Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
File: syu38vqMQUxnGIvau_t2IVaTuoc.mft (raw, json)
Hash identifier: ILmlSpXD+AdwDXrkAUW5lGFTOu3SDUHMbFcEvLGboa0=
Subject key identifier: 17:3C:C0:D5:73:15:2B:C1:F1:C3:2B:E9:25:CD:7A:40:81:09:3E:15
Authority key identifier: B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
Certificate issuer: /CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Certificate serial: 0194C508523049763765FA58F83BFC190F42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
Manifest number: 022A
Signing time: Sun 02 Feb 2025 05:00:44 +0000
Manifest this update: Sun 02 Feb 2025 05:00:44 +0000
Manifest next update: Mon 03 Feb 2025 05:00:44 +0000
Files and hashes: 1: dlFU-VFKr3DcjZAchl6XqyqKK5c.roa (hash: neVLf32lP2kuQND5P5wXOeNSgGn0qOcZGwTsUoY1fZs=)
2: syu38vqMQUxnGIvau_t2IVaTuoc.crl (hash: ERSJtgLtn7ivm8xWAYYRDAbCNd4c622pGGA7oNIjUWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:52:30:49:76:37:65:fa:58:f8:3b:fc:19:0f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Validity
Not Before: Feb 2 05:00:44 2025 GMT
Not After : Feb 3 05:00:44 2025 GMT
Subject: CN=173cc0d573152bc1f1c32be925cd7a4081093e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:72:2c:59:02:77:ef:ec:bd:87:bc:da:41:4e:
2e:07:26:9c:a2:23:10:26:2c:f7:f1:05:ba:c3:a2:
32:eb:f8:03:06:b3:1c:f2:06:12:32:e6:db:a7:40:
e9:ac:a1:26:41:6e:97:f1:24:fd:37:81:23:25:0d:
c3:12:99:16:d1:95:e2:dd:fa:4f:b5:1c:a2:f6:89:
01:0e:72:1f:9c:48:10:b1:22:f8:f2:64:fd:08:c0:
c8:01:58:99:2a:05:e5:87:06:81:32:d1:d8:e4:fe:
3f:0d:8b:a4:8d:2e:e4:c9:30:fc:1f:9b:65:b2:4b:
4c:9d:45:4b:9c:9e:33:fb:de:4e:76:54:55:77:68:
c2:d6:bd:c9:b1:63:af:45:69:89:ad:e2:d0:0a:ac:
a4:f6:c7:3a:75:6d:d1:d6:8f:e8:2c:13:6c:dd:65:
3e:fb:f4:97:51:db:6e:64:58:39:42:b6:a4:10:92:
b2:5e:1f:45:50:1d:cb:cd:a6:58:9e:8e:52:8e:f9:
f2:4d:b7:6e:53:e0:46:b4:14:68:ff:ed:56:e0:08:
00:b0:e5:dd:dd:e9:cf:b0:63:80:31:53:0d:4a:1a:
8a:7a:b6:5d:84:56:f9:7f:fc:1b:c0:3c:0c:6c:6b:
23:50:38:82:44:09:f1:4e:7d:15:df:48:23:6b:51:
b7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3C:C0:D5:73:15:2B:C1:F1:C3:2B:E9:25:CD:7A:40:81:09:3E:15
X509v3 Authority Key Identifier:
keyid:B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:ee:fa:0e:e0:78:12:8f:6f:b0:0c:38:68:46:9a:72:bc:93:
06:53:a1:ca:f1:50:7a:67:8f:6a:42:37:15:10:b9:cc:76:96:
35:53:2f:54:1e:d4:73:9d:b2:fa:79:70:d2:80:77:9a:38:cb:
93:51:3d:77:f5:89:e9:39:7e:64:cf:0d:29:81:5a:28:72:eb:
a2:7d:3d:17:59:c3:bf:33:b4:e1:ff:49:f1:35:30:0a:80:bd:
0e:9d:34:0d:60:8a:5b:9e:e2:c9:2e:5f:60:bd:4a:06:fc:67:
d0:23:1a:16:96:e0:52:2a:dc:44:39:f5:5a:f5:92:d9:8c:a4:
e3:22:34:76:91:0e:e2:01:aa:bd:3c:cd:28:04:d4:c6:29:40:
f0:ef:4f:62:00:18:63:d1:3f:45:e9:fd:30:0b:e8:87:d2:aa:
a4:9d:0c:54:95:bf:3d:01:0c:da:22:fc:77:01:df:6d:1e:ab:
3c:97:8e:cc:b6:63:f7:fb:f1:e5:4f:fd:b0:81:24:41:b2:9e:
83:b3:d3:41:74:69:0e:24:20:15:16:d8:df:a3:e5:23:38:b3:
db:3a:d6:aa:ca:d6:72:77:b6:95:a5:a1:f9:27:95:dd:f6:61:
2c:2f:f4:e8:32:ad:0d:49:19:25:53:8b:60:80:a4:53:85:ef:
fa:33:1a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:46:38 2025 by rpki-client