Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json)
Hash identifier: pezulCgyhb3tR3qdMfuY7VdvIoI6EQ6zAVNv9nybov8=
Subject key identifier: BC:3E:95:A9:6F:BA:A9:39:6A:BD:45:B4:2A:2E:6A:5A:DE:76:35:C8
Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Certificate serial: 0194C463C7530C7F13DA551F077DBE3B7C21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
Manifest number: 0C
Signing time: Sun 02 Feb 2025 02:01:00 +0000
Manifest this update: Sun 02 Feb 2025 02:01:00 +0000
Manifest next update: Mon 03 Feb 2025 02:01:00 +0000
Files and hashes: 1: Du7k0B88jmKs_S-_OxfkmUBoQvk.roa (hash: 5Kd2ifwi5TK+F7WlkGpdmlpnXuH9BzmWZvxJszORzQQ=)
2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: P/d5PtSlr5SNJroXQl8V0GzEHd67jLx297vM0Bp9TFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:c7:53:0c:7f:13:da:55:1f:07:7d:be:3b:7c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Validity
Not Before: Feb 2 02:01:00 2025 GMT
Not After : Feb 3 02:01:00 2025 GMT
Subject: CN=bc3e95a96fbaa9396abd45b42a2e6a5ade7635c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c7:85:af:7a:2c:1a:47:e2:7e:e2:5a:85:2c:
6c:c8:8d:73:81:6b:2b:56:c0:b0:d2:28:9b:08:4f:
d8:68:23:97:7e:75:a7:29:2b:80:49:94:e4:48:3c:
d5:2d:c3:d6:7c:4a:a7:d3:d4:df:88:b6:38:28:e6:
04:57:6e:f2:c3:16:9e:2b:ba:19:c9:55:a3:3f:26:
95:26:6e:e8:46:86:d1:04:7b:39:f5:dc:b1:f7:d1:
32:6b:be:a2:79:3d:67:ad:2a:ab:25:1c:0a:fc:29:
03:4c:46:3d:55:03:e1:de:c8:48:03:f7:f7:9d:b1:
2e:12:c5:ef:cc:42:cc:48:e0:e9:cb:85:78:ed:3a:
30:08:c3:24:c3:4f:ef:f2:af:0f:c3:66:cf:64:ae:
fa:61:14:27:3a:ed:ad:23:4d:16:3c:79:bb:0d:fd:
d9:35:6d:22:9c:91:bf:83:0e:bf:8f:83:cf:08:f6:
88:f5:81:af:49:e0:41:06:79:f0:e0:f5:7e:82:0a:
26:71:98:85:a2:81:8c:00:a9:d5:40:60:46:b8:a0:
48:82:97:9d:27:05:4b:ab:33:59:84:02:0c:6b:77:
3c:19:f3:27:e0:ca:e3:35:99:3c:9d:4e:53:56:a3:
30:03:dc:45:f5:de:fd:65:fd:ca:c2:89:95:c4:f4:
66:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3E:95:A9:6F:BA:A9:39:6A:BD:45:B4:2A:2E:6A:5A:DE:76:35:C8
X509v3 Authority Key Identifier:
keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:29:7c:8f:fb:b3:a7:fc:45:2a:67:4d:f2:bd:fd:6e:de:4e:
57:e3:1b:6f:ba:5a:c0:2b:8d:3e:ea:70:5c:49:b0:8a:48:35:
9f:ba:36:2b:4f:46:2b:a0:09:e1:a5:32:c0:99:0e:46:35:d1:
f4:1d:59:49:f7:be:08:53:8c:d8:f8:c1:7f:19:da:b2:80:aa:
3a:6d:d7:5c:60:75:69:8a:3d:cc:cc:7d:88:58:4e:e6:98:29:
21:6f:65:c0:e9:16:09:9a:a5:8c:f8:38:cd:c2:b2:91:c8:d3:
ff:33:ef:f2:41:17:a4:e1:ce:d1:bf:8a:b2:b3:5c:2f:c2:ff:
d7:8b:04:94:f6:07:3b:c6:c3:9c:31:ee:c8:90:1d:22:ae:32:
1a:37:0b:c5:c4:ed:1b:e0:1b:ed:1a:67:c0:40:27:11:37:68:
36:1f:31:25:09:2b:04:06:47:76:90:3d:b2:e4:93:fb:c4:2c:
86:4d:c8:27:dc:c0:dc:1d:1e:61:b7:29:d1:ae:cb:19:bb:df:
9c:87:5a:e0:4a:0c:0a:10:c9:3a:ca:8b:3d:53:c2:c1:8b:6c:
c2:f5:34:db:e1:70:2d:e4:12:46:ef:52:78:1f:b2:3a:42:be:
f4:a9:c9:e7:c1:ee:6c:45:e0:22:86:55:17:36:6b:e4:22:61:
f4:a7:de:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:49:45 2025 by rpki-client