Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.mft
File: pcZdP4xO7LRhFDvaZ7GoXB16tXo.mft (raw, json)
Hash identifier: ChQ2Qoi107pNr/JhTSyeGqQtN3IYn9MhOBWXkCXhrRA=
Subject key identifier: 7B:A9:A0:C7:8F:B7:72:67:D8:AD:9A:A0:89:C6:B2:77:2E:82:24:52
Authority key identifier: A5:C6:5D:3F:8C:4E:EC:B4:61:14:3B:DA:67:B1:A8:5C:1D:7A:B5:7A
Certificate issuer: /CN=a5c65d3f8c4eecb461143bda67b1a85c1d7ab57a
Certificate serial: 0194C46330FE804DB6DC81CF3BEA5E66929B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcZdP4xO7LRhFDvaZ7GoXB16tXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.mft
Manifest number: 041D
Signing time: Sun 02 Feb 2025 02:00:22 +0000
Manifest this update: Sun 02 Feb 2025 02:00:22 +0000
Manifest next update: Mon 03 Feb 2025 02:00:22 +0000
Files and hashes: 1: PE72L1MZ6arIopzUHKdO8yRmL1A.roa (hash: GUSnHYNUfV3OxDkdEg/4B//ADgj/Stnyrivs7UGYYYk=)
2: pcZdP4xO7LRhFDvaZ7GoXB16tXo.crl (hash: aiDeFT+/9YwcM57jAi5JukPzMzr1yFVWKYJsUCA4cb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pcZdP4xO7LRhFDvaZ7GoXB16tXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:30:fe:80:4d:b6:dc:81:cf:3b:ea:5e:66:92:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c65d3f8c4eecb461143bda67b1a85c1d7ab57a
Validity
Not Before: Feb 2 02:00:22 2025 GMT
Not After : Feb 3 02:00:22 2025 GMT
Subject: CN=7ba9a0c78fb77267d8ad9aa089c6b2772e822452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:90:f4:83:68:0b:b5:32:8a:49:95:fd:82:68:
8d:7f:92:56:24:45:a5:85:69:b5:59:38:cd:6b:d2:
df:85:ab:3e:5c:e0:3b:2b:c3:ff:19:7c:b8:f2:04:
6f:0b:18:3e:2b:05:81:b8:fd:ed:d9:9f:d0:d5:04:
cf:01:b3:55:74:e2:74:b1:7a:6e:ef:35:19:83:b2:
c2:43:39:37:ad:3a:d9:59:2a:b3:12:04:0f:6e:77:
6e:11:0c:d4:8e:f0:fc:f0:0b:cf:17:56:5b:8e:e6:
ae:ce:19:65:41:e3:42:c3:a6:19:1d:9a:dc:de:c3:
00:e4:81:46:31:b0:f8:bc:26:0c:0c:0b:9e:05:e2:
1f:ac:a4:cd:19:27:6f:95:b6:85:3f:8c:c0:84:02:
dd:8c:35:b6:d5:4c:84:9e:cd:46:69:91:15:c0:69:
78:14:34:cb:9c:9c:08:92:de:8e:3c:2c:42:42:c4:
0e:63:fa:ea:42:9c:f2:dc:30:a2:0b:57:d0:c1:25:
12:6a:84:31:eb:5d:7f:e2:2e:7b:c0:5e:c1:e8:19:
d4:4b:7b:66:8e:c6:54:34:a7:dd:bb:44:92:5d:b0:
b8:21:ee:ea:9a:44:6a:18:51:95:dd:7e:e5:0e:47:
17:fe:c9:44:7f:98:da:4e:cb:f1:da:9e:13:d9:60:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A9:A0:C7:8F:B7:72:67:D8:AD:9A:A0:89:C6:B2:77:2E:82:24:52
X509v3 Authority Key Identifier:
keyid:A5:C6:5D:3F:8C:4E:EC:B4:61:14:3B:DA:67:B1:A8:5C:1D:7A:B5:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcZdP4xO7LRhFDvaZ7GoXB16tXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3f6929-ed0f-482d-9bf4-fdd0756065ce/1/pcZdP4xO7LRhFDvaZ7GoXB16tXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:22:49:31:9f:36:1d:4d:b6:71:95:01:12:c6:61:0c:22:73:
91:8d:5b:d6:f2:44:23:8c:f6:7b:2f:13:52:4a:3b:cc:6a:30:
d4:a4:7c:9d:ca:22:d4:3f:b6:5e:8e:06:ff:9c:72:e8:6d:e9:
7d:f1:b3:f5:59:53:33:27:85:bc:d5:c6:8e:57:21:ec:08:ae:
2a:f3:92:36:21:ee:ea:ba:47:eb:75:31:53:4d:ea:03:81:b8:
ba:a5:0c:ec:3d:88:f2:ca:92:b1:57:2c:1f:58:68:02:b9:d1:
e3:f6:ef:b7:97:02:da:49:7f:1c:de:a2:74:ed:fc:2d:1b:71:
44:be:38:ec:72:fc:ad:39:aa:9f:b8:71:bf:89:89:72:d6:c3:
72:ad:23:81:94:2e:35:8c:b7:64:47:94:fe:7b:ec:1e:06:94:
3b:b8:16:09:04:dc:6e:4f:a7:2f:35:f5:7a:6e:76:af:87:74:
36:44:0f:5b:7b:4e:c8:04:69:f8:2f:32:6e:48:5a:ed:49:39:
11:4e:4f:75:32:e9:52:00:c6:7b:e1:a2:77:8e:e7:73:a3:79:
d8:6d:eb:30:74:5a:cb:f2:85:a2:b2:09:fb:15:85:86:5e:36:
83:c7:d3:68:a8:ae:22:5a:e6:ea:d9:39:3f:d6:88:c0:22:2d:
3a:56:96:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:54:22 2025 by rpki-client