Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
File: JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft (raw, json)
Hash identifier: x6ACCdwjrZxyI06VTsFjhgH11zG7Qqe6Jl6dCyxTE24=
Subject key identifier: BC:47:F1:03:09:7F:E3:63:57:84:31:C8:12:3F:0A:43:43:73:00:E0
Authority key identifier: 25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14
Certificate issuer: /CN=25572e8f93b18a401cfecdf62586783858cc5f14
Certificate serial: 0194C49A472A3179383E061210EB5E3A5101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
Manifest number: 142F
Signing time: Sun 02 Feb 2025 03:00:32 +0000
Manifest this update: Sun 02 Feb 2025 03:00:32 +0000
Manifest next update: Mon 03 Feb 2025 03:00:32 +0000
Files and hashes: 1: DTLOnLZIHhlPP7pvWpWEUTLWHQg.roa (hash: QLz4ZYz1buP6/UJvo5YrZ+4VolEyE3vVmr+8wwogqDA=)
2: JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl (hash: eJQ+QCLmtd+QuHVPPyH8NsjqUWXKLKTLJG8DMj00H6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:47:2a:31:79:38:3e:06:12:10:eb:5e:3a:51:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25572e8f93b18a401cfecdf62586783858cc5f14
Validity
Not Before: Feb 2 03:00:32 2025 GMT
Not After : Feb 3 03:00:32 2025 GMT
Subject: CN=bc47f103097fe363578431c8123f0a43437300e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:02:05:61:70:89:c8:f5:9c:73:e5:1c:e3:f9:
a9:a7:da:f7:0b:c6:6e:d1:d9:40:ca:08:e2:99:95:
1b:60:83:91:2d:f3:26:25:e9:0f:bb:91:d5:16:ac:
e0:a8:58:33:d0:02:d6:0d:68:8c:44:54:30:31:7f:
5e:f3:ad:e6:c1:f8:6d:bf:7e:bd:07:7f:dc:9d:db:
4b:ee:d6:a7:5a:45:de:2e:a8:88:86:9e:82:53:a7:
db:81:d4:83:8a:e5:10:30:46:5f:19:8e:17:48:59:
77:a8:0b:9b:ad:35:ed:05:81:a1:72:8d:07:95:05:
b7:ad:88:2c:c0:ed:84:95:df:2a:93:9f:fb:05:8a:
87:f5:d5:61:23:02:51:2e:5d:27:d6:88:ba:41:fc:
42:f1:ca:af:e3:64:ea:01:0f:40:81:42:87:24:f9:
83:95:63:07:15:07:5c:77:16:06:3a:53:2f:0a:13:
0a:3e:40:e9:c4:16:5b:75:87:1e:08:c6:92:03:f2:
ad:a0:ea:4c:d3:44:fa:0e:06:18:e0:04:3c:f8:dd:
77:09:c7:ae:0a:fc:97:0a:ec:19:e8:f6:28:5c:7b:
92:97:1a:d8:ae:9f:86:bf:85:fc:ae:f5:5c:78:d5:
80:69:28:ac:80:fd:a8:2e:25:68:c7:a4:6b:f8:14:
38:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:47:F1:03:09:7F:E3:63:57:84:31:C8:12:3F:0A:43:43:73:00:E0
X509v3 Authority Key Identifier:
keyid:25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:fa:62:ba:37:20:8b:c1:01:5b:0d:25:97:28:63:fd:45:8c:
01:61:82:74:ed:90:ae:cb:04:d5:38:ba:4b:ca:2c:28:59:4a:
30:8e:2d:54:f6:54:47:ac:f6:ba:f2:19:d6:6c:66:56:fa:aa:
fe:a9:d0:b8:36:7a:f1:e9:7a:07:82:f0:c8:cf:ff:b7:7d:c4:
dd:fe:2e:16:87:05:4b:26:72:c9:83:7c:ef:39:de:9b:93:5d:
3e:c7:41:a2:35:aa:14:5f:49:a7:19:18:8b:a4:23:c6:95:63:
97:91:8e:6c:b2:18:5c:2c:9b:30:51:e3:f3:39:c6:39:ba:6c:
d4:7a:9a:35:d4:97:e7:16:63:41:e7:53:3c:d1:72:61:00:92:
83:03:d1:92:fa:5b:c6:18:b8:18:cf:44:f7:5e:53:f6:69:a7:
42:c9:4a:a2:c9:54:9c:dd:ab:93:d5:79:b4:f8:0a:69:20:e9:
49:0d:fe:d6:ad:7e:19:66:cc:02:42:a4:b6:4e:2e:a4:4f:07:
7d:70:04:c2:4b:72:f1:bd:6d:30:11:ab:41:25:3f:b3:98:90:
a4:03:68:8f:3c:a1:e0:60:8b:29:f9:9b:d5:b4:db:42:60:5d:
cf:d2:96:b7:96:a3:32:f7:53:a1:d5:66:83:85:1e:82:47:b4:
b4:e0:b5:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:50 2025 by rpki-client