Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
File: CuQnEByy4r1WUITeZHH260jST5Y.mft (raw, json)
Hash identifier: SGgaevYZAbEmC/Ce/fa8SaTS+vaD2dmFRzpEzZUy9+Q=
Subject key identifier: F1:84:FB:7C:27:49:FD:18:22:0F:57:6A:32:90:8C:32:24:C4:71:21
Authority key identifier: 0A:E4:27:10:1C:B2:E2:BD:56:50:84:DE:64:71:F6:EB:48:D2:4F:96
Certificate issuer: /CN=0ae427101cb2e2bd565084de6471f6eb48d24f96
Certificate serial: 0194BA84193CD1A63813F928F544A63A0D4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CuQnEByy4r1WUITeZHH260jST5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
Manifest number: 09C7
Signing time: Fri 31 Jan 2025 04:00:06 +0000
Manifest this update: Fri 31 Jan 2025 04:00:06 +0000
Manifest next update: Sat 01 Feb 2025 04:00:06 +0000
Files and hashes: 1: CuQnEByy4r1WUITeZHH260jST5Y.crl (hash: uXU40cjIyo8zQw5HLqI02PKLZrnCnzkqsi5jNnIIMEs=)
2: LfJ8ODju367d2avuOQm5piH-KjI.roa (hash: o3ZK8YLnbi2AKR9dzokceRf3/tnSGkPPHYTuBxrwd0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/CuQnEByy4r1WUITeZHH260jST5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:19:3c:d1:a6:38:13:f9:28:f5:44:a6:3a:0d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ae427101cb2e2bd565084de6471f6eb48d24f96
Validity
Not Before: Jan 31 04:00:06 2025 GMT
Not After : Feb 1 04:00:06 2025 GMT
Subject: CN=f184fb7c2749fd18220f576a32908c3224c47121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:04:86:14:c0:e3:03:ef:14:5c:e9:e4:fe:04:
c4:5b:8a:37:46:21:1a:25:f1:15:60:c9:d4:e6:70:
3c:b5:0b:2d:f3:9b:d0:0a:7d:13:d4:32:0b:5a:9a:
35:31:62:e7:d8:93:a5:5b:49:8c:16:54:b6:94:ba:
a6:16:ba:8a:69:7e:74:6f:58:04:70:fc:69:09:21:
3a:18:c3:b5:61:a7:99:ce:9c:55:99:9b:81:49:e7:
6a:79:22:4b:49:eb:f9:7e:39:2a:f6:f8:79:3c:8f:
c6:8a:69:79:0d:39:98:55:47:d2:6a:9f:01:2f:f7:
cc:f1:bb:fd:ca:5b:fd:c2:65:52:bc:8e:c7:e8:73:
c0:d6:a6:d0:0e:46:f3:42:6e:3f:c0:43:e4:7b:f7:
be:99:2e:dc:79:b0:f0:1b:89:99:89:2f:7f:f6:ca:
59:0a:12:35:a2:37:83:ac:44:12:34:dd:55:ac:70:
09:f9:6c:59:88:27:7c:cd:f7:f2:a7:52:da:cd:db:
dc:94:a3:e7:73:0b:39:77:35:a8:f0:4b:59:21:2d:
77:b6:ed:49:ab:6a:3f:0b:7c:77:14:37:53:d9:0e:
c6:2b:0d:cb:c5:21:96:e5:c5:7e:a2:e6:f0:a3:7e:
54:25:dd:98:26:ee:fc:58:63:f3:4c:57:b9:d3:d9:
f2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:84:FB:7C:27:49:FD:18:22:0F:57:6A:32:90:8C:32:24:C4:71:21
X509v3 Authority Key Identifier:
keyid:0A:E4:27:10:1C:B2:E2:BD:56:50:84:DE:64:71:F6:EB:48:D2:4F:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CuQnEByy4r1WUITeZHH260jST5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e112fc-05ef-4f1f-85be-7c9e684ccce2/1/CuQnEByy4r1WUITeZHH260jST5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:d1:ee:28:fc:74:e4:fc:6a:9a:a2:eb:2f:b5:68:79:b9:65:
4e:ca:9d:7d:c2:41:2c:28:c6:f3:e2:bc:2e:47:8a:59:b3:3f:
e7:f5:33:3a:83:46:31:bd:1a:66:26:76:90:cf:66:4b:88:a2:
f0:7e:57:8a:d5:74:1e:69:6e:2b:94:7f:09:a1:6c:43:66:46:
a5:c3:00:c2:c3:d8:5a:9b:b4:df:eb:5b:84:de:07:f0:c7:53:
23:0f:a4:0e:a5:fa:06:e9:df:18:f2:24:7b:f2:8f:bb:c8:10:
37:8e:55:66:6d:e6:aa:f1:d9:2a:3d:67:7c:35:56:17:93:88:
25:69:c8:57:eb:2e:1a:33:77:75:6b:a6:aa:d4:65:56:77:65:
b0:e7:f7:01:93:f3:f1:32:e6:fe:af:7e:9d:cc:54:65:60:39:
48:ff:97:a8:01:67:9c:13:ad:05:bb:b4:9d:d8:c2:43:18:f9:
d6:99:ee:8f:ba:25:82:58:a8:a3:87:72:37:d7:e1:ff:cf:07:
2e:59:10:f4:c3:e5:dc:bf:66:fb:7d:1f:23:91:67:a6:2b:c9:
50:f9:81:d1:74:0e:75:ba:4b:73:78:e7:cd:9c:e0:eb:eb:62:
c8:9a:45:17:43:15:bd:59:ed:8a:00:75:e1:11:77:c7:70:86:
28:2e:27:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:30:15 2025 by rpki-client on console-fra.rpki-client.org