Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
File: pPAKrld-dFH4jqYEv2ozc0zQMAk.mft (raw, json)
Hash identifier: vcsDme21uGZr+ThOBwlsKEp4djH4ckTTf6EBuLcYTFE=
Subject key identifier: 01:DC:77:77:CB:A6:C0:6D:CB:D5:DC:F6:69:4A:53:B4:0D:9B:4F:A8
Authority key identifier: A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
Certificate issuer: /CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Certificate serial: 0194BABBBB213A16901941FA4412B3092C24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
Manifest number: 0C88
Signing time: Fri 31 Jan 2025 05:00:52 +0000
Manifest this update: Fri 31 Jan 2025 05:00:52 +0000
Manifest next update: Sat 01 Feb 2025 05:00:52 +0000
Files and hashes: 1: XRYyvh6J7DkVdKbz1yypWyD6-m0.roa (hash: 6+dNcwPteiKzyDYvKh6xy6mmMEyhqVqNL5Sm9+oU6rA=)
2: pPAKrld-dFH4jqYEv2ozc0zQMAk.crl (hash: 6DUYrGcdg7I2bwhnqwgW4jdp3iw3ZxvHAHZf/dNlMEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:bb:21:3a:16:90:19:41:fa:44:12:b3:09:2c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f00aae577e7451f88ea604bf6a33734cd03009
Validity
Not Before: Jan 31 05:00:52 2025 GMT
Not After : Feb 1 05:00:52 2025 GMT
Subject: CN=01dc7777cba6c06dcbd5dcf6694a53b40d9b4fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b9:db:b9:22:fe:83:a5:ed:41:7b:19:00:2f:
22:0c:ab:40:3d:fa:f3:d0:82:9d:86:ef:39:59:51:
58:1d:30:06:b5:4d:a5:1b:e0:a2:54:1c:10:26:68:
0d:fa:b8:ac:aa:2e:56:6e:81:9b:1a:1a:b0:aa:22:
aa:db:1c:d7:95:49:c6:32:3b:98:98:7f:7c:b4:16:
3a:b0:36:3f:6d:50:52:f4:70:9f:ea:ec:03:c0:a7:
d2:44:0f:6d:0e:3d:fe:bb:65:52:24:4b:92:fa:26:
9e:06:97:0a:9a:7a:92:92:5e:30:25:7f:ff:d6:97:
73:fa:69:4d:88:37:c7:1d:f3:4f:d1:af:60:d3:f8:
18:de:ac:ba:13:73:ab:c2:fb:08:4e:93:cb:74:09:
72:a5:3a:12:a7:8d:93:c0:ab:50:12:c7:4e:ca:1a:
a2:24:97:6c:ab:16:79:17:f1:8c:4f:18:9f:47:e9:
65:8a:9e:98:69:c0:3a:6f:13:1e:4f:47:f2:ea:51:
8c:88:71:3a:14:b6:ad:60:36:7a:d7:52:a6:52:f4:
e6:f6:c8:d9:e4:56:c4:80:f7:46:23:f8:2b:f6:83:
51:1b:a0:ad:78:c9:99:f8:09:68:5f:4d:8a:27:64:
f0:a9:e6:09:22:6f:51:c3:b2:5a:34:e0:3e:32:75:
33:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DC:77:77:CB:A6:C0:6D:CB:D5:DC:F6:69:4A:53:B4:0D:9B:4F:A8
X509v3 Authority Key Identifier:
keyid:A4:F0:0A:AE:57:7E:74:51:F8:8E:A6:04:BF:6A:33:73:4C:D0:30:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPAKrld-dFH4jqYEv2ozc0zQMAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/58a94a-9e28-47a5-9fd6-9c91b1c5158a/1/pPAKrld-dFH4jqYEv2ozc0zQMAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:26:44:59:c1:de:75:10:db:7b:e6:eb:3f:87:d5:8b:d4:20:
e1:80:6d:b1:8e:89:73:f1:08:3a:41:9a:89:f7:d0:3a:a8:70:
66:47:41:2e:19:ca:51:80:8e:5f:c2:5e:3f:7d:d0:12:91:a9:
7a:9f:b4:63:70:3f:64:28:8e:f9:87:45:13:a5:c8:a9:1e:6a:
2b:84:7d:ad:d4:eb:dd:db:26:03:98:96:b2:b6:0e:90:51:5b:
34:0e:3b:9e:61:61:1f:71:3b:64:36:76:20:eb:71:f5:ed:d1:
6d:3e:51:8a:be:86:7b:88:72:91:04:1b:d6:9b:37:c6:2a:0f:
3b:c6:8f:f3:00:73:19:8b:9f:86:ef:d0:8c:5b:45:e6:25:26:
26:a5:b1:cd:ae:4a:5e:60:c8:bd:30:bb:40:33:98:33:dc:91:
67:c2:8f:d5:23:dc:9b:7d:92:6e:c1:36:23:8b:0e:26:ec:c7:
d3:c2:da:73:bf:ac:98:7a:3c:56:aa:c0:63:9f:b1:e6:88:f8:
b3:03:a4:3b:e8:42:b7:93:66:96:08:6c:74:48:d7:6f:ec:7d:
c9:0f:2b:0d:f1:06:8b:79:1a:cc:fb:ef:da:a1:41:5a:57:e4:
c2:f4:55:c4:40:cc:a9:d5:2a:94:fd:26:ea:a0:40:4a:26:93:
a9:50:12:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:31 2025 by rpki-client on console-fra.rpki-client.org