Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
File: i7i2EnIdTUwtB8v-LklemGoPAm0.mft (raw, json)
Hash identifier: Pm68cT2Z0saadV8HiXONgwd7S2LNriNi00sfYVM/Eho=
Subject key identifier: B0:72:CE:5B:4C:3E:56:1E:18:E0:EF:FC:79:D6:3E:B0:D4:21:E0:1B
Authority key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
Certificate issuer: /CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Certificate serial: 0195113539800A9A1C0531C70F2C03CAEC08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
Manifest number: 0437
Signing time: Mon 17 Feb 2025 00:00:55 +0000
Manifest this update: Mon 17 Feb 2025 00:00:55 +0000
Manifest next update: Tue 18 Feb 2025 00:00:55 +0000
Files and hashes: 1: i2xjHboexoRTpg38Qi-okoPsUcQ.roa (hash: x9dOoFm67St5fPryA+wWNLVDwzCG4EBSO5jTeQtPIqE=)
2: i7i2EnIdTUwtB8v-LklemGoPAm0.crl (hash: SBLofPKP0Qzz3qq41YywIj8qFCefaL0HgvZyRZzyus8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:39:80:0a:9a:1c:05:31:c7:0f:2c:03:ca:ec:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Validity
Not Before: Feb 17 00:00:55 2025 GMT
Not After : Feb 18 00:00:55 2025 GMT
Subject: CN=b072ce5b4c3e561e18e0effc79d63eb0d421e01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b4:fa:fc:69:11:23:b2:63:ae:fe:98:f5:ec:
50:46:3e:84:81:8e:8f:cb:9b:76:14:aa:2a:f4:1a:
54:d9:bf:1f:98:3e:28:70:be:37:78:e0:ee:f5:4a:
2b:e2:bc:2c:34:33:9b:df:41:60:24:7f:69:f2:ac:
ef:ec:5e:2b:f5:2f:3c:f2:bc:c8:2b:41:99:15:71:
6d:95:a1:70:47:ea:67:6a:73:ec:3f:e8:de:39:8c:
cb:ec:6d:54:35:5a:4b:a2:d5:3e:c4:89:92:8c:7d:
84:63:d0:28:a6:1a:b3:35:16:2c:0a:98:97:e1:b4:
e5:88:56:c2:23:12:22:b1:1e:01:c7:e1:4b:41:20:
15:07:95:24:d6:8f:85:10:53:30:ff:7b:e1:2a:6f:
b9:9a:c0:33:e8:d5:44:13:ef:42:73:90:05:18:03:
45:b4:86:5e:7b:d4:83:81:64:a7:16:10:9e:1a:43:
cb:a4:11:3b:48:b9:d2:fc:d3:20:2e:4f:67:18:82:
25:6a:0e:fe:3e:42:c5:ee:f6:74:78:1a:b6:93:2f:
df:42:c7:c9:e8:f0:63:57:69:2e:9f:56:e1:3f:91:
e8:70:b2:77:51:d9:35:dd:5f:ea:f9:47:9b:84:f5:
15:02:8b:2c:ad:6f:60:bc:1f:99:75:98:58:35:84:
e4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:72:CE:5B:4C:3E:56:1E:18:E0:EF:FC:79:D6:3E:B0:D4:21:E0:1B
X509v3 Authority Key Identifier:
keyid:8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:dd:31:62:a9:8f:3f:6c:57:5a:a1:67:57:6d:d4:db:e8:6b:
15:fb:96:68:ee:f2:3e:3a:7f:56:d6:b5:fc:72:c5:ce:25:b0:
c7:ff:a2:b7:95:7e:e6:93:3b:30:9e:73:e5:e7:61:09:0e:5d:
a5:34:87:eb:5b:94:a7:9f:00:f2:b2:bd:3b:a5:27:7e:88:13:
76:90:43:19:ba:ff:34:89:41:5e:bd:8f:6e:f0:ec:2c:71:02:
75:7c:85:86:15:a2:32:8a:03:cb:61:f7:0c:fb:35:1f:a3:34:
44:5f:bc:57:96:4d:75:0c:1f:8a:6a:ec:98:d1:41:36:4e:d1:
5c:1c:24:b9:2e:fa:1a:99:e6:b3:e5:f9:16:0a:e0:68:99:a2:
bb:34:b0:29:79:53:fe:46:3f:9c:da:4b:72:15:ce:8c:25:97:
53:45:d1:40:2f:0a:ec:57:f4:7c:b9:9a:2d:a2:99:3a:a7:d4:
73:20:e8:8f:4e:7b:cd:e3:6c:5f:a8:d1:c8:a0:8c:26:ed:07:
16:b1:75:5a:9d:69:bb:8a:2a:47:fa:4f:ac:5b:1b:2d:9e:f9:
9b:47:8a:71:1f:b0:1a:1b:a1:cb:eb:94:c6:7d:41:5c:4e:1a:
a3:45:d1:71:29:1f:6c:89:83:ea:f8:81:f7:1f:f2:41:77:f7:
70:de:70:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:07 2025 by rpki-client