Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
File: dqIj-utMXd95nTyiqWDAbB1tHZY.mft (raw, json)
Hash identifier: IucazSzuyJrtwmmymlkb8i0tR/iO06XPOvsSxiNnoTw=
Subject key identifier: 53:B0:69:7C:0C:DD:98:B3:E2:65:72:4D:01:31:B7:B9:EC:31:F1:30
Authority key identifier: 76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96
Certificate issuer: /CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96
Certificate serial: 0194C49A19AF6A8F45BC429675A49E04D547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
Manifest number: 09DD
Signing time: Sun 02 Feb 2025 03:00:20 +0000
Manifest this update: Sun 02 Feb 2025 03:00:20 +0000
Manifest next update: Mon 03 Feb 2025 03:00:20 +0000
Files and hashes: 1: dqIj-utMXd95nTyiqWDAbB1tHZY.crl (hash: QTTdAugRwvxyarrt/Kf1pOCTEJ1r2KCv0+Pyw8AsnvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:19:af:6a:8f:45:bc:42:96:75:a4:9e:04:d5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96
Validity
Not Before: Feb 2 03:00:20 2025 GMT
Not After : Feb 3 03:00:20 2025 GMT
Subject: CN=53b0697c0cdd98b3e265724d0131b7b9ec31f130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e3:8e:05:d4:13:9e:35:de:1e:01:90:b6:56:
34:7e:c2:9c:6a:88:90:e6:cf:d7:88:03:11:d2:39:
1f:60:9e:70:74:bb:ac:f9:15:7b:e0:7d:9b:f8:8a:
7a:7a:a6:db:fb:d1:3b:7f:56:59:77:5f:aa:cc:0d:
a7:d1:25:83:e2:13:97:74:c6:7c:43:ae:9a:be:80:
b9:23:84:65:ad:59:cf:b8:e4:fe:15:3b:10:39:4a:
90:c3:5e:bd:21:d4:39:12:ca:72:7a:41:8d:47:c5:
d3:54:29:c5:33:f0:7a:64:f6:e4:9f:48:f4:a1:84:
33:70:19:07:ea:e7:20:fd:82:46:ee:e6:f3:a5:80:
d0:cd:71:9f:f6:7d:8b:f5:e2:40:b9:f7:f7:e1:93:
a3:51:56:0b:e4:22:04:c0:63:f7:13:84:a3:8d:69:
d6:39:01:e4:56:44:3a:5a:c4:f7:f3:92:42:9e:08:
b1:18:1e:5d:14:1f:39:ef:9c:c3:a9:47:2d:be:ac:
66:af:ec:17:2a:47:81:b0:a5:6b:03:16:2f:9c:26:
1e:bc:96:dc:63:d5:b5:f2:b1:82:0f:54:b8:8f:ba:
ba:9e:6e:45:7c:04:8f:a6:11:02:9a:0f:4c:d9:4f:
2c:84:5c:e0:08:75:04:ec:78:07:1f:8a:d6:eb:20:
c5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B0:69:7C:0C:DD:98:B3:E2:65:72:4D:01:31:B7:B9:EC:31:F1:30
X509v3 Authority Key Identifier:
keyid:76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:54:28:4a:bc:6b:fd:97:de:98:d4:d1:6c:f6:91:7b:b4:62:
6f:d7:a8:38:52:aa:14:57:b0:1e:b8:fb:12:55:07:3b:ce:8c:
89:65:0b:25:83:77:59:f1:94:37:24:39:1c:a6:71:fb:fb:4b:
70:78:6e:87:b2:0c:d7:75:6e:17:ee:e0:e3:64:fc:08:c8:6a:
c2:9a:ad:6e:74:26:ea:82:3f:49:64:7d:d5:a3:ac:f9:3d:59:
7a:e7:2b:9d:fe:b9:4e:d8:2d:17:20:09:10:be:eb:22:88:18:
19:fb:e6:e6:5e:37:d4:69:2f:2b:a0:af:ed:8a:cd:47:92:11:
81:d1:f2:fa:1b:21:7d:ea:bc:1e:b7:8b:61:fb:25:3a:1b:e5:
d9:3b:93:54:c5:51:2e:d4:93:30:be:33:64:7f:88:e6:57:bb:
e2:00:86:2c:d2:23:d9:e1:2f:2f:b0:26:fd:ab:8e:47:bf:c6:
14:42:3d:82:df:e4:46:4e:e2:d9:ae:3c:75:41:cd:60:ea:90:
d3:86:fa:71:6f:82:9c:fa:9b:93:fc:4e:be:e5:c1:c5:1a:ed:
fa:e7:95:f3:d0:cd:80:cd:80:72:75:c8:82:63:84:ee:6b:0c:
13:dc:5f:e5:19:92:60:ec:29:83:7d:a7:4c:79:a2:4b:7e:53:
73:c6:a0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:47 2025 by rpki-client