Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
File: GDDmA-nKjAXUwbxisLdue9nRiQk.mft (raw, json)
Hash identifier: jclHVNVfOhYAbyQRDGYRGoT3N918J9crGkp8j5CTOKg=
Subject key identifier: 0C:81:18:54:EB:2B:B0:5E:ED:AB:12:6E:C0:6F:F3:97:C6:CC:AA:F4
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 0194BA8488FB7B47CF676C5F8C76F89C8596
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
Manifest number: 142E
Signing time: Fri 31 Jan 2025 04:00:35 +0000
Manifest this update: Fri 31 Jan 2025 04:00:35 +0000
Manifest next update: Sat 01 Feb 2025 04:00:35 +0000
Files and hashes: 1: GDDmA-nKjAXUwbxisLdue9nRiQk.crl (hash: xqM7wblCZmR0vGZ6fSuyNWxKemanwMqEQh56RBKoIyk=)
2: o4yUZzbKz_wfUkXyIRtz_sPdHfw.roa (hash: BiVeXsHTenn/poTYlXrG4Bvxv5uxzXwbjeteQc7yW9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:88:fb:7b:47:cf:67:6c:5f:8c:76:f8:9c:85:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: Jan 31 04:00:35 2025 GMT
Not After : Feb 1 04:00:35 2025 GMT
Subject: CN=0c811854eb2bb05eedab126ec06ff397c6ccaaf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b5:37:85:76:e3:ee:a6:9d:c2:60:0c:af:40:
8f:5f:90:de:26:d0:85:09:da:d7:b9:ce:cf:f1:0d:
cc:77:56:be:66:f7:90:a9:97:d8:ec:10:b3:cd:9f:
6a:0b:f2:be:b6:3b:7a:1c:be:ae:e9:fa:5f:be:fe:
75:0f:0f:8d:e8:b1:22:47:59:5d:22:e0:e2:f4:3d:
54:15:df:15:81:ce:92:03:cf:a6:20:dd:8b:d1:85:
aa:9e:20:99:6e:1c:e0:45:87:b0:c7:7d:1e:8d:49:
ea:1b:ea:19:e0:e0:b7:70:39:7e:5d:6b:8e:ec:c2:
00:bb:79:df:1f:75:8f:43:f0:f3:96:0c:4c:a6:38:
fe:b6:47:57:04:8e:0c:9f:09:37:1b:06:bc:8d:34:
b5:4c:ca:13:0c:b6:ba:d4:b0:99:15:a8:d7:04:93:
40:25:b9:86:e2:fb:66:c1:30:6b:70:54:2c:db:e4:
f4:da:11:08:3b:19:01:da:e8:93:6c:5d:82:5c:46:
7b:22:9d:6a:77:7a:da:52:dd:84:1a:7e:b7:d0:5e:
ef:af:fd:44:46:ce:12:9d:9d:d0:18:c9:78:8e:07:
db:5e:f8:ef:36:9d:88:59:97:6e:d4:a6:1a:e7:26:
1a:db:8f:c9:eb:36:c6:1f:15:0b:12:e8:31:6b:b9:
f9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:81:18:54:EB:2B:B0:5E:ED:AB:12:6E:C0:6F:F3:97:C6:CC:AA:F4
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:42:58:5d:80:47:e1:b4:fa:0b:0c:09:08:4b:4b:b6:1c:6d:
c8:21:e0:36:50:71:09:55:b4:6b:ab:8d:93:77:62:7a:47:40:
22:58:20:89:36:e7:f9:99:83:97:e7:12:4b:2f:67:d9:4b:94:
74:c9:d9:1b:82:f3:d3:59:52:72:03:39:2d:30:43:8e:05:ac:
e0:46:e4:19:1d:54:55:70:0d:c7:ad:c9:62:85:8b:93:f1:30:
37:a2:9e:35:0f:8e:7c:07:5c:21:57:26:42:61:e4:10:15:dc:
02:40:b6:bb:d1:63:b1:73:86:0b:88:2e:3e:f1:71:02:79:cb:
8e:48:11:5a:79:6b:53:40:9e:b8:7a:5b:6c:84:5b:47:b5:14:
90:9b:05:e1:53:71:bb:b3:db:1e:07:66:ee:47:63:03:4e:66:
a7:89:a2:b1:0b:ec:09:9f:a4:b2:e5:b6:c0:0f:6d:ba:3f:b4:
ec:0f:a5:98:55:14:f4:1d:dc:0f:07:75:17:16:da:69:dd:06:
27:0b:f4:ae:f7:28:c1:75:4d:15:eb:cd:de:e3:3c:cb:09:57:
36:d8:5b:f5:b1:3a:47:a6:cc:7b:56:26:93:e3:43:89:23:a2:
66:75:03:42:b2:3f:b5:a8:18:87:36:0a:b0:10:81:5d:0f:04:
bf:26:af:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:29:33 2025 by rpki-client on console-fra.rpki-client.org