Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json)
Hash identifier: r5QgoNCIGMYfUgPUtqYdkyx33+RHbilzuTR82HUqlYU=
Subject key identifier: 49:23:8E:A3:C4:94:35:BD:8B:A5:28:51:D9:0E:4C:6A:C1:A9:5A:C6
Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Certificate serial: 01951210A240D128E31F04EF9C972638D732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
Manifest number: 0E7D
Signing time: Mon 17 Feb 2025 04:00:34 +0000
Manifest this update: Mon 17 Feb 2025 04:00:34 +0000
Manifest next update: Tue 18 Feb 2025 04:00:34 +0000
Files and hashes: 1: H33ZXIhbVy7xU6xnvVekDxlllNY.roa (hash: gLytCIr8moIJFxRmjTSWLIbls8kZi2qpSK/USMqXNdU=)
2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: AJlOWnwiGPee1DVcGv4NOW9zKPfC8xlGlpXl1MiE7Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:a2:40:d1:28:e3:1f:04:ef:9c:97:26:38:d7:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a
Validity
Not Before: Feb 17 04:00:34 2025 GMT
Not After : Feb 18 04:00:34 2025 GMT
Subject: CN=49238ea3c49435bd8ba52851d90e4c6ac1a95ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d5:fc:5c:2b:f7:0d:f7:55:fe:e7:5d:35:6e:
b6:36:8b:3c:e1:0d:2b:31:54:63:04:a1:15:be:8c:
81:30:41:ca:b8:ee:77:7f:6b:f5:82:18:a8:45:b1:
1c:48:34:75:40:c1:d3:aa:10:7f:50:1f:fa:8e:3a:
4a:c4:75:57:25:81:ca:d7:87:95:76:4c:fe:27:58:
2a:d3:c8:69:58:94:5a:3d:96:d8:f5:31:77:6a:58:
7b:37:31:3d:43:76:2d:1b:57:c3:b8:02:22:e7:ab:
53:a8:01:54:74:94:59:a9:a5:7b:ed:44:19:65:fc:
79:4a:54:ea:a1:eb:fb:4a:44:95:6e:dd:65:f0:1b:
cf:74:d2:2d:66:9e:71:9a:52:c9:83:42:bb:28:7c:
63:df:70:4e:1d:f3:c9:d9:d7:8d:ac:6e:03:d5:95:
89:3c:1c:eb:08:a9:20:cd:e3:71:d6:bf:7f:87:ac:
5d:d6:40:18:41:17:4c:ee:77:1d:63:df:42:a5:c0:
1b:fe:22:e8:ba:28:c6:2a:23:23:6f:db:c3:4d:8c:
46:b0:6c:fb:39:f6:2e:fb:cb:35:6a:2f:8f:28:f0:
c0:1e:1f:5c:92:15:66:3d:84:62:63:fe:09:69:fc:
86:37:92:5a:37:95:fb:76:53:95:20:70:c7:60:c3:
87:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:23:8E:A3:C4:94:35:BD:8B:A5:28:51:D9:0E:4C:6A:C1:A9:5A:C6
X509v3 Authority Key Identifier:
keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:c6:68:19:be:54:4a:52:60:1f:fc:ed:7b:bb:77:d1:0a:8d:
2e:d5:7a:ea:9a:99:99:8b:2b:fb:10:15:02:35:8e:a9:d6:2e:
e6:42:f0:0b:58:51:72:28:18:2d:40:cd:e2:88:62:fa:99:99:
21:22:a8:0f:47:12:5f:da:b8:46:34:ec:78:a4:b4:fd:97:9e:
61:4b:48:eb:30:59:a2:a6:80:92:ae:c3:ff:1c:ae:03:3b:4c:
25:14:3d:a0:31:46:fc:42:ed:17:32:d8:f0:66:47:69:42:0a:
38:d9:a7:bf:d1:1d:47:a8:e0:46:4f:8b:c5:c8:07:92:a0:db:
00:bc:69:77:45:02:14:85:08:59:0b:04:7f:f0:15:9c:d0:05:
c0:ab:ba:19:77:9e:ca:d2:c3:a6:2c:ed:e6:86:bf:d5:0f:25:
35:1b:ca:98:a2:cf:06:dc:ff:5b:cc:b3:ed:22:f4:3d:80:7b:
be:23:de:b4:7f:7b:6b:93:df:a9:14:3d:cb:34:17:25:9c:36:
d9:b6:5d:22:56:c4:d0:72:e4:cf:da:b7:95:a0:e3:61:e3:24:
a8:df:8d:43:0b:69:c4:87:e1:a3:2c:7c:5e:d7:19:18:11:e4:
d6:da:f3:43:72:39:2e:95:bc:f5:ba:88:49:3d:0f:89:99:d5:
b4:42:5b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:28 2025 by rpki-client