Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
File: nGCyJ8t1doofV4Vuw1M8loSCYZw.mft (raw, json)
Hash identifier: k2m2xH9Hdup+g+NB20k5oQtmRMrZTCeBC2IU/Tborkg=
Subject key identifier: FF:43:1B:B5:11:E8:40:F1:A4:5D:DC:E9:BE:28:67:52:32:64:DB:6E
Authority key identifier: 9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
Certificate issuer: /CN=9c60b227cb75768a1f57856ec3533c968482619c
Certificate serial: 0194C3F5CC977EF1917BB0770C036155581E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
Manifest number: 12E0
Signing time: Sun 02 Feb 2025 00:00:53 +0000
Manifest this update: Sun 02 Feb 2025 00:00:53 +0000
Manifest next update: Mon 03 Feb 2025 00:00:53 +0000
Files and hashes: 1: nGCyJ8t1doofV4Vuw1M8loSCYZw.crl (hash: /jPp3ixuyGBqmjckofi+BPAMVYSDQUAiCHFkePdd2nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:cc:97:7e:f1:91:7b:b0:77:0c:03:61:55:58:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c60b227cb75768a1f57856ec3533c968482619c
Validity
Not Before: Feb 2 00:00:53 2025 GMT
Not After : Feb 3 00:00:53 2025 GMT
Subject: CN=ff431bb511e840f1a45ddce9be2867523264db6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:1e:5d:2a:9f:c1:d9:b5:c1:36:1a:4a:8e:
bc:bf:8b:9b:72:23:24:1b:6e:00:6f:27:1b:77:bf:
11:2f:8c:11:c2:9d:8e:9a:0c:f4:21:65:e3:14:f8:
7f:e6:bd:61:8d:80:f0:ac:7d:e1:fb:f0:1e:93:89:
8c:e6:3f:22:3f:b1:a4:a6:a8:83:54:ae:6b:b5:06:
29:24:c2:87:bc:91:c9:0b:59:f5:f3:78:27:99:2a:
c6:4c:ec:d0:4f:4c:aa:e6:a4:d8:59:23:12:7e:84:
5c:3a:c9:2e:e9:1d:e5:be:ab:91:38:fe:4b:aa:e6:
bb:9d:fa:0a:d7:c3:41:45:ed:f8:99:bd:46:3d:ee:
8b:9b:8d:cd:6f:3e:f0:b5:3b:1a:50:2a:8f:13:33:
8c:8a:eb:40:a0:cf:15:9f:c4:78:20:9b:8c:10:0e:
6a:2f:ce:cd:f5:38:4f:12:9c:bc:c1:38:74:a6:a6:
77:13:09:be:0f:ec:e3:ae:18:43:62:e4:ee:f8:dd:
57:90:98:ec:b0:b8:29:5c:cb:f5:6c:70:42:2b:7c:
4f:5a:27:76:5b:58:87:1d:47:2f:d4:d0:61:09:bd:
da:ce:23:1d:7e:01:52:18:5f:39:87:a6:be:5c:c4:
a2:cb:0f:e8:4d:54:27:66:89:99:5c:f7:a8:04:36:
1d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:43:1B:B5:11:E8:40:F1:A4:5D:DC:E9:BE:28:67:52:32:64:DB:6E
X509v3 Authority Key Identifier:
keyid:9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:77:2e:e5:98:bb:04:9e:67:c5:0a:3a:4b:e4:be:1b:26:43:
63:cf:44:fd:3c:4f:c5:2f:33:ee:d0:2e:ae:56:32:71:32:83:
07:2d:3a:22:06:f8:34:00:54:32:63:ed:63:32:14:ac:37:41:
71:5d:42:19:7a:08:48:60:07:87:87:14:24:87:8c:a5:8a:98:
2a:4f:72:ce:ec:91:ff:d7:eb:73:6d:4f:34:82:7a:9c:60:72:
e8:e5:a7:ae:ac:82:0c:51:47:b3:9b:04:f6:44:ba:0b:8a:1f:
d1:24:1f:c7:17:97:40:17:f6:5c:86:90:75:a4:97:8e:b5:1e:
f9:a0:87:bc:33:e5:1c:3e:26:d9:da:23:57:95:15:84:8d:fd:
d1:ad:25:bf:31:30:ee:ab:17:0d:13:8a:2a:88:a7:6a:2d:6c:
fe:c5:9a:d2:cf:3a:75:fb:cb:24:08:ad:97:e6:28:03:7a:3d:
85:71:c7:c6:d2:48:d2:ff:d6:4d:77:9a:e0:7a:b3:ef:9c:0a:
4e:89:08:48:b6:68:c8:23:14:a6:46:79:b0:a7:5f:2d:bf:3b:
8a:28:be:16:e8:ce:3c:19:3b:d1:7a:68:e2:2d:6d:58:7e:d1:
83:8a:cd:93:0e:cd:d8:fa:84:7d:94:3e:12:25:0d:c5:b0:ea:
d2:64:f1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:54:09 2025 by rpki-client