Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
File: rfRJdaXb2_gjtKCmt-65mxSENn4.mft (raw, json)
Hash identifier: l34WJsQJtGIdAR78gUsySZ/EBZbxlOv6QYHridI3ZPU=
Subject key identifier: A9:B4:DE:A8:24:8E:4A:08:FE:27:63:06:1D:2A:B8:7D:25:DE:5B:0F
Authority key identifier: AD:F4:49:75:A5:DB:DB:F8:23:B4:A0:A6:B7:EE:B9:9B:14:84:36:7E
Certificate issuer: /CN=adf44975a5dbdbf823b4a0a6b7eeb99b1484367e
Certificate serial: 0194BABB0F9279C48669CD9F2DCF96126C2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
Manifest number: 03BD
Signing time: Fri 31 Jan 2025 05:00:08 +0000
Manifest this update: Fri 31 Jan 2025 05:00:08 +0000
Manifest next update: Sat 01 Feb 2025 05:00:08 +0000
Files and hashes: 1: R4XHwh-uR65EL_DdpXZF6OARJ4Q.roa (hash: iFcX7qqj7I+Qr0pVVXkrPFoUP0jPJo5pY3SNhZeIPSE=)
2: rfRJdaXb2_gjtKCmt-65mxSENn4.crl (hash: yys3z4GSpXZiaG8JVb8/4hu5IT6LwE2frCC7P3p8jLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:0f:92:79:c4:86:69:cd:9f:2d:cf:96:12:6c:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf44975a5dbdbf823b4a0a6b7eeb99b1484367e
Validity
Not Before: Jan 31 05:00:08 2025 GMT
Not After : Feb 1 05:00:08 2025 GMT
Subject: CN=a9b4dea8248e4a08fe2763061d2ab87d25de5b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:e6:54:1b:34:98:ab:42:e6:90:bd:dc:45:
c9:d7:9d:0b:09:a2:a9:79:6f:b1:29:6f:8b:5d:8e:
56:20:b2:3f:a8:5d:ed:cf:13:f4:79:c1:1c:73:a6:
b3:4e:9c:97:79:6d:e9:27:91:81:6c:79:4b:d6:e8:
f2:b0:d4:f0:20:50:f3:d8:73:9b:33:1e:5c:97:87:
b8:03:b9:42:39:45:5d:b8:37:95:1e:fd:22:44:ff:
36:03:68:18:70:b0:4d:f7:ee:28:97:c9:b3:6d:51:
5d:6c:bd:6c:0e:7c:98:1c:03:5f:dc:95:39:61:a2:
44:86:62:65:07:02:a4:aa:e1:63:02:83:9b:23:1e:
83:2a:c3:cd:a2:d8:be:e1:10:57:8d:9f:7a:3c:01:
a2:84:99:a2:e1:bc:e5:56:72:da:0c:a2:35:34:04:
e3:4b:81:53:a4:b6:61:3b:e7:95:ab:78:3a:35:7c:
91:6a:ad:10:e3:a0:0a:82:81:db:d8:ec:a8:17:58:
db:5c:1a:b2:60:8c:d5:ce:ae:bc:55:c2:24:83:83:
ed:1f:1e:ec:2d:43:45:b6:0b:a0:10:25:9f:44:84:
c6:0d:f1:10:6a:87:50:68:9e:f3:03:90:9c:c4:f8:
40:fd:c3:80:1d:79:f1:39:e8:22:ff:5d:aa:3d:f8:
90:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B4:DE:A8:24:8E:4A:08:FE:27:63:06:1D:2A:B8:7D:25:DE:5B:0F
X509v3 Authority Key Identifier:
keyid:AD:F4:49:75:A5:DB:DB:F8:23:B4:A0:A6:B7:EE:B9:9B:14:84:36:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:ca:0d:34:c2:b9:7a:d7:4b:e4:44:7f:44:0d:c7:8e:5f:90:
2d:1a:ef:aa:fd:e2:56:e6:66:b4:e2:e7:0e:66:bf:8d:3e:bb:
d2:07:b3:44:da:72:f4:7e:44:ee:23:d4:a9:8c:ee:70:f7:02:
67:96:2a:3b:e9:86:3a:a7:3e:e3:86:77:39:24:f0:1e:50:ea:
a2:59:0b:0e:a4:c5:89:38:f0:d6:92:f2:b8:1a:58:e9:1a:6b:
b4:5b:aa:5e:75:25:90:04:34:88:1c:5d:d6:4a:86:46:db:f7:
84:62:60:75:f1:cb:e6:f4:df:40:97:7a:35:2e:66:3a:16:58:
00:23:5c:a4:51:7b:88:98:97:23:2a:30:d2:cb:8e:70:d7:6b:
25:a4:06:4d:ba:ac:48:03:2e:cb:0e:d1:24:78:d4:9c:4d:e8:
06:7a:73:7c:4d:f4:7c:89:4f:f5:54:34:6e:d8:ab:a8:49:54:
4d:40:2d:b1:cb:04:2b:ac:82:0e:b1:7b:10:e4:1b:4c:5e:80:
71:a8:80:95:04:eb:d0:01:49:e5:cb:3d:2c:07:34:d2:ba:69:
aa:64:4a:da:49:7f:c0:b8:e0:09:b1:db:8a:01:9b:ae:c4:5c:
b4:2c:aa:b9:9f:85:92:e6:ca:1b:a3:90:07:30:94:10:e4:e6:
df:a9:15:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:30:14 2025 by rpki-client on console-fra.rpki-client.org