Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
File: cF3hUpBmZK56yfIIesTQBoWl1_A.mft (raw, json)
Hash identifier: jSfgjNEMdt6qLIn/+KOFS9lJ1uCkIZR34m6YyDfo1pc=
Subject key identifier: 6D:F0:29:6C:08:57:07:D9:D2:83:38:D9:D5:2A:3C:EF:F9:14:04:6F
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 019511D99D82B9318BFB05461D67A1EF12AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
Manifest number: 1458
Signing time: Mon 17 Feb 2025 03:00:28 +0000
Manifest this update: Mon 17 Feb 2025 03:00:28 +0000
Manifest next update: Tue 18 Feb 2025 03:00:28 +0000
Files and hashes: 1: TKoxALo9u8PRYJQQjNMDBzOManE.roa (hash: e6LRQQhGn2Pm43QUsi5AMgfehOrdW1tISUFnEIiJny4=)
2: cF3hUpBmZK56yfIIesTQBoWl1_A.crl (hash: 5t4tCG0v1WYObh5ppKZRiJH4Eo//PO6dAH5NBTiquuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:9d:82:b9:31:8b:fb:05:46:1d:67:a1:ef:12:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Feb 17 03:00:28 2025 GMT
Not After : Feb 18 03:00:28 2025 GMT
Subject: CN=6df0296c085707d9d28338d9d52a3ceff914046f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d4:6d:e1:a1:5e:ec:b2:74:76:30:63:29:c5:
05:67:53:cd:ca:57:8d:c5:61:5c:db:c4:12:12:32:
c1:57:21:50:a8:be:1d:10:9a:84:70:38:cc:af:cd:
ba:9d:01:7b:33:12:f3:ee:ad:66:3b:e8:c2:e5:82:
04:cd:bb:14:3a:cd:5f:d0:67:57:b9:8a:b0:c2:17:
f6:1a:3d:2b:e7:c0:14:4c:49:1b:6c:18:3f:29:67:
26:17:4a:4c:f3:b8:bd:52:d7:b4:02:30:25:b9:5a:
c6:52:db:5e:43:2c:26:5a:39:21:a1:53:02:9c:6c:
9e:fb:09:d6:1b:3d:16:2c:06:97:a4:2f:a1:80:9e:
dc:16:1a:4b:68:5a:16:36:8d:bc:b6:bb:20:64:7a:
b2:2d:31:3d:9f:2f:e7:9a:32:09:4e:f2:b1:50:db:
37:4e:60:ef:b0:93:c5:0a:0e:e5:2b:b8:5b:dc:7d:
0b:54:f9:b6:2a:60:83:92:45:41:06:28:f0:b2:ba:
87:50:c6:02:94:c5:f2:89:75:60:c8:f1:bb:84:3a:
db:6e:20:03:eb:7a:84:e3:f1:55:55:6b:fc:1d:c2:
6a:b7:73:a2:e7:bf:20:6d:27:79:d4:07:5b:07:23:
50:76:ea:15:ed:f2:0c:e6:8f:7a:44:3f:25:40:e1:
9c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F0:29:6C:08:57:07:D9:D2:83:38:D9:D5:2A:3C:EF:F9:14:04:6F
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:41:32:51:8d:8d:ad:57:21:ed:9e:80:07:39:f6:f0:eb:2a:
28:cc:a8:16:4c:fe:c1:bd:ab:dc:f2:cd:fe:40:eb:17:84:25:
73:46:04:9a:90:7f:58:b9:50:f0:05:ad:83:f7:24:e5:c1:4b:
52:41:d9:60:d0:45:37:24:f9:85:51:ff:5d:5e:74:bf:59:d7:
fa:67:d5:0f:b5:35:06:43:d4:ed:62:ba:32:f1:7f:9f:99:8e:
0f:47:d3:20:37:29:a3:89:17:1a:4e:4b:fb:4b:c7:f1:76:e8:
74:74:f5:14:88:d7:14:33:e2:e0:5c:67:44:41:7d:86:b0:b5:
35:42:e4:f1:12:25:21:d1:84:fb:49:2f:6d:25:7c:09:c8:f5:
cc:59:a5:59:1e:bf:9d:1a:49:33:65:8a:37:98:61:56:7a:ee:
06:74:ab:4a:be:15:34:04:af:0c:b8:5f:02:4e:40:b2:c9:aa:
57:59:21:30:9f:48:7c:56:f7:78:71:63:a0:ca:db:36:89:5c:
f8:22:52:49:68:4f:c7:b7:61:97:bf:c6:cb:30:39:71:9e:94:
68:97:8b:07:69:66:5d:5d:4a:f5:af:39:37:10:7c:2f:b1:53:
1c:e8:c0:1d:74:a8:d0:33:73:4d:5d:6b:da:e9:46:24:81:7c:
78:9a:dd:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:38 2025 by rpki-client