Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: 1UUOYYE2GK5TdqYEY9yyEEirgARLelp97sXsOqRNETY=
Subject key identifier: 01:40:2F:DD:1B:2B:D9:0B:A6:8E:7B:34:D6:F2:39:CA:90:E3:28:93
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 0195113522ADCE79A8B8629D44A636D88952
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 0499
Signing time: Mon 17 Feb 2025 00:00:49 +0000
Manifest this update: Mon 17 Feb 2025 00:00:49 +0000
Manifest next update: Tue 18 Feb 2025 00:00:49 +0000
Files and hashes: 1: 1-zGyc8-sNFoNd9jrRwy0ohv-lr8.roa (hash: X6damPmptp3XphV2HfGbEnZgUQ5Ok8UVDdDjwWdsAA0=)
2: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: tuDZwaEztkDl2Fc/vCAIayGXd4AbMtSIEG4liNzKitI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:22:ad:ce:79:a8:b8:62:9d:44:a6:36:d8:89:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Feb 17 00:00:49 2025 GMT
Not After : Feb 18 00:00:49 2025 GMT
Subject: CN=01402fdd1b2bd90ba68e7b34d6f239ca90e32893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e5:b4:ac:94:a7:38:59:5c:b5:9d:b0:40:84:
02:8b:b5:f9:f8:ba:44:1d:86:7a:17:b8:51:78:98:
77:78:66:16:c8:70:0c:36:f8:9a:f3:84:0a:30:dd:
41:d0:96:83:47:6e:19:b4:c5:b4:ae:55:a3:8d:2f:
37:4d:05:ab:dd:b0:bd:c5:4e:64:e6:7b:87:d7:08:
bf:d6:7b:71:93:c3:d3:72:7f:56:4a:62:b4:0c:d6:
3d:3f:a1:ec:49:35:34:00:70:2f:45:a5:94:b7:46:
03:2b:45:a8:81:ea:e0:39:42:46:75:bc:87:85:1d:
2f:f3:60:03:f0:e6:96:a4:82:65:e9:81:f0:2b:2a:
1d:59:d0:96:c3:6b:01:dc:49:57:fb:b3:ba:a8:48:
34:33:82:28:5b:a4:77:b7:cd:bf:10:34:16:17:5b:
45:50:d8:4f:2f:b5:b0:6d:6b:8f:fd:83:60:6e:66:
7c:a5:ab:b2:59:ad:e3:b0:44:96:84:5c:24:f1:bf:
de:cb:08:95:3b:24:13:b0:6d:aa:8f:e6:d2:0d:c7:
97:26:2a:b7:1c:ce:e4:50:da:15:5b:37:f6:0a:90:
6a:5f:75:41:0e:a6:7d:f4:9a:b3:2f:e0:5f:f9:fc:
8c:1c:22:76:e5:0b:7b:9c:95:69:5e:f4:d6:6c:54:
fa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:40:2F:DD:1B:2B:D9:0B:A6:8E:7B:34:D6:F2:39:CA:90:E3:28:93
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:03:b4:8f:fb:31:b9:0b:d5:2f:55:c3:f3:8a:8d:a1:45:8c:
55:cc:c2:b3:e9:b3:92:9f:96:4a:05:60:b6:5d:e6:3c:23:0f:
9e:f0:54:8d:b2:c9:c3:a8:e1:98:d7:cd:38:8b:85:33:6f:0c:
65:e3:ad:c3:19:57:57:0e:5e:9b:87:8f:cb:de:7e:76:64:ed:
d8:61:87:98:c6:4d:00:4c:4e:3c:ca:a1:42:7c:cb:ec:cc:11:
2e:db:1d:c7:7f:b9:c2:e4:08:79:b4:76:8c:3d:c2:9f:55:f1:
66:4b:f6:f8:d3:cb:a9:44:37:53:28:1e:f5:ad:d8:d2:e5:fb:
38:a0:54:3d:ef:46:59:f1:ed:d5:e1:f9:55:54:51:30:68:5f:
b1:aa:5a:06:d4:d7:71:0e:19:62:54:4a:00:d1:4b:7c:d6:1b:
c6:3a:52:3f:88:d1:43:10:3f:63:61:03:96:09:16:f8:41:8e:
25:3f:8b:04:46:35:ba:ee:23:72:f9:d0:9c:02:c6:46:47:5a:
6e:6a:b0:16:d4:53:67:d9:fa:2f:52:99:cc:86:55:e4:48:80:
e7:73:e0:91:06:34:d7:b4:78:7d:cf:0d:63:07:21:ab:87:4d:
4d:81:47:da:89:4c:d8:0e:22:eb:f7:26:39:24:96:a0:fb:69:
33:d4:97:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:24 2025 by rpki-client