Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: irciZjec2BPvM8FSAQOuueEbAp9NkWRSVm8yew5OdQI=
Subject key identifier: 33:AF:85:CE:41:F4:CD:7E:23:F9:38:17:A8:65:2B:FA:29:F5:6B:4C
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 01951247489B8C9C249F4EF0DC5F87573A19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0AC0
Signing time: Mon 17 Feb 2025 05:00:16 +0000
Manifest this update: Mon 17 Feb 2025 05:00:16 +0000
Manifest next update: Tue 18 Feb 2025 05:00:16 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: YnORAnotJ3/uX0kZlco0rnDb3ZsnmtxqfpEv7xX0s0c=)
3: MdwNzYBJU13swBaE5UOOOcRBz5k.roa (hash: +Fd+WQi5wLctEErQiuTXcED6kILUDNrn9fQ2BbzAxhc=)
4: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:48:9b:8c:9c:24:9f:4e:f0:dc:5f:87:57:3a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Feb 17 05:00:16 2025 GMT
Not After : Feb 18 05:00:16 2025 GMT
Subject: CN=33af85ce41f4cd7e23f93817a8652bfa29f56b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c9:57:11:b6:6a:72:96:77:4d:38:74:9f:2f:
0e:29:7a:dd:b1:e2:1d:59:ab:8d:9c:8e:8e:c0:d3:
e1:ef:62:5b:84:81:8e:ca:36:be:8a:ec:a8:87:98:
be:4c:18:e5:0e:a6:2f:c5:39:9a:fb:56:09:8e:99:
b4:09:d7:a8:24:b6:16:09:42:3e:c9:df:a2:e7:ed:
75:a9:c7:7b:1b:0e:48:c0:ce:6b:b7:a7:2d:e2:48:
39:24:82:45:74:4f:3f:fd:ce:3d:97:82:5c:c1:a0:
e3:5d:8f:4d:89:02:25:ff:5b:a7:8a:cf:1c:ac:50:
30:e3:bc:85:df:e9:57:c6:ac:08:4a:df:ea:b7:14:
f0:dc:5d:30:d6:b3:96:9c:2b:cf:fb:a5:e3:a0:94:
6a:13:19:d8:fd:8d:8d:36:53:66:16:eb:20:19:77:
77:8e:78:8f:55:3c:e7:fb:c9:28:7d:51:27:ea:d5:
49:c8:19:7e:64:0a:e0:a9:9e:eb:73:5d:66:91:b4:
3c:ec:b6:7c:93:0f:fe:6d:16:c9:c0:3c:df:68:02:
a6:f4:fc:fd:cc:e4:b3:50:1f:df:ab:71:38:c9:a8:
31:1b:a0:7b:0e:57:f4:82:72:e2:86:07:6d:2b:e3:
da:44:05:80:8f:25:f1:41:04:45:6a:e0:14:20:1b:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AF:85:CE:41:F4:CD:7E:23:F9:38:17:A8:65:2B:FA:29:F5:6B:4C
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:2f:41:3b:12:d9:60:4c:97:1a:f3:52:a3:74:d6:ef:9c:e2:
94:c5:bc:75:4a:4a:5f:c6:1b:e9:31:d8:24:0c:70:8c:d2:35:
2e:b3:b3:c8:b3:61:da:0b:83:f1:08:37:a5:19:0b:07:f5:5a:
51:6c:f1:a7:3e:98:cf:ce:c3:59:23:91:2f:9a:98:14:71:14:
bb:b2:3c:e5:aa:02:ff:4f:d7:bb:01:a0:cc:3e:c1:97:94:a4:
de:ef:92:4d:89:d9:38:84:a5:46:c8:a4:c5:dd:b1:cd:97:c6:
12:12:c8:44:b0:c7:b8:9d:39:b5:41:2a:40:9e:65:2a:1c:39:
fb:1a:9a:9a:36:19:9f:d3:00:92:cf:a2:24:85:41:2d:06:d2:
05:64:cf:2c:9f:3c:26:ff:d8:1a:02:ef:b2:e3:54:28:d0:6d:
5f:f1:6e:54:34:1c:5a:78:2b:64:e4:4b:7f:31:7c:dc:cd:9a:
83:96:e0:03:e7:77:da:3c:3f:40:6b:c3:e4:55:0f:87:02:d6:
1a:b1:55:e5:46:40:05:3f:ab:42:8b:a5:62:66:57:f6:f4:2a:
47:01:39:9a:d9:14:1b:b7:a5:cb:c3:11:d3:82:0a:fc:e9:dc:
9d:cf:3e:08:7b:e2:d1:30:c2:da:8c:a7:f3:52:f5:44:7d:2c:
56:f5:f1:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:01 2025 by rpki-client