Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
File: dHnfUKMVAp6AqhlHr-EtselIYos.mft (raw, json)
Hash identifier: iz9YC0QBKXjONTSsrqsqaCTVqg3XN0sQA+YB+fJ0Jk8=
Subject key identifier: CC:0E:CD:0C:7F:D1:84:71:22:B3:A7:6E:05:0C:A6:68:A7:4A:2B:FF
Authority key identifier: 74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
Certificate issuer: /CN=7479df50a315029e80aa1947afe12db1e948628b
Certificate serial: 01951210531C1D5A1747E734207805BCCA06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
Manifest number: 0D5A
Signing time: Mon 17 Feb 2025 04:00:14 +0000
Manifest this update: Mon 17 Feb 2025 04:00:14 +0000
Manifest next update: Tue 18 Feb 2025 04:00:14 +0000
Files and hashes: 1: KvOchdw6AYfLt261W6RR4KIthYY.roa (hash: WXdEqSkBC/gQsasA/7q/ZdUFdpwAbrzjieJX5Z97f4U=)
2: dHnfUKMVAp6AqhlHr-EtselIYos.crl (hash: qtb5rSMouP/m77Af1YghCVe5lzaj29YMpNzHWSTFdmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:53:1c:1d:5a:17:47:e7:34:20:78:05:bc:ca:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7479df50a315029e80aa1947afe12db1e948628b
Validity
Not Before: Feb 17 04:00:14 2025 GMT
Not After : Feb 18 04:00:14 2025 GMT
Subject: CN=cc0ecd0c7fd1847122b3a76e050ca668a74a2bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:a4:ef:8d:24:33:83:b7:78:74:a3:b5:4c:
eb:3a:56:50:26:8f:fd:ad:cd:ab:f7:7b:74:d0:61:
1a:d1:f6:cf:58:24:b2:ba:b0:a6:ee:11:dd:89:17:
ec:d9:c2:b2:2e:f6:ce:e9:3f:60:32:38:d6:c6:31:
f0:2e:90:64:66:08:82:5d:3e:a0:75:a9:38:b0:8f:
d2:fd:61:b1:ba:b4:aa:25:b5:0c:3a:e7:4b:23:0e:
72:4c:8b:33:03:98:9d:f3:66:29:1d:d4:6e:29:ae:
9f:fa:c9:73:e8:27:cc:25:56:d5:13:5b:30:dc:02:
00:ff:12:c8:e3:58:d3:3e:76:07:b9:76:67:5c:98:
7a:7b:ef:ba:d8:1a:a1:50:63:48:9c:70:83:9c:67:
9a:cf:de:6b:51:a2:9c:00:02:2a:b5:3e:50:c4:9c:
c9:4c:1b:a9:1f:e6:0f:36:d5:09:68:67:cc:eb:6a:
e8:e3:6a:f6:2b:17:e9:6c:e1:dc:56:12:ec:22:b6:
ae:ba:27:53:ab:c4:7c:96:89:28:80:4d:ee:e5:94:
84:24:b3:e6:88:88:c7:fc:78:0c:f3:b6:00:3b:d6:
0f:8f:4c:a5:30:df:60:bc:27:c7:5a:01:af:5b:02:
78:fd:82:96:61:0d:76:a7:57:60:2d:58:42:94:ae:
6b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:0E:CD:0C:7F:D1:84:71:22:B3:A7:6E:05:0C:A6:68:A7:4A:2B:FF
X509v3 Authority Key Identifier:
keyid:74:79:DF:50:A3:15:02:9E:80:AA:19:47:AF:E1:2D:B1:E9:48:62:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHnfUKMVAp6AqhlHr-EtselIYos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/16735d-6658-4b6f-a261-97ba37345aa8/1/dHnfUKMVAp6AqhlHr-EtselIYos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:92:7b:eb:3d:95:c0:dc:e6:ad:50:4f:d5:f8:70:12:c3:0c:
60:15:de:11:77:b8:9f:4f:a5:b1:e1:d5:a9:72:97:d9:8b:06:
17:b0:01:67:fd:0d:f2:6d:98:41:00:19:54:cf:42:e9:ab:31:
8e:19:10:fd:05:93:30:41:d1:b6:ed:13:da:89:19:84:33:fe:
fc:06:5b:88:8b:5a:5d:06:56:3c:ad:82:38:9e:66:6d:6d:31:
db:92:cb:78:64:4c:51:d8:ef:8c:8c:fe:60:36:ff:2e:f9:c5:
6e:42:ce:bb:83:9a:f5:33:79:12:86:1a:1e:5e:8b:eb:19:6d:
7a:b1:59:d1:3d:3b:24:af:f8:4c:65:d6:96:78:40:4b:df:df:
9b:d4:95:7a:9f:2a:bd:10:62:b0:1a:f0:35:f9:3e:2d:84:59:
2a:c4:5b:18:3f:6a:9a:a2:18:6f:d2:fb:1d:b8:17:c0:29:0c:
33:52:0c:94:14:0d:29:93:f0:ba:49:4c:31:8b:54:92:82:e4:
de:08:17:aa:d6:a5:86:69:2b:e6:72:4a:cc:13:af:bf:31:9e:
04:36:68:5a:2d:19:70:6f:2a:e6:75:38:35:4f:ec:5f:de:11:
86:d5:66:99:7b:9f:e4:0a:15:b2:69:e2:9f:1c:37:8c:5f:c5:
d5:e1:b9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:46 2025 by rpki-client