Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json)
Hash identifier: ivi9bW20dN+t5JnfuXO9/pRVMym42TL33zuu1ryFlsQ=
Subject key identifier: 76:C5:D9:89:6E:45:90:D8:B0:FA:90:BD:2B:38:55:23:08:0D:64:DD
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 0195121068B4776CD7908A0DD4B58A001C64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
Manifest number: 0A96
Signing time: Mon 17 Feb 2025 04:00:20 +0000
Manifest this update: Mon 17 Feb 2025 04:00:20 +0000
Manifest next update: Tue 18 Feb 2025 04:00:20 +0000
Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: JBWvSfUF2gzfUfT4WyqOML+qsP5P5QghipSrKLhPUk0=)
2: U0OBxV0NmzWdhOROB_4XE_nOuxo.roa (hash: R0oHniHcgRLjr+xP295YEa+yjJ7+h87sW92ahFuO7CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:68:b4:77:6c:d7:90:8a:0d:d4:b5:8a:00:1c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: Feb 17 04:00:20 2025 GMT
Not After : Feb 18 04:00:20 2025 GMT
Subject: CN=76c5d9896e4590d8b0fa90bd2b385523080d64dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:31:2b:d8:a8:ca:d2:6f:f5:df:03:dd:4f:
48:49:b9:fb:21:a0:d2:37:d4:2e:2b:00:06:49:09:
1b:ac:d5:93:75:1a:87:2d:01:b7:c9:32:d6:b8:a6:
8b:d1:35:72:56:ce:3e:66:d5:8b:1a:a4:33:15:d3:
1c:0e:55:2c:8f:0e:82:2f:aa:cb:12:87:c5:dc:06:
4c:62:af:13:f4:1d:d2:76:07:81:9d:fc:49:4f:9c:
43:0f:2c:9b:bc:93:dd:f5:59:11:e4:ba:db:13:12:
f6:f8:d0:38:4b:1f:d6:29:0d:0d:f5:d5:ea:81:9f:
51:3b:4f:ad:79:f9:2b:f7:a6:39:ae:19:fc:b2:da:
f2:6a:aa:2e:32:0e:ea:af:18:dd:77:7c:f1:10:70:
3d:cd:8c:ad:54:03:df:8f:15:65:3c:67:ec:e8:7e:
6c:c2:b0:c4:0c:43:c2:90:02:0e:28:2c:b6:96:0f:
a0:31:13:37:3d:62:e7:7f:49:c1:fa:0a:49:70:44:
1a:be:3a:3f:92:26:8e:b4:dd:aa:14:d5:1e:56:c3:
22:14:08:dd:96:35:c9:63:59:f2:bd:8f:78:c6:9d:
0e:af:2b:3c:95:2b:09:0a:4f:7b:87:ee:a6:1c:1e:
33:c0:7d:bc:47:0e:61:ea:21:a6:3b:81:a5:ef:79:
c6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C5:D9:89:6E:45:90:D8:B0:FA:90:BD:2B:38:55:23:08:0D:64:DD
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:98:f9:59:b6:29:82:af:2b:4e:12:16:1b:b2:75:49:73:7a:
17:c0:5d:17:3a:9c:f3:8c:54:db:12:e7:16:58:82:fd:88:19:
54:82:b4:a7:9b:51:54:29:be:e8:50:3d:ae:b1:f2:24:7c:c8:
2d:2d:a1:0e:72:66:22:7c:ea:f4:e1:21:a0:18:b2:d9:49:09:
19:59:25:63:17:a5:3c:c5:f7:26:ef:10:22:63:fc:1f:db:d1:
71:3a:55:3d:f9:db:b5:21:00:41:3f:41:1e:b6:27:dd:06:8f:
5e:55:f1:73:97:47:f4:94:f8:6c:69:1f:e1:ac:64:9f:fe:ab:
23:ed:6d:10:6f:4d:ca:38:54:aa:60:c5:31:2c:aa:ca:8c:a4:
22:ac:27:19:fa:42:b9:70:8a:70:30:1a:c4:83:ad:c6:0d:d4:
2a:1b:77:fb:69:00:50:19:d3:21:fa:76:08:57:b1:8c:02:4c:
a8:51:62:97:20:26:2c:98:44:0f:7a:77:41:59:f7:4a:12:86:
3f:cd:d0:25:b8:dc:57:dc:1b:a7:0a:a6:13:1b:62:e5:29:6a:
3c:35:d2:69:3e:b7:88:1f:a0:71:41:f0:1a:62:fb:f2:34:c0:
12:a3:e6:86:2f:35:6c:4e:6f:29:26:40:d8:e6:f8:ed:33:8e:
16:b3:e6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:17 2025 by rpki-client