Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: QwiOthSQ5yWewB0X3ZVG2TMc52JD45lzaPey2d30fWA=
Subject key identifier: B7:51:63:D0:D4:67:24:A1:2E:4B:D1:AB:7B:54:16:0E:21:35:D3:C0
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0194C3878CA1DD954DC48A1A7E8A932E5285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 1445
Signing time: Sat 01 Feb 2025 22:00:28 +0000
Manifest this update: Sat 01 Feb 2025 22:00:28 +0000
Manifest next update: Sun 02 Feb 2025 22:00:28 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: K+zlfRZrAZDFYei2KKpQ8DUtB5Yl3mv4eR+bcS0ZQ9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:8c:a1:dd:95:4d:c4:8a:1a:7e:8a:93:2e:52:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Feb 1 22:00:28 2025 GMT
Not After : Feb 2 22:00:28 2025 GMT
Subject: CN=b75163d0d46724a12e4bd1ab7b54160e2135d3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:07:05:71:82:1c:bb:b9:58:51:50:f8:9b:b5:
02:1e:40:ba:aa:fe:f0:72:1f:37:f5:d2:73:49:24:
20:14:5c:3f:f4:ba:11:4c:67:8e:f9:2c:57:b1:c4:
f4:42:4d:94:33:f8:12:e0:1a:b6:04:49:ae:31:a7:
5a:45:a2:1f:90:d5:2c:35:aa:e3:90:17:21:a4:4b:
a6:79:eb:54:70:f0:5b:a7:92:32:4d:e0:52:e7:38:
ef:ed:18:4d:b6:70:9b:a1:5f:3a:d4:46:ab:03:57:
f5:f3:b8:bb:07:76:7b:ce:0b:4e:22:e3:4f:64:64:
a9:14:69:ac:1c:3b:1f:c2:f6:32:84:a8:b7:90:d9:
c8:fa:44:55:3b:80:7e:ce:0e:29:32:b7:da:5a:7c:
fc:7d:41:73:84:a2:0c:ed:fe:d7:e8:46:16:33:03:
a4:53:75:35:1d:88:fc:55:50:db:8f:f5:e7:82:c8:
ce:34:27:5d:09:20:23:39:e8:1a:8d:1e:a9:27:e3:
91:bf:b4:64:82:99:9e:bf:fa:c2:ba:25:69:aa:51:
c1:32:1f:87:ce:07:76:b7:36:a2:67:46:2c:ed:fb:
35:c7:7c:7b:68:92:33:3c:fa:c3:7e:25:dc:5a:ef:
1f:7f:05:54:63:75:44:29:5e:ca:11:59:6f:cf:56:
8a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:51:63:D0:D4:67:24:A1:2E:4B:D1:AB:7B:54:16:0E:21:35:D3:C0
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:7b:cc:a5:b6:37:95:98:ff:99:ba:89:16:75:b9:c2:0c:8e:
1b:29:09:af:1c:c9:f5:80:fd:45:df:7a:2f:20:59:f9:47:77:
01:d6:c0:f4:9c:e3:39:3b:53:11:9c:d7:59:3b:77:a3:59:89:
a4:bb:cb:1f:ff:5f:b2:44:0c:86:5b:35:f4:f1:75:75:d5:fb:
ad:2c:2a:e1:ff:66:08:78:fc:67:bb:ed:67:b3:7a:e6:f2:19:
8e:18:d4:7f:bb:fb:94:88:9f:53:b1:2b:5d:aa:53:1a:14:87:
cd:14:72:63:1f:58:64:c9:56:62:a7:9d:36:1f:f6:92:30:4d:
d3:6b:14:24:02:40:bb:6f:26:f5:7c:7c:ca:3a:f0:fd:b8:78:
04:d0:a9:bd:be:40:2a:50:fd:a9:10:52:a1:7c:2d:6b:b7:ff:
89:8b:11:57:72:ac:12:1e:77:5b:c8:e8:30:4c:99:24:c8:e5:
9a:7a:32:9e:d9:d7:de:bc:fe:9e:73:2b:64:5e:23:cf:46:b3:
a0:f3:50:ca:56:18:dc:65:b6:de:b4:b6:50:2f:23:3c:17:8c:
3d:d0:03:08:fb:30:7e:21:22:86:bf:bc:9e:07:15:61:59:c5:
6b:6a:4c:24:d1:56:9f:62:a6:77:48:d3:2c:2f:ec:04:a1:9a:
02:ca:31:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:31 2025 by rpki-client