Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: QsessLx45ceTCQpIy+GihaAIK0QFTi9VlTctySqEKFA=
Subject key identifier: C6:7D:C9:FB:7E:E8:32:5A:B6:EF:35:40:AD:BD:7F:8C:5F:70:84:EC
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 0194C3F559BB791738B8227560B40B891B31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 142F
Signing time: Sun 02 Feb 2025 00:00:23 +0000
Manifest this update: Sun 02 Feb 2025 00:00:23 +0000
Manifest next update: Mon 03 Feb 2025 00:00:23 +0000
Files and hashes: 1: HbgX7OEx-8g9VTQvYvbD_e0bPJ4.roa (hash: W8tzfEVYuZk67nGO3GJK/wSiRVXk9GPJqQ4Zpo1nq8A=)
2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: t/VEjeoJFPh8jGzzuMmboA5tUaalvixCJrTEjMpqovY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:59:bb:79:17:38:b8:22:75:60:b4:0b:89:1b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: Feb 2 00:00:23 2025 GMT
Not After : Feb 3 00:00:23 2025 GMT
Subject: CN=c67dc9fb7ee8325ab6ef3540adbd7f8c5f7084ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:20:6b:37:39:18:d1:6f:d9:21:23:81:a3:b1:
78:36:81:24:4f:f8:60:f7:f7:52:b5:3b:9c:b8:7b:
41:0a:35:86:45:43:bb:bf:57:34:99:d3:4f:a1:1e:
12:27:55:b1:24:c1:0d:30:ab:cc:c3:b0:a6:d7:ed:
7e:58:9d:6e:c6:a5:3f:db:ca:d6:d8:2b:3c:f0:07:
61:5b:45:2d:6d:75:20:63:1d:42:1d:e1:cf:51:35:
bb:39:8d:67:86:e4:7d:c0:59:81:96:b0:fe:eb:ca:
94:d4:a6:87:c1:c3:66:6d:48:62:4b:5c:28:97:42:
7e:24:01:31:10:57:5d:eb:3f:20:14:ae:5a:ea:b9:
89:a8:ae:a8:c3:ad:5c:da:82:2d:c0:c9:50:f7:18:
62:ae:7e:3b:9e:7d:89:a0:7f:da:67:82:66:ab:e8:
64:10:18:b8:aa:a3:4d:9e:a0:5c:0a:ca:07:a8:a4:
0f:89:e7:87:dc:eb:66:64:80:62:5a:69:5e:de:2f:
9b:11:73:20:bb:9a:30:94:09:fa:a5:f3:75:99:e4:
0e:15:44:46:0e:df:32:70:88:df:6c:76:1f:91:fa:
da:8c:f9:27:c0:31:86:1b:13:81:e1:b5:b7:c9:8d:
24:72:b5:2d:3d:bf:02:bd:91:72:75:e7:a0:98:09:
7a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7D:C9:FB:7E:E8:32:5A:B6:EF:35:40:AD:BD:7F:8C:5F:70:84:EC
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:f9:75:3a:9e:cf:69:7c:f4:af:4f:56:9a:d6:c3:dd:66:45:
4d:d7:ce:58:e9:0f:10:21:59:32:cd:f0:55:b8:cc:58:d2:6d:
54:1a:ef:1f:7c:de:18:64:9f:54:a4:26:e6:70:03:d1:e1:20:
4f:d2:aa:7d:15:5c:50:91:8f:2e:d9:6e:7f:1e:a4:b5:47:fa:
6c:8c:a5:f2:ea:43:12:97:fc:23:0a:b0:56:1e:1c:8d:df:b6:
d4:11:a5:ba:3c:41:f6:d9:53:8a:5e:d5:00:62:4b:54:2a:b3:
54:0c:c1:b9:3b:02:9a:c6:88:a7:71:c7:61:99:ef:e4:a4:03:
cf:77:6b:5d:65:98:a7:90:2d:c5:03:87:7e:37:54:4f:db:ce:
a1:db:e8:c2:4f:69:62:fc:23:e4:d7:24:de:ed:44:7a:d6:c0:
28:05:b2:16:46:1c:89:3d:17:ce:ab:95:bf:ec:d0:79:b6:80:
2a:97:82:92:6f:3b:d1:90:38:33:ab:7c:84:44:b4:1a:9c:56:
5f:6a:e3:90:07:6c:63:86:b7:ff:fc:fb:0b:8b:3b:d1:be:ce:
81:3a:81:d9:ca:16:9b:5a:79:bb:1d:8f:b9:9c:ad:20:f6:fa:
58:88:d6:15:ca:e5:32:41:64:7f:d3:a6:c5:d5:a4:33:42:f0:
b4:23:4a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:00 2025 by rpki-client