Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: WT9QkiEzeFRAh/SU8QdEwIIpOMv/9i3d9PwVZiTkI/s=
Subject key identifier: 51:5D:5D:44:DA:13:B9:A5:CD:CC:8D:FA:8D:88:9A:17:05:B1:9A:6B
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 01951247A2D06B4676B3A776F4814E2490E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0BA9
Signing time: Mon 17 Feb 2025 05:00:39 +0000
Manifest this update: Mon 17 Feb 2025 05:00:39 +0000
Manifest next update: Tue 18 Feb 2025 05:00:39 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: XwWYflIG8pClepz0SFUksuj7DBDiIGVef0E0Y9OaS38=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:a2:d0:6b:46:76:b3:a7:76:f4:81:4e:24:90:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Feb 17 05:00:39 2025 GMT
Not After : Feb 18 05:00:39 2025 GMT
Subject: CN=515d5d44da13b9a5cdcc8dfa8d889a1705b19a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:ac:1b:0b:52:4d:eb:a8:33:8c:62:81:a2:
bf:20:6a:32:a9:a3:cb:c2:09:62:ab:3d:d2:5f:a6:
1a:30:a5:fe:a7:1e:94:6c:51:e8:02:fa:f4:d7:46:
4a:7a:7e:5b:46:c2:6b:54:5f:e5:cb:99:49:f1:43:
0f:95:75:65:4b:59:26:67:65:da:40:90:ad:43:38:
22:27:04:09:8c:47:84:50:05:89:38:7c:0c:9b:67:
e5:b5:72:95:3b:10:01:f8:94:fb:fe:d8:ef:a4:4f:
db:33:c4:aa:ec:1d:51:5d:bf:52:e2:13:19:37:11:
f0:5c:7e:5a:50:7e:d5:e8:59:2c:00:19:71:12:a8:
4f:91:be:10:f4:5d:3e:08:4d:e7:5c:6e:f2:b0:52:
67:eb:2a:32:36:76:56:20:5d:2c:ac:e9:c0:8c:77:
a5:40:52:d0:bc:24:0e:17:2d:da:f9:aa:c2:b7:7f:
b0:ca:35:89:d1:79:e1:c2:d4:d9:66:df:b0:31:89:
1a:ff:39:59:42:60:09:c2:99:93:6d:e2:91:a6:50:
9f:81:5f:89:c9:98:7c:c8:23:7c:d5:9e:02:c7:f8:
a9:cc:dc:b0:e0:26:fb:e0:e9:0a:33:a2:1e:4e:d3:
de:63:ef:78:0c:70:da:8b:31:a6:31:08:b5:11:f9:
35:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5D:5D:44:DA:13:B9:A5:CD:CC:8D:FA:8D:88:9A:17:05:B1:9A:6B
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:58:3a:7c:a5:5b:a0:59:74:02:40:a3:be:3a:e2:f1:d8:10:
7a:d9:b2:bc:08:f6:fb:72:ed:54:9b:49:fe:6b:8e:d9:6e:34:
e6:e9:ea:b9:2a:91:0f:a6:fe:95:7c:43:77:02:17:e4:4c:98:
92:8a:7e:8c:94:41:9f:4f:a9:44:d4:ad:9a:ea:89:99:12:f1:
4d:55:bb:74:18:7b:11:11:70:d4:fe:b4:c4:50:f2:9f:88:a7:
b6:d5:13:cd:c5:66:d5:f2:30:c2:f8:06:9e:db:78:0f:85:f3:
eb:cf:1b:37:57:62:8f:e4:b6:66:26:f1:5e:03:25:d8:87:e0:
19:bb:10:a9:bb:84:00:3a:76:28:3d:c3:bd:90:94:e7:de:8f:
d2:2a:32:43:71:61:e5:03:41:1c:05:29:b4:69:00:41:ae:4a:
88:26:7b:af:3f:a5:e1:79:9e:5a:5a:d6:02:97:ee:94:e5:7e:
23:82:af:69:97:e0:ac:78:74:04:50:8f:12:00:17:90:ed:23:
5f:9f:13:66:19:a1:62:23:09:14:d1:8f:fb:0e:74:12:14:9f:
de:34:6f:26:58:93:65:0f:11:b3:27:66:ce:78:75:d6:14:ad:
91:23:8a:2d:d0:8f:68:64:dd:a3:24:5b:55:7f:d6:fd:e7:21:
4d:12:db:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:27 2025 by rpki-client