifest this update: Sat 01 Feb 2025 22:01:01 +0000
Manifest next update: Sun 02 Feb 2025 22:01:01 +0000
Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: HvTiT6wtkg5Gr/X1VU+XuvFZFG/ZbM4kCuLm4LMhgfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:0e:07:39:e3:d9:38:2b:07:c3:7b:df:d9:62:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Feb 1 22:01:01 2025 GMT
Not After : Feb 2 22:01:01 2025 GMT
Subject: CN=835bcb94faf41a885056b1c56bf3839bf6baf0bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6f:36:4c:39:5d:5a:03:68:e7:28:1d:80:55:
5b:17:96:b8:f2:7f:f4:18:37:c2:36:49:e4:14:38:
40:b9:ec:54:15:80:28:04:2c:e3:b7:f1:99:69:50:
0d:9a:6b:a3:b7:ec:77:05:f0:fe:3c:68:c5:da:02:
8f:a9:52:4f:ec:14:79:eb:3d:b7:39:61:80:09:65:
b0:27:7d:a9:7b:ff:b7:9e:38:41:d2:b4:6f:62:e0:
18:b2:f5:28:cc:c9:db:77:c0:b5:85:53:13:02:68:
b0:d7:22:54:92:17:0c:d2:2e:ec:cd:40:a3:b3:36:
e7:15:f5:68:ed:74:6f:b8:5e:65:69:fb:ba:2d:fa:
a7:5c:41:73:4d:d2:f0:9f:7d:99:39:b3:ee:0e:8e:
6b:3f:76:4f:0e:3a:11:f5:42:aa:63:85:fa:c3:b8:
c6:f3:4f:86:e0:8e:dd:16:8a:24:09:e1:09:5c:d3:
a8:c3:fb:5f:67:88:56:33:f3:d3:4d:ba:2c:21:88:
de:87:80:4e:c4:78:9d:2a:43:dd:7d:7a:0b:c5:43:
26:63:e4:1b:9f:d6:96:36:c9:a3:74:71:7b:90:a4:
8b:32:00:bf:93:8a:1e:f5:d5:fb:29:1e:be:ab:b0:
ba:34:5f:04:71:3f:cf:d6:d8:03:3c:31:41:ec:ea:
65:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5B:CB:94:FA:F4:1A:88:50:56:B1:C5:6B:F3:83:9B:F6:BA:F0:BB
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:be:d7:a0:ac:f0:45:44:b9:2e:04:b8:73:a0:b0:d1:01:44:
ab:65:27:1c:09:36:8e:b6:81:5f:1c:b6:72:10:1d:e1:09:2b:
2f:13:a8:41:05:25:3a:88:98:0b:cd:9a:70:11:0d:73:3a:a0:
2a:16:5b:39:c1:55:c7:40:40:bc:f0:7d:06:75:9c:5d:ce:b0:
40:65:51:4b:2e:48:b1:b4:6a:bc:e8:4d:6e:b2:53:ac:60:e3:
48:ef:e8:c5:d8:9f:12:da:7e:db:81:4e:1d:3b:e3:aa:80:3a:
1e:a8:84:8a:05:63:c1:22:c4:7c:78:f2:28:70:52:97:fa:9e:
74:36:bb:d9:56:28:91:80:37:69:e2:c8:93:88:86:8c:59:46:
f5:56:dd:72:80:6c:c5:a1:77:34:82:83:00:88:44:97:56:8b:
ed:10:ea:ea:aa:3d:24:1b:4f:77:dc:18:91:18:8a:47:1c:f2:
e8:ce:c0:e9:f9:08:c6:a9:33:4c:a3:ed:c4:c2:cb:e5:92:2a:
a3:b9:2b:62:96:79:f3:a7:33:b1:bf:0d:d0:5a:2d:db:7e:7b:
4c:26:4b:26:31:cb:b4:f0:53:a7:9a:2b:9a:85:1c:f6:4f:bd:
87:eb:2b:57:61:54:a0:88:6c:f6:60:2e:65:00:df:05:75:b4:
bb:04:0b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:58:39 2025 by rpki-client