Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: beLYrgx9jZUJT+maBuK5mISixOPFEylBhfi6K8HR9bo=
Subject key identifier: 36:20:AD:54:16:9F:15:D5:60:F1:4A:5F:79:CD:4A:2A:38:4B:09:B2
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 0195116BA2A84B08F81C3C8FCD67512F3A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 0623
Signing time: Mon 17 Feb 2025 01:00:21 +0000
Manifest this update: Mon 17 Feb 2025 01:00:21 +0000
Manifest next update: Tue 18 Feb 2025 01:00:21 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: Sc+sznSiwJt4l9APiWrobzQnkO3QyQkE7F/Oa+AdTtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:a2:a8:4b:08:f8:1c:3c:8f:cd:67:51:2f:3a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Feb 17 01:00:21 2025 GMT
Not After : Feb 18 01:00:21 2025 GMT
Subject: CN=3620ad54169f15d560f14a5f79cd4a2a384b09b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:86:1c:70:b1:8b:96:f5:b2:34:fa:3d:73:17:
15:6d:f7:69:50:05:dd:cb:f8:9f:03:72:61:d2:8a:
5b:4f:29:aa:85:1c:ca:da:b6:9a:b3:27:2f:a6:7c:
87:23:26:4f:c7:c4:88:39:82:aa:a3:a8:08:13:54:
cd:c4:6b:72:b6:3c:86:af:57:c1:89:a9:22:f4:84:
ed:bc:57:96:3f:70:07:66:e7:0d:6c:1a:88:62:cf:
9e:3c:89:75:37:22:ed:39:d9:3a:e6:32:44:34:44:
7e:e4:ae:5e:fa:25:c6:1a:90:48:23:5e:85:35:4a:
d7:c3:91:2b:ab:8a:31:10:6c:e7:84:68:32:eb:49:
5c:a0:a5:95:ce:3c:05:5c:6c:5a:03:26:fd:13:88:
5c:86:95:d4:7c:36:d4:44:49:22:02:a2:31:3f:8a:
78:02:f0:1c:d2:fd:a1:05:af:9e:f0:2a:5d:0d:47:
f9:74:f3:e3:2c:c9:93:0c:aa:0e:e4:5a:a5:82:db:
20:5e:d9:c7:77:28:be:57:6c:c2:64:24:73:f3:51:
dd:fb:af:0b:c2:b7:be:72:96:41:90:78:a9:5d:cd:
ca:3b:65:8c:13:e7:fd:f2:ca:0a:6b:19:ba:73:77:
8a:bc:2b:f6:9b:5b:92:88:a0:34:0a:62:8b:de:6c:
0e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:20:AD:54:16:9F:15:D5:60:F1:4A:5F:79:CD:4A:2A:38:4B:09:B2
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:dc:fe:00:93:c5:71:20:95:ae:af:c2:03:18:a1:97:cd:34:
0a:43:5b:7a:81:32:0f:47:d5:dc:1a:e6:c8:7a:3b:22:96:1a:
1e:77:34:a0:4f:51:ba:b9:35:e7:96:07:f0:34:ce:b0:38:4b:
bd:76:ae:c4:ef:38:fa:73:81:c8:1c:2c:4f:41:e7:3b:52:cf:
eb:8b:23:6d:a6:02:ee:06:29:26:d1:23:f3:5c:4a:3f:b3:4c:
07:34:63:84:a6:de:cb:2c:ba:2b:60:85:57:30:a2:91:1f:21:
9e:73:57:2b:f4:36:36:23:30:f8:36:cc:7c:94:c4:0f:d4:29:
0f:c0:07:f8:b1:93:e3:40:ef:27:f3:9e:e4:6e:b7:37:7c:79:
2a:4c:06:39:8e:f9:eb:bc:47:5a:18:4b:d6:d4:ac:e0:eb:b0:
f7:f3:83:58:28:e0:84:8e:3b:9d:4f:76:93:fc:24:40:bf:48:
86:48:a5:2b:3b:27:cf:05:9e:19:8e:7a:e8:5c:7d:e6:cc:57:
f1:77:83:f2:04:ea:50:1f:32:ec:96:0f:ea:30:67:47:95:17:
25:1b:ec:45:e8:ab:4c:36:e0:75:10:92:3a:c8:72:6a:5a:97:
1b:3c:78:d6:14:64:4d:84:bc:c5:8e:06:2e:d8:af:a0:ff:78:
78:0e:61:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:20 2025 by rpki-client