Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
File: PO7GxHlRspnHCAZYPXkdUM2BbF8.mft (raw, json)
Hash identifier: uEjWFZf+Vmj2PO7Yo3gmWOChxjhYoMLI9xnljp8y5s4=
Subject key identifier: 46:0B:59:FF:45:79:D8:76:79:A9:40:51:E5:36:54:6A:E8:FF:67:D6
Authority key identifier: 3C:EE:C6:C4:79:51:B2:99:C7:08:06:58:3D:79:1D:50:CD:81:6C:5F
Certificate issuer: /CN=3ceec6c47951b299c70806583d791d50cd816c5f
Certificate serial: 0194BB974D294244F7425BD913FADCC17E26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
Manifest number: 79
Signing time: Fri 31 Jan 2025 09:00:42 +0000
Manifest this update: Fri 31 Jan 2025 09:00:42 +0000
Manifest next update: Sat 01 Feb 2025 09:00:42 +0000
Files and hashes: 1: PO7GxHlRspnHCAZYPXkdUM2BbF8.crl (hash: RYyyTYGmMOS9mZMToTl6yWx/DyoLf70Oaoksqj1iXgU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:4d:29:42:44:f7:42:5b:d9:13:fa:dc:c1:7e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ceec6c47951b299c70806583d791d50cd816c5f
Validity
Not Before: Jan 31 09:00:42 2025 GMT
Not After : Feb 1 09:00:42 2025 GMT
Subject: CN=460b59ff4579d87679a94051e536546ae8ff67d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:12:92:8f:04:38:cd:c4:72:58:1e:d2:bc:
75:62:b4:b7:47:51:c1:bf:f6:c9:55:cf:d3:9a:03:
f8:d7:56:c2:2f:60:ac:86:bc:c7:4b:48:61:4d:3b:
6c:72:3d:f8:e7:de:92:35:e8:e8:54:52:95:29:b5:
b7:e3:fb:80:4f:66:eb:7e:92:69:39:79:a1:63:46:
cd:72:15:e1:85:ea:17:04:06:b1:ed:5c:b6:55:fa:
c9:2a:78:7d:54:27:6d:5c:b4:ce:69:c8:13:09:c8:
5a:f5:6b:14:a9:05:37:d8:d3:eb:63:4a:12:66:1a:
48:49:6a:91:b4:5a:d9:df:97:ef:29:f8:14:f0:9c:
95:4e:a2:c8:bd:e4:4c:61:89:c6:2b:47:f4:31:bf:
2a:ea:d2:d1:56:00:74:b2:e1:a4:05:21:87:62:9d:
67:35:26:f3:45:42:ce:da:fd:7f:49:df:b9:24:55:
e5:25:26:b7:4a:06:c9:7d:47:8b:65:ca:6e:c3:0c:
04:35:13:d2:b6:da:b4:88:01:e6:19:1d:24:c4:1c:
0c:4b:51:98:8c:a0:9a:ed:c9:3a:64:d6:c9:33:6d:
5d:b6:b4:78:87:cc:65:57:8a:ef:83:53:35:c4:6c:
81:c3:49:46:d7:0d:7b:e4:c5:29:46:99:7a:77:21:
bb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0B:59:FF:45:79:D8:76:79:A9:40:51:E5:36:54:6A:E8:FF:67:D6
X509v3 Authority Key Identifier:
keyid:3C:EE:C6:C4:79:51:B2:99:C7:08:06:58:3D:79:1D:50:CD:81:6C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:65:a6:80:e3:f6:86:2a:95:49:7c:bc:7e:92:95:4e:32:e6:
6b:59:34:9f:d7:ed:e5:64:25:63:ec:17:49:a0:ba:5d:08:8a:
80:09:f9:8e:12:18:d5:0f:47:1f:0e:ed:7d:a4:b9:e8:11:ee:
15:14:58:f0:8d:e1:58:93:9d:7e:12:02:9e:cd:91:28:6c:e6:
b5:0b:47:46:b0:7e:62:ad:c6:c1:9c:98:8e:9e:49:33:30:34:
19:78:54:d7:db:c5:12:d0:3b:fc:43:18:69:ce:b8:b0:3c:96:
a0:88:6d:3f:70:64:0c:65:a4:a6:a9:11:33:46:0d:b5:eb:9f:
fe:d0:47:ed:f2:07:3e:68:bd:35:f8:5f:b1:63:d7:54:95:ca:
f7:9f:3b:cb:0e:72:10:ee:15:0e:19:08:10:c2:91:7e:1a:a2:
8b:b0:33:9b:ad:89:0b:de:58:ea:8b:a0:09:7d:d4:5e:ef:62:
80:16:bf:78:f2:29:1a:a5:10:91:86:1a:55:ff:ed:25:b3:df:
1d:8e:55:21:ae:6a:a1:61:f9:93:31:91:e1:d0:24:45:f1:9f:
78:e4:7a:c9:cf:e9:0c:be:e7:de:20:1d:25:55:c2:fb:95:0f:
19:4c:f3:40:cd:21:86:be:8f:77:de:f8:fc:78:5c:da:fe:2e:
d5:f5:83:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:03 2025 by rpki-client on console-fra.rpki-client.org