Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: XkfIVfDalrpcwUHHwB1476vzA3NMOH+7K2BWyes9RxQ=
Subject key identifier: F1:86:81:A6:70:61:2C:33:AC:8B:83:AB:0D:71:08:50:AF:30:5E:B1
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 0194C42C64867AB190C265FF931FC371E294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0C0F
Signing time: Sun 02 Feb 2025 01:00:31 +0000
Manifest this update: Sun 02 Feb 2025 01:00:31 +0000
Manifest next update: Mon 03 Feb 2025 01:00:31 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: 5ne/ANnxJU42Ke6v3TAKGpwPbJUCoreHoW5UqY0KlJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:64:86:7a:b1:90:c2:65:ff:93:1f:c3:71:e2:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Feb 2 01:00:31 2025 GMT
Not After : Feb 3 01:00:31 2025 GMT
Subject: CN=f18681a670612c33ac8b83ab0d710850af305eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:64:4d:a5:4b:89:82:be:e4:ca:e8:ab:74:40:
d6:03:78:46:45:40:d5:62:fb:5c:91:8c:bd:dc:82:
4f:bf:42:56:5d:0c:95:75:83:38:fe:1f:70:2f:67:
70:5f:6c:ea:4d:f6:cf:89:03:84:c0:c6:5c:ba:f1:
dd:b4:66:57:d9:0e:a1:28:60:f9:12:bf:a1:15:a9:
e1:bd:bd:dd:78:ac:0a:94:95:c1:0c:5e:c6:48:5d:
23:07:88:b1:58:8f:74:19:19:d2:47:ae:ee:02:22:
77:ef:b1:e1:46:39:32:cb:dc:a9:09:39:8e:39:fc:
40:80:13:52:98:04:ac:88:21:0b:77:97:88:83:18:
b6:fb:3f:d5:29:84:23:ab:04:53:8f:e8:78:4c:d6:
37:1e:52:46:82:61:1c:54:3e:86:21:22:ca:5f:2f:
a5:f8:ed:f0:1d:73:0b:d7:e2:cd:8c:98:14:58:a8:
c6:9e:e8:91:d7:9a:20:33:52:75:19:78:d9:96:23:
03:c7:a3:79:d3:52:f8:32:b9:cf:ca:ec:52:15:74:
10:93:1a:c8:7e:7e:cd:97:bc:7c:8c:6f:ac:db:b5:
ca:fa:38:b8:34:b6:04:bb:8b:ab:0d:85:62:bd:5c:
01:11:14:d6:5d:a3:e0:ab:6b:1c:8a:32:87:89:42:
24:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:86:81:A6:70:61:2C:33:AC:8B:83:AB:0D:71:08:50:AF:30:5E:B1
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:f4:3e:1d:68:8a:9f:27:62:fe:ef:b8:e3:3b:e3:e6:34:de:
be:ab:4b:63:66:18:57:65:6e:d6:b3:1e:87:47:9a:38:8c:61:
5d:c1:c3:4c:9b:7f:a5:8b:7f:a4:1e:fa:3b:24:cc:36:69:c9:
d3:ef:f7:bd:3b:0b:14:0e:d8:7a:ce:ff:63:3e:93:7f:f2:5e:
56:d9:34:87:7c:e2:4b:0d:08:cb:ec:bb:a7:64:3f:40:eb:74:
b6:60:0b:46:0d:a9:ea:db:31:75:b8:e6:19:2e:35:0d:38:c3:
2a:72:f0:9f:2a:3f:95:bc:1e:af:10:7d:aa:d4:24:35:45:5d:
39:be:58:de:c7:44:b0:60:44:b9:1e:c9:39:3a:a8:87:b5:0c:
7d:87:d9:3e:bb:ac:a1:4b:06:cf:b5:2d:71:b2:7e:c7:d5:cf:
af:b9:a7:7f:82:43:d2:60:99:e1:92:5e:de:97:d8:a9:3a:27:
04:78:31:a7:9c:44:6c:3a:94:61:24:10:61:42:c8:56:c4:3e:
da:b1:ec:fa:94:ab:d1:d7:f9:fb:98:d8:b8:ac:4f:82:2a:28:
7d:93:c1:b4:53:a3:21:15:00:de:19:bd:2a:27:7f:c5:fa:92:
2a:c7:89:f8:53:b9:8a:c3:18:f2:6b:20:e7:d2:80:15:c5:53:
48:9b:df:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:45:45 2025 by rpki-client