Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
File: i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft (raw, json)
Hash identifier: O5RnPjF9YJ0EbceA6mBlgXy/9Pk07T+cymXQn3i2Vxc=
Subject key identifier: F1:B1:0D:7C:EF:F7:79:5D:2C:A2:BD:79:12:E2:9B:D1:6B:D5:AC:E3
Authority key identifier: 8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
Certificate issuer: /CN=8bbb538fc4f8f1984100640dd8435766a6206723
Certificate serial: 0195113484E67A85953F2A5691B898B32F70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
Manifest number: 145A
Signing time: Mon 17 Feb 2025 00:00:09 +0000
Manifest this update: Mon 17 Feb 2025 00:00:09 +0000
Manifest next update: Tue 18 Feb 2025 00:00:09 +0000
Files and hashes: 1: F-XmOCCi8zdRGEXsEW8GIj9dotE.roa (hash: aZqtC7YnlJ57aaBe7FRji3vyD3JPHZ6fm+Qh4aIyCFw=)
2: i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl (hash: Whlv4Fgg8kh0m+AaYr4kxm2+ZkzON3XHjhOM3NT2P6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:84:e6:7a:85:95:3f:2a:56:91:b8:98:b3:2f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbb538fc4f8f1984100640dd8435766a6206723
Validity
Not Before: Feb 17 00:00:09 2025 GMT
Not After : Feb 18 00:00:09 2025 GMT
Subject: CN=f1b10d7ceff7795d2ca2bd7912e29bd16bd5ace3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f0:ca:6a:77:20:a1:2d:b1:6c:fe:cb:95:5b:
d0:b8:9d:78:15:0f:27:01:a9:00:f5:8a:d5:86:0a:
5f:5d:67:66:77:01:26:db:69:ca:be:dd:93:bb:0c:
9a:11:2f:d8:00:02:e7:3e:fc:bc:20:d9:68:65:f0:
b6:7f:f8:94:96:72:36:01:93:07:a7:73:ac:85:0c:
f1:1d:d5:3a:18:65:de:94:e0:c8:82:9e:c8:0f:8b:
48:ef:bc:36:76:d7:a4:ee:62:63:6a:53:c5:77:5d:
30:df:aa:d0:20:b0:dd:ab:e5:0b:74:d2:36:7e:cf:
bb:7e:e1:5c:cf:d2:51:13:6d:6a:49:60:a7:f7:54:
98:45:bd:d6:d8:9c:aa:3d:94:08:8c:e2:c0:d8:9f:
15:d7:e3:74:48:23:3c:fc:95:71:ba:09:fa:85:90:
ca:de:01:df:89:6c:71:fe:1d:48:c1:f4:ea:c9:62:
9a:99:99:d7:6b:bc:ce:71:19:92:09:97:6c:1d:b9:
2d:28:29:61:04:db:82:fc:2f:70:fe:ed:86:37:73:
36:9b:49:f1:44:14:a3:ec:6c:4f:e3:d9:9a:48:e4:
2d:f4:9b:b1:e7:bd:b6:3a:0b:46:c8:05:0b:54:14:
4b:de:b1:82:cf:50:af:a3:76:05:72:f6:dc:76:d4:
1f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B1:0D:7C:EF:F7:79:5D:2C:A2:BD:79:12:E2:9B:D1:6B:D5:AC:E3
X509v3 Authority Key Identifier:
keyid:8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:31:45:97:d5:e8:cb:16:a2:05:15:f0:b4:72:b1:0c:01:24:
25:f0:8b:23:31:a3:6f:b1:c7:7c:7a:85:ce:db:dc:20:1e:94:
19:bb:a7:f1:9f:1c:94:bd:a0:4d:07:5b:66:dd:9f:a6:b9:7f:
cd:8d:93:24:e0:f6:dd:66:31:b6:f6:ad:60:3d:ad:eb:59:50:
c1:d5:62:29:1b:97:f0:3f:c1:e2:6a:cf:28:dc:10:39:b9:e2:
28:a4:89:0a:65:6c:b9:81:55:31:72:95:39:a9:4d:ce:d7:ad:
ae:76:ec:de:bd:21:31:b5:c2:35:d2:bc:0e:4c:d6:54:44:fc:
14:a3:cd:c2:96:93:31:0f:7a:65:71:f9:6c:91:12:73:56:93:
57:0b:ef:82:db:e9:62:77:63:f7:0d:c3:d0:13:46:d0:a9:ea:
9f:d4:48:3d:ce:68:06:81:2a:11:54:b7:d4:43:e5:0e:86:41:
7d:1f:3d:98:ab:5f:d6:3b:be:7c:ac:9d:50:2f:fa:41:79:e6:
ca:06:76:16:f6:f4:02:c6:2b:d0:f5:79:5f:c2:2a:d8:2c:91:
a3:0c:81:50:d0:fa:6c:00:f3:48:d5:e6:21:5a:6c:3a:a8:ce:
1b:70:6b:17:b6:59:db:c9:db:7c:8e:73:2f:53:80:ef:7b:43:
09:1c:38:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:23 2025 by rpki-client