Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
File: d6TN722YqQcT__52cRNId5pjKgo.mft (raw, json)
Hash identifier: JgiuPNmcdGsWcfXhcdTx85QFNU/RGTrUUAK9PUFUC4c=
Subject key identifier: FB:A1:E0:78:0A:90:E4:A4:66:3D:0A:E6:DE:A7:8F:43:A1:F0:04:E6
Authority key identifier: 77:A4:CD:EF:6D:98:A9:07:13:FF:FE:76:71:13:48:77:9A:63:2A:0A
Certificate issuer: /CN=77a4cdef6d98a90713fffe76711348779a632a0a
Certificate serial: 019510FDFE8DB35F40C13612BA185D1B7FDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
Manifest number: 1452
Signing time: Sun 16 Feb 2025 23:00:35 +0000
Manifest this update: Sun 16 Feb 2025 23:00:35 +0000
Manifest next update: Mon 17 Feb 2025 23:00:35 +0000
Files and hashes: 1: d6TN722YqQcT__52cRNId5pjKgo.crl (hash: hFwrB0IsW4kvk4tn63IBjc/QhfliY76qX4EUycHmhhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:fe:8d:b3:5f:40:c1:36:12:ba:18:5d:1b:7f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77a4cdef6d98a90713fffe76711348779a632a0a
Validity
Not Before: Feb 16 23:00:35 2025 GMT
Not After : Feb 17 23:00:35 2025 GMT
Subject: CN=fba1e0780a90e4a4663d0ae6dea78f43a1f004e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:af:99:57:a8:f0:7e:a8:8c:b7:3c:46:69:a1:
cb:26:7b:7b:c0:16:e9:22:cb:ac:d1:c8:b2:b3:9a:
37:90:ad:a0:72:27:59:47:83:bf:89:79:2c:51:60:
42:6c:45:39:ba:83:25:a7:03:1c:7f:f2:a6:ce:99:
5c:66:f4:bb:be:8b:f0:67:3c:ff:88:e3:f3:93:86:
0b:37:19:ef:32:85:33:10:59:7a:30:8d:5d:a7:69:
f6:f7:a9:4a:c1:78:f4:3b:d0:49:55:8b:94:14:f5:
f5:90:6c:f7:23:cd:b3:e0:fb:56:b5:ae:06:b2:a7:
02:41:6f:a2:6c:17:9d:28:d3:98:b1:bf:71:76:cc:
e8:e8:70:a2:74:38:12:81:39:8f:ba:35:44:c3:84:
49:89:f0:74:8d:f1:2a:82:2e:30:4b:f4:86:70:85:
92:86:f2:e1:99:fe:b7:e0:3a:83:5f:92:53:2d:fd:
6d:85:a4:a3:9f:90:ff:ce:a3:49:a0:58:eb:4f:13:
db:f4:35:71:1c:9e:57:b2:b6:e6:ac:5b:e7:bb:df:
ac:16:d6:40:e4:0d:d4:26:99:55:4f:97:00:8d:b9:
f4:b5:2b:33:6e:c3:48:43:9d:fe:c0:4e:66:e7:1e:
a0:9d:69:d2:8f:bc:1c:4e:af:bb:b7:4e:c4:d5:e7:
5b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A1:E0:78:0A:90:E4:A4:66:3D:0A:E6:DE:A7:8F:43:A1:F0:04:E6
X509v3 Authority Key Identifier:
keyid:77:A4:CD:EF:6D:98:A9:07:13:FF:FE:76:71:13:48:77:9A:63:2A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:32:00:ed:80:c2:86:6b:19:95:97:53:4c:fa:0a:63:dc:0e:
92:2f:66:e8:34:96:a4:22:37:bd:5e:7f:56:b0:57:df:52:d6:
c8:86:87:fb:23:12:d6:ab:11:7a:4d:20:d0:20:4f:15:b5:9e:
30:5c:ae:1e:15:52:45:31:79:a0:71:8a:2f:aa:20:0a:96:7d:
18:b2:4c:05:3e:0f:7e:85:ac:26:91:d7:f5:c0:df:4a:f9:5c:
e2:44:2b:2a:b4:6f:1d:2e:8b:c2:38:c3:a5:69:81:99:69:e8:
23:1a:14:df:9b:27:ac:ab:b5:e0:2f:65:ff:45:7b:25:e5:0a:
5f:97:64:f3:f4:00:21:0f:d3:4f:95:0e:52:7e:da:ed:41:a9:
40:ed:bc:46:aa:25:2e:70:0e:d2:0d:26:c0:9f:09:74:44:e4:
e4:eb:a6:61:72:d1:ad:9e:cb:45:e0:18:1b:a0:c5:89:ae:cb:
d7:b0:a5:ae:a5:d5:39:be:da:9e:1e:c3:af:59:58:6b:6b:a5:
c2:35:8f:67:f4:ab:30:4f:2a:b3:3a:fa:d7:e7:7c:64:2e:67:
e7:e9:77:ca:d0:9c:18:21:b9:0c:3f:21:e6:13:fc:b1:d5:5f:
f1:de:55:65:e8:d9:51:90:42:90:54:ed:c9:e9:94:8c:60:8f:
b4:5e:46:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:19 2025 by rpki-client