Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
File: JUIq59QSPce_KI8TeeQ39uHLKpo.mft (raw, json)
Hash identifier: cvYamU/phHh3rkBPZ2XXgeBLPDUWYsvWVUgYkLTiWCI=
Subject key identifier: F0:39:5C:D5:AD:05:7E:69:DD:07:94:58:F2:B9:A0:C5:A2:06:99:B1
Authority key identifier: 25:42:2A:E7:D4:12:3D:C7:BF:28:8F:13:79:E4:37:F6:E1:CB:2A:9A
Certificate issuer: /CN=25422ae7d4123dc7bf288f1379e437f6e1cb2a9a
Certificate serial: 0194BA8463998C8E1704A506A890D28BFA46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
Manifest number: 0DA5
Signing time: Fri 31 Jan 2025 04:00:25 +0000
Manifest this update: Fri 31 Jan 2025 04:00:25 +0000
Manifest next update: Sat 01 Feb 2025 04:00:25 +0000
Files and hashes: 1: JUIq59QSPce_KI8TeeQ39uHLKpo.crl (hash: p+W4AgFx3IDLVuHUfTsbJoD3YaRgX+GxgGoe5sjdutQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:63:99:8c:8e:17:04:a5:06:a8:90:d2:8b:fa:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25422ae7d4123dc7bf288f1379e437f6e1cb2a9a
Validity
Not Before: Jan 31 04:00:25 2025 GMT
Not After : Feb 1 04:00:25 2025 GMT
Subject: CN=f0395cd5ad057e69dd079458f2b9a0c5a20699b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:3e:fe:a6:db:3e:c8:97:ec:79:71:f5:6e:
8c:43:04:83:a2:08:17:20:cd:b4:1c:ae:5e:46:28:
56:9f:a4:e6:78:eb:6b:01:60:a8:13:c9:27:cc:19:
5e:e4:e8:b0:f5:e6:3e:c1:c8:ad:7f:d0:1d:74:e6:
38:e5:0a:6a:fe:96:66:2c:3e:fc:2a:24:a4:6e:24:
09:96:77:59:2f:50:20:cc:c8:49:f2:85:40:a7:21:
51:b6:83:98:dd:01:02:22:ef:1c:5c:c9:1d:4a:09:
f1:48:7c:85:df:51:7a:d7:70:50:95:53:60:50:6a:
f7:14:c3:c6:31:ed:ec:34:07:36:a8:d6:c9:58:ba:
10:85:8b:c0:c8:6b:5a:55:e0:8a:aa:df:7f:95:60:
7b:0a:0d:4f:f0:fd:ec:1d:cf:48:88:ab:6a:a9:3f:
89:bc:0f:37:86:90:b4:3f:27:85:d2:3c:b3:17:3f:
68:f2:27:9d:c4:5b:f2:9c:51:8b:94:d7:b6:9d:ba:
26:2a:1b:e5:2f:7f:2b:82:ac:f9:bb:a8:ee:cb:3d:
4f:e0:22:30:f5:c7:4b:af:e8:0d:d4:9f:2b:fc:33:
fd:e8:c8:f7:60:d5:2a:a6:41:70:b8:e2:dc:98:a2:
3f:94:44:09:19:62:39:d8:bc:d7:a8:e2:d4:39:38:
b2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:39:5C:D5:AD:05:7E:69:DD:07:94:58:F2:B9:A0:C5:A2:06:99:B1
X509v3 Authority Key Identifier:
keyid:25:42:2A:E7:D4:12:3D:C7:BF:28:8F:13:79:E4:37:F6:E1:CB:2A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:2d:2a:16:c6:60:6a:c5:f5:d3:0c:8e:f8:7e:e7:bd:70:1e:
a5:dd:4d:b7:50:2b:ee:84:25:a7:34:2d:4b:57:d8:e9:30:60:
e0:53:9f:ec:a0:72:be:18:66:0d:2e:fb:51:7b:db:75:ea:c4:
81:15:fd:f9:64:d5:60:86:00:5c:68:e0:1e:24:90:b9:08:25:
4e:74:bd:30:d8:cc:3e:87:e0:e0:33:a2:63:6f:a2:3a:2c:ec:
fa:a5:66:95:45:74:62:a5:14:31:88:ec:3a:95:8f:a2:c1:c5:
80:0b:bb:72:16:8c:e5:c2:cf:47:13:a6:39:a9:00:20:bc:c0:
ff:cd:e8:8c:c5:52:ab:3e:42:11:19:f8:39:1e:28:91:4e:41:
c6:54:9d:74:e5:36:29:35:a0:0e:0a:e5:ff:02:33:8b:00:ed:
0a:80:be:23:66:60:9e:93:46:27:ec:a3:77:f2:6e:cb:60:88:
93:40:aa:db:c1:9f:d8:ea:86:56:14:16:3b:38:85:15:59:a9:
5e:c4:eb:27:04:87:b2:38:5c:0b:6a:65:94:c3:9e:f1:59:2e:
e9:cc:7b:4a:91:a9:75:a7:0b:38:1e:76:03:76:41:07:9a:4a:
75:d8:69:da:70:88:76:53:81:d8:81:51:e2:0a:e7:62:d9:85:
03:4c:77:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:29:22 2025 by rpki-client on console-fra.rpki-client.org