Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
File: cpnOZKDxYk17stKWnlwRrbqlSFw.mft (raw, json)
Hash identifier: M98CnqVNXFwZymLoJx+Nn024S9nVexCGB86/glbzbg4=
Subject key identifier: 8B:22:EE:76:8E:2D:B5:12:CD:A4:9B:C6:9C:47:C0:AD:E0:66:77:D3
Authority key identifier: 72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
Certificate issuer: /CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Certificate serial: 0194C42C09636A0787B59C54E92212F2FC57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
Manifest number: 0856
Signing time: Sun 02 Feb 2025 01:00:07 +0000
Manifest this update: Sun 02 Feb 2025 01:00:07 +0000
Manifest next update: Mon 03 Feb 2025 01:00:07 +0000
Files and hashes: 1: cpnOZKDxYk17stKWnlwRrbqlSFw.crl (hash: MY5cndilBh419lNbaFZgFq9IpOrGm1Qol691zpBuhwU=)
2: hGLXMAJyrLLUknw2I4rIa47GY5A.roa (hash: 2PfIq+E4/YZaE6ygL6f+ygB4E8ocD+aiVc7FkOqVsVA=)
3: vbTBxrwzB75awQdnuHxvUmGSxrI.roa (hash: BNvntPsh9Cs3tqn2zXlS+7ZhQF3J782Zk6D2d5jtV8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:09:63:6a:07:87:b5:9c:54:e9:22:12:f2:fc:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Validity
Not Before: Feb 2 01:00:07 2025 GMT
Not After : Feb 3 01:00:07 2025 GMT
Subject: CN=8b22ee768e2db512cda49bc69c47c0ade06677d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b4:2a:f8:10:68:21:78:f2:a1:6b:6a:35:22:
20:75:56:49:cb:da:64:a7:ad:27:33:26:01:6b:80:
5d:e3:d6:2d:c2:49:29:12:21:42:ad:01:8b:71:15:
44:b7:07:39:28:c9:94:c4:19:58:f8:23:c2:41:79:
55:69:fa:ed:54:52:f8:ff:c8:e4:d9:9d:7b:1c:e4:
01:78:e2:2c:3f:5e:29:1e:d0:8b:c5:12:e5:d4:24:
5a:bc:ab:8d:57:14:42:63:b9:d3:a2:80:c0:7b:91:
f8:cb:03:56:f5:2c:3a:ca:63:cb:02:c2:91:64:e4:
db:71:9a:2e:f1:68:f5:a1:cd:98:c3:d7:d1:a8:da:
d0:6d:31:c9:b7:43:1e:18:22:c5:63:f4:33:8c:76:
4f:37:3b:29:40:28:6b:c3:a9:de:2c:57:c6:da:07:
c6:8d:54:e9:8e:ce:cf:52:93:1c:a5:89:a2:bb:ba:
ef:96:f9:f9:8d:d4:fc:48:20:58:99:86:41:33:d2:
54:43:1c:10:8a:54:a9:b4:5d:4b:e3:3f:e9:d2:c8:
51:60:16:74:bb:4d:e0:8e:ac:ec:5e:08:c8:6f:03:
bb:46:d6:fb:e6:cf:08:16:20:56:dd:a0:1b:ea:1f:
e4:2c:08:4f:dd:3c:b6:8c:57:09:55:25:ad:08:2f:
1e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:22:EE:76:8E:2D:B5:12:CD:A4:9B:C6:9C:47:C0:AD:E0:66:77:D3
X509v3 Authority Key Identifier:
keyid:72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f0:29:ba:e7:db:2f:10:eb:c9:15:27:05:06:63:bc:e7:c5:
87:4f:61:42:ae:30:ff:ee:78:4d:d2:1b:66:20:5d:5b:1d:2b:
9b:cc:64:a0:5f:cf:91:51:66:eb:f5:d1:8d:03:9e:db:32:56:
83:da:7d:27:6c:cd:f7:08:04:ca:e3:77:70:ad:e1:86:fc:0b:
4e:00:26:26:45:19:99:69:b1:b5:be:19:df:9c:29:fd:3c:ff:
3d:be:b9:1c:6c:7e:5b:64:cf:94:9e:81:ad:a3:1e:c3:88:09:
3b:cd:e2:67:04:90:20:5d:f7:c6:3f:8e:47:61:90:65:7e:f6:
88:d4:13:1a:b1:6b:63:1a:99:36:0c:c7:d5:c8:31:09:9f:6e:
0c:f5:fb:e2:05:35:3e:d3:52:cf:6a:c0:39:a6:e1:7a:4a:14:
fc:8e:d7:16:c6:23:b1:32:bc:c8:84:bd:b9:52:94:b8:06:53:
28:c3:7e:ad:b4:0c:d5:b8:8d:43:69:a6:f8:31:d0:f8:e7:25:
4d:60:b4:c5:00:bc:a5:bd:81:b9:9c:40:0a:7e:a2:7e:b5:14:
40:40:38:9a:46:2b:75:72:70:51:68:70:40:ae:24:6a:b7:5d:
0b:6b:62:0c:20:01:11:59:d2:70:d9:6a:e8:d0:13:4b:63:5d:
f9:49:96:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:56 2025 by rpki-client