Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json)
Hash identifier: 9EwbUAFrQqw7ITTv0xk+Eu6btzwc1ijTs+WjVlfQ9UA=
Subject key identifier: BD:A5:5A:85:65:7E:E8:BA:17:D1:15:F4:42:1B:89:13:FC:5A:C5:B3
Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Certificate serial: 0194C50823366FB029289C4791848D2AF026
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
Manifest number: 011F
Signing time: Sun 02 Feb 2025 05:00:32 +0000
Manifest this update: Sun 02 Feb 2025 05:00:32 +0000
Manifest next update: Mon 03 Feb 2025 05:00:32 +0000
Files and hashes: 1: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: pdaeUmFWhMsOSgWzO+jTg5JeiWnms6H3QJw4Z8eRTf4=)
2: cJzFJRb6EBurjmJ9hvq2xccSDEk.roa (hash: mMiq7V/3Y4gzo/doQBzdeVFdS7yqVlMFwN3QKRnpEsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:23:36:6f:b0:29:28:9c:47:91:84:8d:2a:f0:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Validity
Not Before: Feb 2 05:00:32 2025 GMT
Not After : Feb 3 05:00:32 2025 GMT
Subject: CN=bda55a85657ee8ba17d115f4421b8913fc5ac5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:10:91:82:71:e2:9f:0f:1b:71:64:8b:31:21:
f7:2c:9e:b1:35:66:c5:16:00:1a:72:02:39:93:09:
1d:d8:af:3a:1b:70:e0:3c:20:23:08:fc:85:1f:2d:
37:f7:c3:80:49:8a:f2:7a:5d:32:0e:ca:0e:83:ca:
e9:aa:77:92:5b:f8:96:ef:d6:01:47:d9:76:af:57:
ac:2d:b3:a2:96:ba:4e:7c:d2:5e:1c:18:97:36:27:
73:aa:ac:32:99:72:1c:09:37:56:48:ba:95:9a:30:
13:60:68:5a:2e:30:22:54:89:22:44:11:11:b2:da:
bb:d5:40:d0:63:c3:0d:89:60:93:bd:e7:0c:c3:5e:
8a:c3:0f:72:9f:fb:9d:a8:6f:f7:48:3c:2e:03:9c:
27:32:9a:4c:05:c6:01:8e:2a:e1:96:17:fb:bb:f2:
48:9a:f7:ea:e2:ec:78:9e:c7:51:fe:ac:c6:2e:52:
0c:32:9c:5e:eb:96:d2:f5:54:7e:44:a3:fd:cf:bf:
39:c4:52:5d:6d:e2:1f:c3:78:8a:bf:da:c5:95:a1:
fd:db:e0:7b:c7:c4:40:6b:92:de:89:7f:0a:96:09:
14:25:aa:9e:81:78:d9:e3:ec:ea:02:13:67:c1:c4:
8d:56:a2:5c:07:10:87:bc:cf:91:15:1c:f3:ec:34:
70:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A5:5A:85:65:7E:E8:BA:17:D1:15:F4:42:1B:89:13:FC:5A:C5:B3
X509v3 Authority Key Identifier:
keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:cd:bc:2e:b4:93:71:d1:57:fe:4a:0f:b4:1d:fb:ee:72:47:
b5:9d:11:17:3a:3b:5a:5f:3b:31:c6:93:1b:82:4d:28:dd:b3:
7d:90:d3:e8:92:e3:45:ae:a2:cc:5b:b2:ac:97:6c:e9:8d:a5:
4a:f8:91:fb:b6:a3:6b:63:6e:47:90:f5:a5:d7:b7:63:fd:64:
ca:db:79:59:2e:00:ab:65:5c:0f:7e:37:1f:4d:69:63:db:5e:
65:c7:07:49:03:78:38:fc:0b:10:5f:46:1b:b0:49:f3:1c:74:
9a:a4:38:4b:27:4b:a0:c7:3b:65:68:cf:df:e4:8c:78:f4:b6:
72:cb:b6:d0:b4:ce:e1:43:de:57:b3:80:50:6a:d0:77:fa:1b:
09:45:a1:e2:56:9a:ed:e1:1a:4f:c4:4c:4a:0b:01:b2:0b:9c:
f7:b6:19:54:1f:34:10:56:54:0d:dd:ec:9e:f2:57:23:6e:b4:
1b:cb:8c:52:a2:22:7b:ec:b6:30:82:f7:db:f2:bc:92:ce:0f:
bd:f4:42:44:6c:51:ca:9e:c1:1e:02:b1:83:7e:1c:db:ee:8a:
6a:d0:04:f9:80:85:01:5c:fd:6f:39:6c:b5:0a:8d:9c:3a:44:
00:6d:e8:96:a8:b0:0c:af:28:6d:89:71:3e:f8:9e:10:8c:e5:
57:fe:df:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:46:34 2025 by rpki-client