Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: LeniC0ddNrXuHDDbjRmzN91fuYX8Z7onPbQh78RaPTc=
Subject key identifier: B8:DB:EC:A1:2E:7E:F5:36:DE:6D:0D:63:AC:F0:14:42:57:DF:AB:4C
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 019511D9AD953D8EF6911E7F5FC181EDBB86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 0342
Signing time: Mon 17 Feb 2025 03:00:33 +0000
Manifest this update: Mon 17 Feb 2025 03:00:33 +0000
Manifest next update: Tue 18 Feb 2025 03:00:33 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: wUS+08lINFMNIDfx6mYf0EVmKQcaULMxBBdxGxVgVTI=)
2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:ad:95:3d:8e:f6:91:1e:7f:5f:c1:81:ed:bb:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: Feb 17 03:00:33 2025 GMT
Not After : Feb 18 03:00:33 2025 GMT
Subject: CN=b8dbeca12e7ef536de6d0d63acf0144257dfab4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:79:e8:bd:54:d9:de:b9:53:16:62:df:e7:81:
ab:17:8c:fa:2b:99:d5:f0:76:69:75:48:52:ee:58:
71:06:a7:6e:1e:71:b9:66:ca:ae:a8:4f:ba:ab:18:
25:92:73:cb:fe:4d:b2:b0:2f:71:38:20:32:03:83:
d6:9f:9d:e2:7e:f5:b6:25:e7:bc:93:6e:b4:95:2c:
b4:20:c1:2c:a2:b2:57:86:ad:d2:59:0b:af:31:0b:
7d:10:c3:80:64:e4:65:f8:b9:ba:41:43:a8:d9:d2:
4b:be:ea:f5:e7:0a:ca:47:1e:22:3a:cd:a8:22:96:
72:96:d3:b0:0d:a2:af:1d:8e:a9:21:d8:22:8b:b4:
f0:89:e5:0d:84:16:8a:7f:1d:ae:1c:70:9d:03:db:
9a:12:86:88:70:19:26:43:0d:47:1b:9d:97:b6:3d:
f8:31:01:43:71:de:e9:f1:80:78:d5:fd:b0:5e:0d:
43:8f:64:86:49:d8:14:67:e9:32:af:b0:33:d0:81:
85:48:1f:a7:63:e5:8d:c6:70:11:7b:63:4f:d6:5a:
17:da:99:d6:eb:7a:53:2a:f7:76:b9:45:5a:16:ec:
ee:37:2f:ac:3b:23:0e:32:76:bf:d3:59:d8:ce:fc:
00:80:ee:b6:93:59:f0:7e:63:a8:57:2e:84:69:ac:
d3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:DB:EC:A1:2E:7E:F5:36:DE:6D:0D:63:AC:F0:14:42:57:DF:AB:4C
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:09:99:4e:6a:c9:db:59:4c:44:0b:e7:e4:e1:b0:40:67:c4:
6f:43:a7:9a:6a:14:af:bc:b9:7f:13:6e:d0:cc:ad:ec:62:72:
b0:31:c4:6e:dc:e6:57:b4:1a:6a:79:37:0a:98:4b:0b:93:cc:
75:e2:11:a9:bc:ac:3f:6b:c7:da:d9:3e:72:18:eb:9c:3c:71:
e7:bd:4a:cc:02:8f:17:4d:7c:db:e9:b2:d8:40:27:c2:5b:06:
b2:36:02:de:a7:61:6e:91:86:71:4b:4f:87:71:a5:e6:fe:05:
30:38:01:f8:74:e3:f5:ae:d7:75:a1:db:c8:12:f2:36:7a:e3:
3f:2d:c9:24:09:f8:ff:b8:ff:97:a0:44:13:69:d9:09:63:07:
75:76:42:3a:5b:e3:c3:54:c9:c7:c8:95:18:aa:df:65:9e:50:
22:7b:8c:62:39:5d:62:02:94:98:c8:1b:b5:e7:44:68:ed:78:
9c:d5:5f:0b:5c:48:e6:8f:0b:f6:9d:91:47:2d:80:b0:b6:45:
17:d6:d9:41:e8:bd:f1:0d:34:0e:52:06:69:84:cd:77:55:98:
31:8f:e3:cd:fe:eb:29:3e:f5:7a:8b:ef:dc:62:5f:6e:41:0e:
cc:f8:22:b6:0e:a3:b8:84:c4:75:92:79:0c:e6:21:f5:08:1a:
10:a9:06:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:08 2025 by rpki-client