Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: kyJe2oMfjsdlJFHe91zDHiJdabsLfX7chVqD7ecO+to=
Subject key identifier: E9:95:AC:A2:F8:35:BB:1C:E7:D4:57:9E:5B:AB:07:F7:D9:4E:7D:FE
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 01950F0FB611CEEB32B07C01ABB153F8E773
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 1458
Signing time: Sun 16 Feb 2025 14:00:42 +0000
Manifest this update: Sun 16 Feb 2025 14:00:42 +0000
Manifest next update: Mon 17 Feb 2025 14:00:42 +0000
Files and hashes: 1: YmYarA5XO8juvrriR0BtAqIdcCU.roa (hash: J8e/3PBcMoffAup3qudGNq5pMDjkvtJSIDtohCQMO8M=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: Tro0xdIfcSKcvi9Mf78hhK0UixAoVhHzY3z3eeeyVHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0f:0f:b6:11:ce:eb:32:b0:7c:01:ab:b1:53:f8:e7:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Feb 16 14:00:42 2025 GMT
Not After : Feb 17 14:00:42 2025 GMT
Subject: CN=e995aca2f835bb1ce7d4579e5bab07f7d94e7dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:46:00:de:0b:8c:be:7d:7a:a1:e0:9d:13:43:
09:3e:95:69:68:e2:d5:33:74:57:40:59:8f:50:19:
9e:92:73:cb:72:b0:d4:c8:b0:4b:95:64:67:bd:7b:
5b:5d:82:8e:8e:14:60:e1:df:3b:5b:49:28:4e:56:
e0:39:a1:cf:64:64:87:7a:ae:ac:08:ea:53:8c:1f:
44:45:00:76:46:2c:e3:40:88:42:fc:f4:0e:a8:0f:
56:e5:bd:fe:7c:3a:7e:02:72:5e:bb:ef:ae:a3:8a:
36:0a:f2:be:c3:5d:df:04:f5:f5:57:c5:88:78:d3:
a7:7f:84:cd:64:44:bc:1a:0d:85:9d:5c:26:9e:5f:
e6:29:25:1c:2a:99:b6:f4:3b:7e:33:d7:7b:15:8e:
72:f7:59:5d:be:5f:55:4f:f6:49:f2:31:aa:db:b0:
1f:96:c6:cf:fc:1d:a4:78:50:74:3c:ad:bb:51:7f:
68:24:d8:9a:4f:99:00:ce:16:91:37:b7:31:6e:00:
53:22:f0:e8:ff:34:61:97:a5:ae:05:e8:08:40:be:
3a:0d:52:45:93:a8:05:02:68:58:a3:91:ed:91:f7:
8a:a3:da:ed:0f:5a:fd:39:5b:f7:a5:95:d3:e3:d4:
01:e6:05:f3:b3:ad:c0:c7:95:ac:5d:2a:9c:8e:41:
c5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:95:AC:A2:F8:35:BB:1C:E7:D4:57:9E:5B:AB:07:F7:D9:4E:7D:FE
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:28:f0:ff:83:50:b0:07:12:6f:05:5c:5f:cf:50:0e:94:2f:
76:32:d1:bc:ea:96:f1:7a:1b:cd:64:1f:3d:59:a0:68:58:9d:
80:c4:a0:9e:d4:50:12:a0:62:8a:e1:db:1f:87:97:85:da:76:
15:60:c0:aa:6b:53:0f:91:ae:9a:30:cd:57:ff:53:2b:f6:5e:
2b:f3:30:ab:b1:41:96:bf:45:bb:7b:82:80:f4:ff:63:c4:25:
ef:a4:fb:4f:61:c3:a9:bb:5e:f9:f0:8f:a2:2a:b2:05:bc:a4:
f6:fb:46:f3:63:b3:36:61:97:46:27:8f:32:d5:be:bb:9e:6c:
ea:ad:68:7f:00:4e:a8:13:36:36:e2:13:ff:0f:38:01:75:b6:
3d:02:17:87:38:ba:20:48:0a:c7:f2:d8:91:5d:5c:da:cc:9c:
0a:6b:61:8c:ef:69:f7:a8:58:7b:c5:fb:6e:12:3e:b7:71:0e:
9f:c8:d2:23:e6:96:ea:6c:4d:fa:dc:6b:16:54:b5:6a:da:db:
8c:f5:0d:63:2e:7b:d0:23:b3:4b:70:e3:43:49:91:9a:10:d3:
61:e7:57:38:b1:e2:5b:f6:48:ba:f2:93:3e:17:78:cb:0c:f6:
8e:a1:db:b8:7e:2c:91:2e:c2:fe:55:6f:ce:3d:c2:a1:b8:83:
83:ec:6a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:39:14 2025 by rpki-client