Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: BXEVYhSSNLl8c4QSTgyx9ACOp2KlpuPdoEzaREIaSfE=
Subject key identifier: 97:F5:C6:EE:4B:D0:25:93:8B:6B:9D:6D:FA:A8:D6:FC:6C:AF:C6:8E
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 0194BB6041DCE14851D11EB3FFA657920B5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 142C
Signing time: Fri 31 Jan 2025 08:00:35 +0000
Manifest this update: Fri 31 Jan 2025 08:00:35 +0000
Manifest next update: Sat 01 Feb 2025 08:00:35 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: k5i0b1S9jA6uFO+p3cIWNebo3phv1ow+YJgyui8eGs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:41:dc:e1:48:51:d1:1e:b3:ff:a6:57:92:0b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Jan 31 08:00:35 2025 GMT
Not After : Feb 1 08:00:35 2025 GMT
Subject: CN=97f5c6ee4bd025938b6b9d6dfaa8d6fc6cafc68e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1e:47:51:21:11:a6:68:67:99:7a:c6:59:ac:
6e:08:91:9d:12:79:65:4f:63:7c:62:ab:74:0c:91:
46:7a:f2:df:39:7d:ff:78:14:80:a4:8f:ed:71:65:
cc:fd:4c:18:4a:6f:f9:9e:12:85:34:0e:b2:e1:e0:
24:9b:77:8e:77:e6:a2:00:28:c6:9e:3e:5d:ed:76:
06:a3:a1:45:17:59:71:a0:e7:9f:9d:c9:86:82:d2:
1d:1c:e1:8c:ca:06:4c:e8:8b:5d:fb:0c:9d:60:f0:
f5:19:0c:27:b7:13:ea:e9:61:cb:67:01:bc:da:5f:
a6:4e:a7:c9:ca:b2:c2:c1:35:8b:a0:77:1c:50:de:
cb:bb:57:30:d4:4a:1d:07:0c:0f:8a:e4:f8:e7:a2:
ec:e1:73:2b:f9:5a:78:44:24:16:f6:18:f8:9e:cb:
fb:80:c1:2c:fe:72:83:00:15:79:2b:c0:5a:34:18:
d6:de:c0:8f:13:ce:7f:13:ea:02:14:dd:b5:0b:e2:
b4:86:8c:5d:a8:4b:2a:9a:9e:c4:cd:22:1f:d5:c6:
1f:11:2f:de:4c:bd:a3:8f:df:4e:6c:7f:f1:93:e8:
b3:7c:08:a9:8a:23:91:22:79:69:e3:f7:59:0b:52:
9f:cd:8e:3f:21:f7:20:0c:cc:57:8a:61:35:33:8b:
3a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F5:C6:EE:4B:D0:25:93:8B:6B:9D:6D:FA:A8:D6:FC:6C:AF:C6:8E
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e1:e2:f3:ec:a2:dd:f8:ad:7a:c4:59:92:ba:4c:83:59:d6:
a3:5b:ac:7b:62:b1:99:ec:4d:98:ce:78:42:0b:c2:75:bd:39:
b3:4d:9a:83:5c:30:e4:48:a1:e4:41:de:4c:84:c8:47:98:33:
5f:bc:5e:74:1c:48:93:c2:e1:0b:d6:bd:1d:5d:da:9e:01:2e:
03:cc:b9:8f:e2:44:ec:53:ee:c5:7b:4f:6d:75:9a:f6:d2:fa:
a3:e5:6a:b8:1e:97:b9:53:5f:33:e4:5b:ab:ef:e0:38:b8:ac:
7f:73:d8:ee:0f:c3:0d:a1:23:8d:73:4a:bd:57:79:70:fa:ef:
e9:34:c5:e8:10:0c:34:6f:e0:86:7c:20:fb:10:f1:ce:4a:86:
91:d1:d5:e8:c0:52:15:10:76:dd:b0:da:4a:f9:d3:ec:09:f7:
9c:1b:29:7a:c0:e2:7a:60:30:36:62:ea:cf:a2:50:1c:a8:f6:
d9:0a:41:10:7c:54:08:f6:3e:53:3d:50:a5:76:8e:ad:0f:40:
4d:cc:a7:7f:38:b9:7c:6f:4a:59:dc:a7:e7:8d:07:cf:2c:7f:
9f:81:9f:8e:40:c7:50:5c:83:d8:c7:0a:9f:d7:29:21:d3:6d:
58:d9:17:92:95:86:47:77:dc:13:7e:7f:cb:fe:c0:86:01:bc:
5e:db:c2:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:27 2025 by rpki-client on console-fra.rpki-client.org