Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
File: dGMyObqiEDEGpiYN39fni4CUNVw.mft (raw, json)
Hash identifier: 2qXoQRRd20do7Zx1LDDAl04oaJTk9iJl/oZXwTn0GCI=
Subject key identifier: 13:AA:19:47:5E:48:AF:92:EA:25:DD:DC:54:C6:AA:32:40:AE:CD:26
Authority key identifier: 74:63:32:39:BA:A2:10:31:06:A6:26:0D:DF:D7:E7:8B:80:94:35:5C
Certificate issuer: /CN=74633239baa2103106a6260ddfd7e78b8094355c
Certificate serial: 0195121077A7132626489A488938E5AF8741
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
Manifest number: 0B2B
Signing time: Mon 17 Feb 2025 04:00:23 +0000
Manifest this update: Mon 17 Feb 2025 04:00:23 +0000
Manifest next update: Tue 18 Feb 2025 04:00:23 +0000
Files and hashes: 1: GndNIt9G7qZhnR5IIBXP3kbyL_4.roa (hash: SBp7dhTz+pfIJxl9syItY+Kj164I5JLZ7F2dz4iFPso=)
2: dGMyObqiEDEGpiYN39fni4CUNVw.crl (hash: raULh6KKlth2LHcTjyhlY2SKkPOZItbRqyccPWgJxLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:77:a7:13:26:26:48:9a:48:89:38:e5:af:87:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74633239baa2103106a6260ddfd7e78b8094355c
Validity
Not Before: Feb 17 04:00:23 2025 GMT
Not After : Feb 18 04:00:23 2025 GMT
Subject: CN=13aa19475e48af92ea25dddc54c6aa3240aecd26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:d3:69:f6:18:fa:58:b7:20:ca:4d:e2:f3:
c8:ec:d8:d4:20:03:2c:08:8f:0f:a5:12:aa:09:2a:
9c:f6:21:fe:74:df:49:54:4f:66:cd:25:ed:e8:51:
da:f7:2a:a8:18:00:32:1d:ab:81:80:4c:9e:48:29:
76:42:60:e6:4e:68:96:aa:62:4b:58:0f:3b:17:b6:
57:21:ef:e3:57:1a:7b:a6:a4:36:01:14:69:37:7e:
a1:0b:8a:a7:8c:0a:fe:94:40:1a:9d:6c:e8:b8:39:
8d:31:07:3e:c1:9f:6e:cd:85:2c:65:af:5b:bc:51:
91:83:eb:94:86:e7:4e:64:0d:b1:14:aa:b4:0d:2b:
23:c1:6d:66:7b:4e:b5:44:1f:32:c7:9a:8d:9e:f5:
96:7a:41:e6:d6:f0:b5:12:44:9a:d4:86:70:05:f9:
73:4c:5e:b1:63:fd:dc:c9:87:59:ce:42:e8:d6:2a:
e3:27:9a:9a:26:2f:d7:dc:4a:11:94:58:e4:e5:1f:
f6:3c:03:4b:2d:56:6b:16:99:21:62:9d:f6:f4:9c:
78:68:0e:9a:5a:81:67:e9:d2:8e:ca:4d:96:ac:68:
1a:c2:23:01:e1:7c:6e:ac:69:7c:28:24:c9:b4:36:
4c:84:45:d8:45:eb:43:c5:86:70:73:5e:0d:aa:05:
1d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:AA:19:47:5E:48:AF:92:EA:25:DD:DC:54:C6:AA:32:40:AE:CD:26
X509v3 Authority Key Identifier:
keyid:74:63:32:39:BA:A2:10:31:06:A6:26:0D:DF:D7:E7:8B:80:94:35:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:15:42:07:d3:3b:64:55:94:31:6c:eb:56:b2:36:99:b0:b5:
ae:e4:85:88:59:97:5a:3e:4f:17:8d:12:57:62:79:46:10:90:
80:91:f6:1a:d7:0f:1a:22:9a:13:53:f6:18:61:0d:bf:e8:f9:
12:e8:63:32:73:f5:22:23:59:b4:de:33:a3:f9:60:b2:ce:b6:
8b:e4:d3:47:80:6d:19:cc:8a:8c:fc:3e:0a:11:e8:e0:b6:95:
ff:45:eb:05:64:4b:98:7c:59:c7:63:f4:eb:ee:92:67:d5:3c:
2c:79:59:ae:40:5e:10:57:8d:42:79:48:98:fc:35:a8:a7:8f:
12:39:f2:6f:37:26:39:f6:28:a0:8c:57:a6:dc:ba:6a:88:e3:
d9:33:63:3b:c9:9c:cd:3a:85:b4:97:ce:5b:55:45:35:7b:8f:
85:1e:39:0a:9a:72:7a:09:76:73:de:45:af:cd:6c:98:55:f2:
23:cd:85:c2:46:29:1a:84:7f:63:d7:f6:89:06:bd:c8:9c:a6:
3d:c1:b9:1e:0b:0b:da:5f:55:b5:48:da:e8:ee:b0:51:95:85:
c3:0b:36:22:06:8d:c4:28:48:8f:01:5e:83:2b:da:49:3c:3e:
cb:4f:e8:fb:8f:00:ee:86:53:15:8c:62:92:78:30:48:23:ce:
33:27:ae:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:05 2025 by rpki-client