Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: A2AFuyM/qeB/yYpMRClmc0ZyMLn3jlAabLKRQODJT68=
Subject key identifier: 4F:92:92:98:88:16:5D:39:3D:8A:A6:28:68:6D:32:91:22:E3:8D:53
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 0195116BB8D9828A53C40A95A1A79DB6EBEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 10E9
Signing time: Mon 17 Feb 2025 01:00:27 +0000
Manifest this update: Mon 17 Feb 2025 01:00:27 +0000
Manifest next update: Tue 18 Feb 2025 01:00:27 +0000
Files and hashes: 1: F1LbGv2MkXWWefxkT_CtpriNBr4.roa (hash: RRHmy9X/CGJW+TnFMQF3NirLVJyyI3P64OOzvqQr238=)
2: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: om1BqbpxkqOrx9S0lK1NjUSCFlFmjsrkO0uqZ1zf6Cw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:b8:d9:82:8a:53:c4:0a:95:a1:a7:9d:b6:eb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Feb 17 01:00:27 2025 GMT
Not After : Feb 18 01:00:27 2025 GMT
Subject: CN=4f92929888165d393d8aa628686d329122e38d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0b:7b:ac:e5:2a:88:3b:16:0e:cf:5e:e6:d7:
2c:c7:c7:df:b0:29:e8:a7:c6:6b:c7:d9:99:87:1c:
0b:90:bc:a9:26:cd:69:58:82:e5:15:f2:24:ef:86:
83:dd:fd:0e:78:59:47:57:f6:eb:55:de:e7:58:2b:
3e:4b:56:91:d4:25:a4:a6:f3:66:89:b7:2c:2f:ef:
9e:55:07:69:42:92:b0:1e:77:40:be:f7:0d:56:cd:
fa:17:e9:13:55:34:a2:69:01:c8:c0:59:87:6e:90:
03:d0:13:87:fa:f8:bf:68:cb:e2:94:71:df:ac:ae:
49:f2:d0:20:99:b1:d1:d4:43:2f:03:fe:5b:64:67:
c2:17:77:39:1a:65:c5:19:7e:ff:8c:d8:cb:20:9d:
e4:a6:01:c5:22:07:8a:e8:cf:12:ed:62:2b:92:c4:
62:2a:e2:d2:f6:bd:dd:9e:4c:3b:b3:e4:25:86:3e:
c0:ce:80:0c:12:80:81:f4:ef:91:24:07:a2:96:ac:
0e:fe:d6:d1:4e:2e:84:3e:05:55:89:2b:45:2d:d6:
bc:01:b9:9d:29:6c:9a:b6:c0:06:b4:45:5b:ab:e9:
d1:03:a2:02:f5:97:8d:ef:3f:f8:08:65:1d:37:2b:
c2:86:d8:f3:47:23:d8:24:24:1c:5d:27:18:a0:0e:
a9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:92:92:98:88:16:5D:39:3D:8A:A6:28:68:6D:32:91:22:E3:8D:53
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:57:b7:d4:3d:a3:fe:e1:6f:86:c0:a8:4a:a4:bf:7f:ce:e7:
c0:5c:3a:0a:12:28:b5:22:5b:74:b1:8a:14:e7:4c:69:ee:6f:
e8:a7:6e:42:d6:c3:62:ca:12:a3:02:7e:5c:3b:1b:73:08:80:
08:7a:4c:db:31:65:d0:db:d3:af:d4:cf:32:73:b8:89:04:01:
d2:b9:75:02:51:5d:0f:9b:7e:86:d2:3a:ef:a2:f1:09:a0:06:
1c:5d:8d:2d:84:da:fa:a4:93:da:4e:d1:df:5a:99:71:8a:94:
8d:e1:ba:a2:9b:44:08:90:4a:91:2d:85:d5:25:c7:ea:41:f2:
1b:ee:36:fe:6f:d1:f7:22:ab:4b:ec:65:87:a3:cc:4d:94:9e:
0c:af:1b:d6:fe:2f:2b:48:a0:ae:d6:3f:8f:d3:74:7c:2b:58:
bf:a6:3b:dd:b8:23:6a:e4:8c:e8:d4:c8:2e:91:c5:ec:66:c1:
69:f5:f6:fb:dc:ef:bc:b4:23:17:6f:78:44:27:40:b4:a3:76:
aa:bd:37:5a:5e:01:6e:44:4e:7f:cd:8e:74:cd:56:4c:02:03:
ff:4c:da:4d:99:bf:55:f0:d5:41:d2:bc:ad:d3:31:32:db:dc:
05:86:66:82:23:29:e7:72:fa:6d:91:ff:f2:8b:4e:9f:fb:66:
b7:63:73:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:57 2025 by rpki-client