Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
File: xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft (raw, json)
Hash identifier: kaULFR33CHDLcKsOAjvRoDXthKREiNEMlKKRU4guQa8=
Subject key identifier: C5:91:E5:5D:0B:F8:E8:3C:53:5D:DA:89:0D:02:F8:FC:65:7C:F2:89
Authority key identifier: C5:3F:0A:DA:EA:FB:40:C7:72:45:9E:93:93:54:F6:BE:45:3F:15:8F
Certificate issuer: /CN=c53f0adaeafb40c772459e939354f6be453f158f
Certificate serial: 0194C388086048714C6A407351124BA6AF43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
Manifest number: 3F
Signing time: Sat 01 Feb 2025 22:00:59 +0000
Manifest this update: Sat 01 Feb 2025 22:00:59 +0000
Manifest next update: Sun 02 Feb 2025 22:00:59 +0000
Files and hashes: 1: GUbgPZS8b1mJVA-CDXEfke3rKwU.roa (hash: DGiTGvvsu+oEkX+7jMPXSS7hmVWxoFzlEXAOHRpDGto=)
2: xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl (hash: 7qG25z+O7gE2Lo5wVrSVY3r94uR0WP8tMbhqebaqIIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:08:60:48:71:4c:6a:40:73:51:12:4b:a6:af:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53f0adaeafb40c772459e939354f6be453f158f
Validity
Not Before: Feb 1 22:00:59 2025 GMT
Not After : Feb 2 22:00:59 2025 GMT
Subject: CN=c591e55d0bf8e83c535dda890d02f8fc657cf289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:81:5c:89:b3:bb:18:a5:3a:12:78:62:75:19:
5e:25:a8:c3:c0:35:0c:8c:84:0b:80:6c:15:cd:95:
5e:9a:71:ed:d1:ac:b3:85:bc:a9:06:73:98:da:bb:
bf:52:a2:a3:93:09:a1:90:ca:1f:06:b9:8d:52:52:
90:a2:4e:88:f5:31:f6:4b:20:cc:cb:54:84:42:a3:
6d:cb:67:89:23:c1:07:b8:17:3a:45:47:80:68:38:
97:cd:e4:8e:0e:d4:7c:e6:df:e3:94:8d:ed:fa:4d:
56:50:7c:4c:5b:3e:ce:43:6e:3f:9e:f4:32:3d:7d:
b7:14:27:f2:f7:e7:99:62:c5:aa:73:11:16:f0:aa:
3c:7f:5b:f4:e0:06:d6:45:0a:41:a1:08:30:3f:67:
cf:2c:63:14:6a:9f:05:6d:b4:c5:dc:c8:8a:7d:4e:
de:35:c2:44:24:08:ae:10:b0:c4:70:09:5a:4b:ea:
73:1b:de:74:ef:2d:4a:5b:27:2e:a5:bb:21:40:75:
1d:9a:3e:b1:6d:c8:a1:0d:f0:09:4c:13:9b:25:1e:
23:3d:e3:18:68:e1:c4:5a:9f:33:78:9b:e2:67:d4:
88:ec:a7:84:87:a1:e5:d7:7b:1e:28:db:c1:c2:70:
fd:5f:c2:c5:b5:d9:0a:98:5b:29:32:5d:ba:6d:79:
07:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:91:E5:5D:0B:F8:E8:3C:53:5D:DA:89:0D:02:F8:FC:65:7C:F2:89
X509v3 Authority Key Identifier:
keyid:C5:3F:0A:DA:EA:FB:40:C7:72:45:9E:93:93:54:F6:BE:45:3F:15:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:b9:42:e7:e8:df:be:01:1b:be:c5:ea:f7:a8:1d:54:48:6f:
76:cd:6b:b8:20:d2:e1:60:26:6b:cd:3f:f1:05:ba:50:58:0c:
eb:14:ce:ef:35:78:e3:2e:34:94:44:36:d2:50:a3:b6:12:94:
fb:9c:21:e3:b4:2e:fa:8d:83:b2:8e:99:49:89:e7:f3:c5:a9:
2c:ab:69:52:20:a4:36:e2:a8:d4:07:d9:41:12:13:6f:fb:73:
dc:07:dc:e9:a2:15:65:af:25:65:86:6f:cb:dc:16:42:de:30:
7a:96:25:95:57:d3:7d:f2:24:8c:46:e6:74:7f:13:62:ee:ab:
03:41:14:ca:65:6c:6f:47:49:be:34:15:4a:c9:86:96:09:e3:
cf:01:92:19:b3:2e:8b:56:89:8b:92:ea:0c:ea:ee:04:ca:9b:
91:37:04:ef:ba:91:44:85:e7:11:6d:61:90:61:89:10:b9:b4:
a4:d0:a1:e3:2b:94:c4:57:ff:a6:56:36:e4:05:f5:4f:e0:ab:
08:8e:52:f5:64:4a:09:c3:d6:a8:cb:fc:d0:22:25:c4:9f:76:
e0:c4:cc:22:51:f2:62:d3:14:3e:79:4e:e9:8a:5e:36:c1:73:
32:7f:70:38:f1:69:f0:e2:1f:3b:7d:17:81:1a:f3:7b:f0:24:
34:3b:80:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:48:04 2025 by rpki-client