Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
File: a_CO0PpuGTufOlC_cmtB0MMpspc.mft (raw, json)
Hash identifier: LT9RzKREOYHOAVWDOd6vz7rqgoOgkiFY6LlO6YGLca4=
Subject key identifier: 67:C9:78:83:33:07:5F:7E:C5:E1:8C:D0:36:58:68:6C:5D:10:7B:19
Authority key identifier: 6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
Certificate issuer: /CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Certificate serial: 0194BB5FF17208850BF63CE01394BF5B94FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
Manifest number: 19
Signing time: Fri 31 Jan 2025 08:00:14 +0000
Manifest this update: Fri 31 Jan 2025 08:00:14 +0000
Manifest next update: Sat 01 Feb 2025 08:00:14 +0000
Files and hashes: 1: a_CO0PpuGTufOlC_cmtB0MMpspc.crl (hash: oJCJSpr8C/Idqa5FBr4Eq9flii56/5F/wvgi5CO/KAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f1:72:08:85:0b:f6:3c:e0:13:94:bf:5b:94:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Validity
Not Before: Jan 31 08:00:14 2025 GMT
Not After : Feb 1 08:00:14 2025 GMT
Subject: CN=67c9788333075f7ec5e18cd03658686c5d107b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:89:14:30:b5:9f:1c:56:2b:89:fd:9e:2f:
be:be:5e:7a:b3:25:1b:32:bd:b7:a9:cf:d4:6a:78:
0c:7d:1e:16:52:70:88:9e:fa:ce:46:b6:10:bb:71:
ad:01:7d:8b:28:12:a6:20:ab:0d:03:18:e6:d5:61:
63:dc:8e:b8:7c:db:71:81:11:96:e0:be:0f:72:92:
0e:79:43:3a:8c:99:eb:8b:3f:da:6e:68:7f:80:81:
1c:bb:bf:33:f1:93:b0:39:29:4e:b0:d9:fe:42:0e:
b9:c1:20:c7:ea:22:ee:6e:df:71:30:60:09:d4:c0:
e1:13:34:86:39:92:22:d3:ac:7f:ef:eb:b2:3e:8f:
3b:fa:1f:58:a4:33:35:75:bb:77:07:fe:92:38:54:
79:c3:4b:2a:27:db:70:a4:7e:c1:15:63:82:41:9b:
8a:ce:be:6c:52:14:bb:ef:1f:0d:86:c2:29:47:d3:
5c:9d:69:60:d7:31:70:82:84:a6:3e:a5:60:e8:f5:
e0:a0:2f:4e:e8:0e:d7:d0:62:59:a4:8c:bd:28:aa:
3e:75:6f:24:a5:eb:4d:87:14:1d:3c:54:23:07:30:
95:a1:68:a9:ce:0d:a7:1d:be:0c:cc:6d:99:ad:7f:
f7:0b:68:11:b9:71:6e:40:7c:ea:86:89:55:a3:50:
20:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C9:78:83:33:07:5F:7E:C5:E1:8C:D0:36:58:68:6C:5D:10:7B:19
X509v3 Authority Key Identifier:
keyid:6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:24:56:69:fc:ed:d9:da:41:9d:ea:b2:4f:a6:c3:75:75:70:
5f:e5:a7:be:cd:e0:63:32:f8:15:dd:92:b5:90:95:30:14:67:
0e:24:3d:9b:c0:ce:ca:84:22:14:86:03:2f:10:fd:84:d0:d0:
f4:48:03:cb:07:38:f1:e5:31:05:a1:1d:c0:59:54:24:7a:6c:
43:46:d1:75:2c:2e:d3:ce:58:ec:3f:81:e8:03:b5:cf:fa:f8:
5b:a6:42:d4:54:87:fe:3b:85:1c:34:84:fb:e5:f0:63:e6:ff:
7d:5b:01:a8:38:31:37:a8:f3:c3:0e:5b:89:d4:c5:cc:3a:54:
b1:6c:a8:fb:b0:7c:cc:ea:7e:e8:b2:d0:03:73:86:9b:8d:a2:
25:2f:4c:65:cc:55:e8:9c:2c:a8:a2:94:71:01:f8:46:a2:ad:
cf:f5:d0:dc:ef:43:6f:6b:9a:5d:4f:3d:1e:c2:38:32:63:3d:
03:29:8f:2e:19:67:54:91:95:ff:ff:b2:aa:f5:ca:83:6d:3e:
31:b2:c6:3e:b1:0c:0f:43:a2:88:da:47:c8:be:3c:32:22:35:
cd:62:80:3a:65:8d:30:f9:81:72:5b:67:31:96:82:ac:00:fd:
10:6e:21:62:9c:87:a2:c1:bc:0e:0d:a8:bb:85:ae:f7:5f:e8:
ab:26:52:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:27:58 2025 by rpki-client on console-fra.rpki-client.org