Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: 4afdxVlvevLDyxGdQKml07o23lHKNmyTIzYrvPgSPaw=
Subject key identifier: 37:8E:A1:B7:EC:F5:84:51:4B:09:E2:38:EF:4E:36:0B:2D:CA:72:10
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 0194BA846095CB12EE682FB867B9BACCD15C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 04E9
Signing time: Fri 31 Jan 2025 04:00:25 +0000
Manifest this update: Fri 31 Jan 2025 04:00:25 +0000
Manifest next update: Sat 01 Feb 2025 04:00:25 +0000
Files and hashes: 1: EVfs3Ty5us2kONM9lNbKxeOpQy4.roa (hash: XNAy20rJW1bN/SCZtyAydEWkC3qMnBorsPnV2qCqZ6A=)
2: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: e6ToadeEH8W85mJLHQq2OPezDb+zxCupAB83FCExgPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:60:95:cb:12:ee:68:2f:b8:67:b9:ba:cc:d1:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: Jan 31 04:00:25 2025 GMT
Not After : Feb 1 04:00:25 2025 GMT
Subject: CN=378ea1b7ecf584514b09e238ef4e360b2dca7210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e0:03:c3:f5:31:3b:3f:08:4a:91:dc:80:b6:
6d:97:0a:e1:5c:70:81:02:e6:7d:30:4a:8d:8c:b0:
54:02:7b:58:b3:d8:8b:e1:cc:ca:9a:3e:57:4a:86:
e8:d7:48:2a:b2:b1:72:b8:d3:50:db:26:5f:01:a4:
b7:47:9c:75:4f:e3:53:48:7e:75:0d:ee:97:45:ad:
7d:d3:35:e9:1a:1f:d5:f8:96:d0:db:6b:c4:ed:08:
21:99:e3:54:15:db:e9:22:e7:77:a3:8d:2e:cf:d6:
6f:5a:6f:ea:c1:62:22:b0:fb:b7:2b:e8:55:49:cb:
e0:95:a0:52:da:00:92:57:d9:21:c0:95:6f:81:23:
93:fe:ef:33:b0:1d:ce:2c:2c:6b:d9:f8:99:91:3a:
e2:7d:c4:74:ec:b1:17:43:13:c6:32:4e:4c:46:71:
71:c4:73:65:16:0e:b8:3e:df:cc:10:4c:f1:99:1e:
30:b2:f4:12:b4:17:d0:ed:ef:49:cb:93:ca:8c:3b:
c1:8b:a9:55:a1:94:ec:34:ba:5b:41:ca:2f:5e:c1:
78:d5:fe:6b:e5:2a:85:65:36:07:78:d8:aa:f9:21:
61:59:56:0c:4e:4e:e7:0b:21:c7:f7:f4:fc:4a:eb:
a7:93:f3:62:1f:78:30:d5:35:fc:5a:5f:af:b4:b5:
cb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8E:A1:B7:EC:F5:84:51:4B:09:E2:38:EF:4E:36:0B:2D:CA:72:10
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:28:95:45:2d:82:53:9b:a5:be:93:f2:7d:54:30:e3:ca:86:
01:e7:ee:45:4c:bd:81:3c:81:60:30:c6:4a:7c:a3:b0:06:46:
5d:ea:95:9c:bb:4c:46:76:fd:41:5c:7f:94:c6:ee:c4:06:d7:
2f:69:1d:7f:7c:5e:01:6d:da:bc:93:41:14:4e:35:5a:79:8a:
93:3d:40:af:a4:d0:b0:5b:16:08:1f:28:4d:db:f4:38:4a:fc:
dc:bd:e8:12:3e:4d:49:bc:c2:3a:97:11:2d:c6:51:47:91:54:
d5:ec:cd:ff:a6:b4:6e:47:e3:12:e1:d9:57:3e:3a:d9:80:3b:
f8:d3:a5:a8:b4:a0:4c:e4:f7:31:8a:38:32:cd:c9:eb:84:b8:
c4:5d:18:79:53:c9:05:42:69:60:f0:81:9b:26:99:7e:b8:f0:
a1:e6:52:c0:98:f5:6d:95:fb:17:00:ac:06:a9:db:65:9b:65:
6c:3e:d6:28:6b:2a:be:c5:30:e9:45:a3:09:9e:6c:87:ba:7a:
5d:49:b4:28:69:db:8b:56:99:d1:6c:fd:8b:42:9a:ee:c9:41:
3f:9c:fe:af:19:f1:98:3e:7d:06:b6:ed:f2:b6:9e:9f:13:15:
13:45:4b:9b:80:f7:91:68:18:98:86:a1:6a:e2:f4:9e:d4:5c:
39:58:ee:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:19 2025 by rpki-client on console-fra.rpki-client.org