Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
File: sICdwHvAd1GY8vMVVBUvNWqD93A.mft (raw, json)
Hash identifier: a5IEnFjKyJ0RiaTJOGcDac9ee9R+RKlbN+sUi/+yRN8=
Subject key identifier: BB:D1:45:EA:96:07:E3:A4:6A:D9:EF:C0:21:61:A8:98:3A:8F:02:17
Authority key identifier: B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
Certificate issuer: /CN=b0809dc07bc0775198f2f31554152f356a83f770
Certificate serial: 0194BB294B04F1C167BEE91FD4E40B1C959D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
Manifest number: 13BD
Signing time: Fri 31 Jan 2025 07:00:33 +0000
Manifest this update: Fri 31 Jan 2025 07:00:33 +0000
Manifest next update: Sat 01 Feb 2025 07:00:33 +0000
Files and hashes: 1: _vqUTJBaKVA__-YzImtaOgUdlPc.roa (hash: WjwzW+i6IqptZA1G2R9oYtf2Xiry6o+GVW/+RmHCnfA=)
2: sICdwHvAd1GY8vMVVBUvNWqD93A.crl (hash: ndZsu/DwWwr0m9xOOn5sFh6f6E8XeoGoBESk7YbZpY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:4b:04:f1:c1:67:be:e9:1f:d4:e4:0b:1c:95:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0809dc07bc0775198f2f31554152f356a83f770
Validity
Not Before: Jan 31 07:00:33 2025 GMT
Not After : Feb 1 07:00:33 2025 GMT
Subject: CN=bbd145ea9607e3a46ad9efc02161a8983a8f0217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ad:ac:4e:71:be:cc:c8:58:0d:e0:8f:dd:e5:
ef:9d:30:19:1e:3a:4d:81:e4:24:8b:7a:08:86:9c:
b7:cf:9a:9a:55:6d:84:49:ba:77:96:95:92:c6:98:
2e:ed:03:8a:f8:42:e2:85:78:05:78:a2:13:57:94:
c8:8a:a5:e2:e4:06:e7:4c:d9:12:78:db:fe:11:51:
34:ad:f0:13:ee:c4:59:d8:77:b6:d2:d7:15:ea:4d:
29:49:25:31:79:46:51:ef:e1:b1:5c:7a:7f:fe:14:
49:86:f4:c4:05:68:fe:df:36:9f:1e:09:df:c3:6d:
1c:ac:8e:fd:cc:4f:f3:54:fb:fb:5a:ac:8c:11:c5:
e1:73:4f:5f:5c:34:7e:37:c3:c0:b0:05:cb:13:04:
56:2c:8b:2f:89:e1:98:af:74:45:d2:c8:b3:03:bb:
a8:8a:eb:a2:88:a8:e4:27:9d:33:1b:19:7e:f4:dd:
d8:9b:d9:e4:e5:ec:4b:60:e8:e1:ba:08:7a:76:02:
48:68:0c:a2:91:1d:ca:3b:80:83:de:1c:7f:96:36:
60:d0:34:1d:81:1c:05:02:64:d5:59:5f:bf:aa:1f:
30:ad:74:bb:3d:85:d8:19:e6:bf:85:f4:33:ba:63:
9d:5b:bf:36:59:11:d6:b2:d7:0e:a6:7d:b8:e7:9a:
37:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D1:45:EA:96:07:E3:A4:6A:D9:EF:C0:21:61:A8:98:3A:8F:02:17
X509v3 Authority Key Identifier:
keyid:B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ed:e8:d5:df:84:a3:e2:0a:ce:74:0d:29:58:ad:d5:69:06:
76:4b:d3:1f:9b:9f:38:d1:90:85:74:33:56:c8:dd:d7:a6:3d:
68:6f:9a:33:f5:5b:8e:6f:e1:96:89:36:b6:cf:af:0a:47:70:
bb:8c:e6:c7:03:5b:66:81:57:42:41:14:dd:bc:18:df:50:37:
05:f7:35:4d:4a:e9:db:a9:3e:ef:12:9b:82:96:df:4b:59:8e:
68:b7:c8:c6:fd:6e:99:15:d7:4e:71:c3:e7:57:dd:33:71:ed:
3c:ca:aa:58:70:f6:c7:c0:8e:a0:2b:8c:06:4e:46:78:a8:86:
47:56:87:a2:5d:0a:83:0d:6c:61:f9:02:4c:b4:63:e0:c4:0f:
4e:fc:16:ae:6a:1d:56:3d:78:cb:b7:60:e1:b0:2b:bd:90:8b:
4a:b0:f4:c4:ec:56:c1:e8:e1:77:27:2a:14:b3:28:d5:88:d4:
0b:32:e6:67:af:89:97:dd:72:a3:48:03:23:c6:5e:27:3a:34:
62:02:9a:68:9b:ac:8a:d7:30:69:6d:c2:f6:3f:a7:2c:9b:b3:
02:eb:24:59:d1:c1:78:89:d4:c4:66:e1:e1:1a:8b:8c:31:76:
7f:3a:dc:26:55:42:6c:a7:00:d7:83:22:5f:05:92:63:d9:26:
72:6f:ed:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:26:58 2025 by rpki-client on console-fra.rpki-client.org