Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: 6t/Dvv6juMQtCdNyHzeFcGptEIzBO6KkKnk7yNENsKM=
Subject key identifier: CC:BC:80:20:46:F3:21:6A:E3:8E:31:96:51:3C:98:B2:16:D0:FB:4E
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 0194BA842237DE437FD230AA15E2F9B142FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 0E83
Signing time: Fri 31 Jan 2025 04:00:09 +0000
Manifest this update: Fri 31 Jan 2025 04:00:09 +0000
Manifest next update: Sat 01 Feb 2025 04:00:09 +0000
Files and hashes: 1: Lirq-zsF2DJ9HSd8FBwZm-dq_PM.roa (hash: DEsCxQ0UWNIneJAQeHuxPuouMfS+o3gP/21W0HHwfiM=)
2: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: /Mez2A50BEKoH28iywVK4mhUHw4afvslJjfywBFinxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:22:37:de:43:7f:d2:30:aa:15:e2:f9:b1:42:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Jan 31 04:00:09 2025 GMT
Not After : Feb 1 04:00:09 2025 GMT
Subject: CN=ccbc802046f3216ae38e3196513c98b216d0fb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:19:82:ea:52:93:2e:a4:f0:1d:a6:0f:ba:
3b:fc:46:3e:20:e0:e3:cb:f6:02:35:cd:44:84:6c:
02:19:a7:2b:50:f4:84:11:e9:66:0b:92:b5:22:1e:
18:76:bb:4b:06:b0:94:26:09:1b:de:70:fc:4b:02:
50:59:b8:b2:3f:73:c5:a3:fc:f1:0d:14:bf:93:b8:
c8:f8:0d:47:81:72:4a:41:b4:ac:46:17:72:c3:fd:
5d:39:1f:19:6c:cb:0a:8e:27:eb:59:cb:8f:e4:cc:
d5:fe:81:26:85:8e:59:67:f1:26:8f:a2:0a:c6:47:
a5:ed:49:20:6a:df:0c:4c:4c:ce:88:a5:63:5b:7e:
ba:31:0c:49:ac:73:56:2a:c0:e5:b1:f8:81:66:4f:
7f:9d:9e:ba:6b:33:4e:3c:18:61:34:0f:89:ad:2b:
20:30:25:1c:e0:0b:bf:8a:60:48:bf:f5:d2:12:73:
d9:78:f3:5e:e2:61:b2:ab:24:a3:68:71:55:86:c2:
5f:3f:92:30:85:ea:3e:93:59:a3:fb:bb:df:0d:b7:
cc:8c:40:b7:6e:92:ac:8b:1a:18:78:67:ab:d1:0b:
5e:90:b2:1c:c4:ab:68:4a:63:78:cf:9c:12:b7:06:
1f:0d:a7:2c:fe:95:60:fa:fa:e5:6e:3b:1c:b9:76:
92:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BC:80:20:46:F3:21:6A:E3:8E:31:96:51:3C:98:B2:16:D0:FB:4E
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:df:08:5a:30:38:ae:08:91:c1:49:74:c4:66:eb:41:a8:85:
da:d7:f8:9e:6f:1e:3e:15:5b:0a:b8:e8:c3:7f:ff:80:f4:b8:
3d:1b:ea:b4:6e:f1:52:b0:c1:51:54:af:87:81:1d:c3:02:5f:
b3:a9:33:66:12:f3:cf:d4:20:7e:41:d8:8a:62:69:50:31:cb:
b0:0b:89:d8:09:7a:be:16:55:16:35:5c:27:65:bc:c8:49:78:
93:ce:b9:f9:9c:07:a3:93:38:1c:8e:a5:0a:ef:fc:29:0a:bd:
a4:eb:8b:dc:55:29:d7:28:3f:78:31:22:47:a0:e4:00:6b:ca:
42:8c:8f:e0:d0:34:99:fd:f2:fc:6c:db:e8:a9:25:2c:b0:2c:
d6:59:7c:86:91:1f:1c:b3:b3:e0:2f:78:85:00:c4:f9:6b:39:
c1:68:06:b6:ea:7e:ec:0f:b1:0f:9f:e6:3b:7c:c7:83:79:eb:
4e:9c:51:6a:92:7e:8d:ff:c6:7a:8d:9e:ae:06:85:ee:2a:52:
34:d3:53:94:27:63:dd:ea:bd:f2:cc:be:a8:e4:66:5f:2c:bb:
28:43:9c:e1:1d:49:db:e8:b2:c4:8c:59:7d:0d:63:78:01:1f:
f3:9a:a4:5b:e6:e5:89:2c:15:83:6b:da:5a:58:2c:72:42:df:
ef:b1:b6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:27:15 2025 by rpki-client on console-fra.rpki-client.org