Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: EMnmFEoR4NymS0/nx/XYOtgUVN1nwFwEXooYqDPyHqU=
Subject key identifier: EA:97:1E:FF:02:25:7A:55:B5:15:3B:BC:3C:77:82:B3:C0:AB:A9:C6
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0194BA842AAC213EAE831EAB1FAB44A32D6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 053C
Signing time: Fri 31 Jan 2025 04:00:11 +0000
Manifest this update: Fri 31 Jan 2025 04:00:11 +0000
Manifest next update: Sat 01 Feb 2025 04:00:11 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: qsi9DG7hdM1zLjsuVDwjIjBNyBudjkAXUDNyNnC7/IE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:2a:ac:21:3e:ae:83:1e:ab:1f:ab:44:a3:2d:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Jan 31 04:00:11 2025 GMT
Not After : Feb 1 04:00:11 2025 GMT
Subject: CN=ea971eff02257a55b5153bbc3c7782b3c0aba9c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:70:c0:54:60:b3:de:2d:98:56:f5:ee:c1:a4:
91:33:df:ac:ee:05:45:65:0e:38:56:ad:2f:12:b3:
f2:f0:71:39:8b:25:4e:5d:d1:96:06:f8:c4:54:f0:
2d:bc:a2:df:32:b5:0b:00:90:f8:9d:71:6b:2b:71:
c6:1a:44:7f:10:5e:ab:9b:77:a5:ce:47:87:38:08:
53:a5:86:87:da:cc:02:2e:cd:1b:c2:1a:9d:3e:27:
fb:2a:c4:cd:ef:60:8d:68:fb:a5:5f:74:56:e1:85:
2e:27:c0:c9:ed:06:d9:2f:d4:db:f2:46:c5:83:99:
92:77:67:a5:2f:0c:06:46:39:7d:e4:e3:b9:2a:27:
7b:8c:d7:12:2e:b2:e4:57:74:9d:4b:9b:98:fd:7b:
44:41:a1:89:bc:52:90:27:31:2f:b5:2f:ca:07:bb:
ae:e4:fb:0b:5a:2a:b0:62:ea:42:6b:a5:e9:a2:06:
28:b9:8a:5f:20:c7:17:22:68:f6:2f:2f:81:a7:f2:
00:e4:2a:84:bd:24:61:4b:11:fa:34:83:e0:4b:c9:
e9:f1:49:a6:45:3b:99:21:a9:03:87:f2:b1:28:c4:
c7:ed:e0:c7:1c:a3:b1:07:be:f2:e9:89:38:6a:23:
a5:85:5c:44:70:a6:d4:4c:93:7f:63:55:22:a4:74:
8b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:97:1E:FF:02:25:7A:55:B5:15:3B:BC:3C:77:82:B3:C0:AB:A9:C6
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:a0:4c:47:af:e7:7c:0b:22:47:7d:b9:ae:77:44:b9:e4:45:
c0:80:d7:56:be:86:eb:cb:14:0d:1a:07:86:d5:65:15:06:d7:
fb:8c:d1:d9:1c:72:64:15:d4:76:6e:ab:5a:b3:d9:d2:b6:7c:
b1:01:8d:6d:eb:8e:e0:6d:fb:5b:f3:31:44:74:ef:ca:04:54:
37:7e:64:1e:3b:5f:f7:c0:bb:70:9b:27:9f:92:74:7d:53:74:
15:a4:d0:f7:06:4e:6d:1e:58:88:6d:25:13:3a:7d:61:93:da:
e6:c2:89:92:8b:ab:09:2f:a4:48:87:41:94:66:52:46:64:29:
77:7f:d0:d3:2b:eb:49:a4:32:11:5a:ff:05:e2:1f:cb:1c:61:
1f:41:18:ee:23:de:16:62:a3:d0:d2:cb:2a:5e:c8:1d:75:4b:
d6:ea:e9:1b:fc:a1:14:96:5b:2e:0d:00:3e:4b:28:5d:c7:23:
bd:b9:91:c8:4d:e4:5c:da:e2:8f:c7:e8:ca:d6:e5:92:d4:44:
e2:bc:aa:8c:60:d5:7a:e2:ab:b9:13:80:b6:b4:04:14:ed:91:
ba:47:fe:f2:2d:5e:6b:0f:0c:fa:37:22:89:47:15:14:63:c5:
fc:3d:0e:04:57:12:77:d7:83:eb:aa:c0:b6:60:1e:60:6e:3a:
24:76:38:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:41 2025 by rpki-client on console-fra.rpki-client.org