Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: W8w/vIprGOBaWWdSipHRgPmf9/QOvGjd3km3jWQTRIE=
Subject key identifier: 4F:44:FA:C0:76:3E:70:F1:4F:F6:89:1E:9E:FA:7C:14:91:AF:42:1C
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 0194C3BE69E7A79DE48A28C25212644181B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 03D0
Signing time: Sat 01 Feb 2025 23:00:23 +0000
Manifest this update: Sat 01 Feb 2025 23:00:23 +0000
Manifest next update: Sun 02 Feb 2025 23:00:23 +0000
Files and hashes: 1: J--9FTqyd7jwis3viXw5cnMN5-o.roa (hash: DC3T7Frr+GR57cEYLFoZVlKHfiR/SiiUWqjetZEXAWY=)
2: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: EnFNQm3MiWMt9vRTQfJ8q639l7zfRteGYb7ZY39AsGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:69:e7:a7:9d:e4:8a:28:c2:52:12:64:41:81:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Feb 1 23:00:23 2025 GMT
Not After : Feb 2 23:00:23 2025 GMT
Subject: CN=4f44fac0763e70f14ff6891e9efa7c1491af421c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2d:7e:00:f4:1a:d6:58:98:29:8b:4d:23:7a:
dd:bf:63:e3:45:54:af:be:6a:13:b8:ba:34:80:ac:
1b:ba:69:be:5d:01:c6:30:c6:d1:68:f4:3e:84:92:
8a:ea:95:dc:e6:e0:d2:b9:8a:fa:d8:94:31:89:48:
be:d5:69:e1:20:e3:ff:94:97:08:2a:40:80:19:7a:
2a:99:20:d7:9b:12:93:5d:87:f4:fc:92:a1:b3:76:
33:fc:5a:ea:5e:4d:34:a9:64:96:bf:d7:6e:57:24:
83:d3:bf:12:ff:08:ee:51:d7:b7:47:e7:64:bc:63:
09:a3:cf:34:a9:2c:8a:0d:70:68:58:af:52:12:d1:
92:5d:57:92:39:15:34:48:0d:c2:72:86:fa:41:67:
90:04:ca:42:15:21:5e:64:d9:ea:44:65:0e:83:1c:
73:b5:c5:b4:18:80:79:14:2c:b4:33:5b:a9:c4:b0:
c0:28:51:e5:4a:83:83:7b:00:4d:e3:02:a6:2f:3e:
71:d5:af:30:30:8a:80:8b:6e:4f:05:95:57:85:44:
95:67:76:04:ee:af:a8:98:22:9b:1e:62:c0:de:8f:
01:af:9b:d3:3f:0f:ab:c4:fd:1b:89:49:ef:18:19:
69:bf:3f:3d:a9:3c:17:01:7a:3f:20:f3:be:a6:c0:
7c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:44:FA:C0:76:3E:70:F1:4F:F6:89:1E:9E:FA:7C:14:91:AF:42:1C
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b0:91:df:3f:a9:25:27:23:4a:82:96:e9:07:05:c0:f4:2c:
9f:e1:e6:5a:dc:f4:bc:30:4c:22:ed:b7:51:37:fd:5e:d4:f3:
e1:ef:a6:5e:8e:e8:4a:4f:5e:b2:08:9f:b7:74:c0:70:f5:52:
86:04:51:91:b3:8d:ef:6f:82:42:f4:e5:2e:26:c7:2c:87:d8:
a1:df:4a:55:f7:5c:fb:2d:38:d3:c0:d8:86:9c:45:32:a7:6d:
d0:0b:73:6c:59:be:6f:59:1b:42:10:7b:fa:f2:8c:7e:e0:6c:
b3:2e:27:bd:c2:28:f8:36:3b:ca:fd:ca:71:4d:4e:41:c9:73:
db:66:4b:30:4c:c3:bb:9b:05:2a:63:92:5e:eb:9f:4c:9d:6e:
7a:97:29:c8:de:1f:3f:d1:fe:8c:c7:9e:d8:d7:ae:fa:75:6d:
2d:6b:b7:63:8e:a1:12:f3:fb:68:2b:c1:3e:1a:ed:50:c2:09:
ba:ad:4e:d1:7b:0e:8d:75:80:42:25:2d:c9:36:d9:85:7f:5a:
36:c1:11:f9:d2:97:a8:75:0f:1c:94:1a:58:8d:26:fb:51:fb:
2e:a5:e4:43:80:14:59:84:df:e1:51:ae:85:5c:0e:11:8d:f0:
c3:79:ba:ba:da:49:a7:16:a0:4b:3c:dc:1a:8e:ac:54:cd:4c:
50:c1:f6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:54:28 2025 by rpki-client