Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: KR06VL+hwYdLTIu4whtapM1sREj9oVcKylmJNHv+EXY=
Subject key identifier: 13:FA:6A:7A:BA:F8:C7:33:9D:DD:79:4F:50:0C:09:3C:DD:87:AE:74
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 0194BABB5F2DD5D828668C8F77056886A589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 142A
Signing time: Fri 31 Jan 2025 05:00:29 +0000
Manifest this update: Fri 31 Jan 2025 05:00:29 +0000
Manifest next update: Sat 01 Feb 2025 05:00:29 +0000
Files and hashes: 1: 1-d6DUI7mmJKHILGE-ACGJbIFV40.roa (hash: WM+ispXO9qKwdYzXWtwDmpPip6PK1PIBVYZaFFY6Sl4=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: G9ji173OzbmdyRcLbMU9zqJK8vXZNno5hnRXZpi+1CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:5f:2d:d5:d8:28:66:8c:8f:77:05:68:86:a5:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Jan 31 05:00:29 2025 GMT
Not After : Feb 1 05:00:29 2025 GMT
Subject: CN=13fa6a7abaf8c7339ddd794f500c093cdd87ae74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:13:da:9d:dd:7f:9c:e2:24:6d:30:e0:d9:a9:
d8:81:cc:78:c8:8d:a0:9f:75:81:26:93:a8:fa:1f:
5a:34:41:75:e3:26:09:a1:1d:c8:5e:54:c5:c6:2a:
ef:47:e8:18:58:18:9c:34:d7:2e:80:e0:95:85:ff:
18:80:d3:1c:dc:76:29:f2:88:28:1a:c6:e7:e0:5d:
8d:c8:a1:95:f0:d1:49:e0:4f:7e:ea:e6:fd:e4:d2:
31:59:27:a3:2b:49:6d:18:55:d7:15:c4:6f:80:3e:
21:7c:0f:21:93:54:2f:a5:14:da:97:f5:5f:90:c6:
8f:9e:d5:a8:6f:1a:23:1a:df:2a:e1:4f:6c:77:4f:
80:b3:49:f4:84:0d:bc:9d:c1:31:0f:43:16:77:f5:
1f:2b:d1:8b:dd:3e:62:50:b2:04:97:c2:38:4b:b2:
f0:fe:f4:e4:f2:13:09:8e:79:f6:5a:c5:7e:19:e3:
e2:6f:43:51:ef:39:4f:54:72:01:e4:a9:ac:e6:fb:
06:fd:37:ed:ab:95:af:8c:37:5b:46:e0:a2:ce:69:
f8:07:62:a9:00:34:72:76:50:79:76:bb:07:76:80:
e0:67:de:87:88:ff:e8:a3:90:a8:5d:47:ff:9c:01:
99:77:a9:3f:da:b0:79:3c:78:a9:65:f8:24:d8:56:
8c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FA:6A:7A:BA:F8:C7:33:9D:DD:79:4F:50:0C:09:3C:DD:87:AE:74
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:cb:7d:23:1a:1f:78:23:b4:0f:57:98:53:3b:70:bd:bb:0b:
a7:63:36:2c:dc:32:0c:17:f7:be:bf:d7:49:87:c4:cf:22:56:
aa:9c:92:12:d5:2e:be:e9:cf:d1:6d:96:d6:34:e2:57:84:0b:
66:a6:21:a6:db:14:e2:ca:e7:9c:43:3d:8e:ad:7b:4a:9b:4b:
6d:60:83:d6:56:59:db:47:5e:0f:0f:3a:1c:c8:ea:14:91:f9:
36:82:d9:23:c0:14:57:fa:23:d4:22:8c:3b:19:93:0f:66:26:
69:c9:6f:e6:5e:78:86:12:68:c7:d2:c6:ea:ba:7f:55:2c:9d:
34:ae:33:b4:1f:85:2a:10:2d:3c:ca:14:e9:04:76:58:fe:47:
bf:ac:17:de:e4:95:83:3e:da:f7:ed:91:92:d7:78:f3:21:cf:
ab:38:7e:a1:66:cc:c3:a8:71:0f:71:3e:dc:52:85:cd:f5:c9:
0e:6e:a4:8e:9d:18:43:4b:82:86:21:eb:1e:a1:8e:35:cd:13:
e3:40:77:13:bc:df:45:54:f0:87:30:f7:4f:07:79:f1:1f:bb:
13:d2:74:1a:5e:9b:43:2d:71:87:93:b2:84:7d:31:17:27:5f:
7d:6e:20:7f:5c:3f:54:6a:56:a4:36:b3:8c:8d:26:ef:5c:4e:
5a:60:74:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:02 2025 by rpki-client on console-fra.rpki-client.org