Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
File: KRl7xzMOqZkA9PyRAzozF-VvdeI.mft (raw, json)
Hash identifier: XMKgtMB+Po52NG83EVjF5XzOAC0uqBJMvkm5b2PoX2I=
Subject key identifier: E9:45:3B:21:EB:1D:13:2C:9B:45:79:5C:4F:F3:EB:F8:AA:F8:41:73
Authority key identifier: 29:19:7B:C7:33:0E:A9:99:00:F4:FC:91:03:3A:33:17:E5:6F:75:E2
Certificate issuer: /CN=29197bc7330ea99900f4fc91033a3317e56f75e2
Certificate serial: 0194BA8463CA39E1BBAAC48F734E2BCC7AF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
Manifest number: 024B
Signing time: Fri 31 Jan 2025 04:00:25 +0000
Manifest this update: Fri 31 Jan 2025 04:00:25 +0000
Manifest next update: Sat 01 Feb 2025 04:00:25 +0000
Files and hashes: 1: KRl7xzMOqZkA9PyRAzozF-VvdeI.crl (hash: A/3yv9mgP6fnRiFeqfn2JHN/gJ/VZJ1xPw/yTWlOsDY=)
2: lzjPjehPcPKbzhp_BORqJSFXL5w.roa (hash: o7m8VbYXK8WyV5y7PTGt6HIYSCCP18Dfj928jAcIW9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:63:ca:39:e1:bb:aa:c4:8f:73:4e:2b:cc:7a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29197bc7330ea99900f4fc91033a3317e56f75e2
Validity
Not Before: Jan 31 04:00:25 2025 GMT
Not After : Feb 1 04:00:25 2025 GMT
Subject: CN=e9453b21eb1d132c9b45795c4ff3ebf8aaf84173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f0:79:b6:b9:9c:44:f1:9d:6b:4f:00:48:fb:
91:d9:89:77:04:e7:bc:5f:93:ca:40:30:eb:2a:9d:
ea:fd:5d:af:b1:26:4c:2a:c4:84:50:dc:5a:6c:5b:
1f:63:0d:b0:55:de:6d:76:c7:5b:92:71:48:96:1b:
ad:df:e2:34:01:87:f5:23:92:fb:81:db:35:4e:14:
b7:a5:9f:aa:e4:3c:f0:2e:d0:30:b9:45:27:bf:70:
6c:10:4b:52:25:68:cb:d2:8a:ff:e2:b1:6a:a3:1e:
29:2b:5c:eb:12:59:c3:16:8f:00:2e:3e:3b:4b:9d:
af:34:ec:c2:94:6b:8b:ed:ef:f7:2a:62:25:19:72:
d0:a9:3e:fc:fe:7b:f5:c2:99:ca:c9:27:6c:77:35:
af:01:56:39:e4:09:64:5d:74:1e:42:89:35:64:e0:
c6:b5:76:db:40:8b:39:48:3f:5f:ba:eb:c5:f6:79:
40:32:f3:98:e0:09:c6:a2:52:a5:ac:d3:6f:a4:0d:
a0:26:37:4d:b0:86:0f:fe:99:76:07:cd:0d:a9:59:
22:d5:9f:58:96:05:b8:db:12:ee:f1:ef:0e:21:e5:
72:02:9c:da:b0:21:22:98:64:ea:13:46:df:de:e5:
2b:3e:69:b2:c6:ee:05:14:c6:06:2b:22:d6:45:4a:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:45:3B:21:EB:1D:13:2C:9B:45:79:5C:4F:F3:EB:F8:AA:F8:41:73
X509v3 Authority Key Identifier:
keyid:29:19:7B:C7:33:0E:A9:99:00:F4:FC:91:03:3A:33:17:E5:6F:75:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:2d:e0:c3:1c:9d:23:ff:87:03:9e:bb:16:55:92:3d:76:15:
b2:b0:7d:ca:ef:8c:43:17:45:10:a1:10:f9:c6:23:19:b3:42:
6e:6b:b0:fe:77:16:9c:de:69:7a:ef:b7:ac:51:b4:43:db:22:
bd:d4:cd:6a:fe:da:79:bf:8d:5e:78:4c:e6:e4:5c:61:fb:4e:
62:5f:77:b1:95:5e:8b:06:ba:10:41:77:38:69:4c:17:09:56:
6d:d2:66:1d:4e:1d:d1:ef:66:10:84:b4:35:c3:10:2e:8f:1b:
19:3e:11:6d:b6:c8:d5:a9:0a:fd:67:f6:c6:06:cd:92:87:bb:
1e:47:48:dc:b6:da:1d:6e:a0:b3:da:05:cf:2e:68:c0:49:2c:
e9:51:06:00:0d:42:5d:ad:8c:a2:0b:24:07:dd:9f:a7:0b:51:
37:b0:55:43:ec:e0:65:30:fb:d9:81:65:42:8d:44:5d:62:5f:
78:e1:30:e1:56:26:7c:55:5a:85:62:15:fd:67:a1:d4:66:aa:
d1:37:8f:17:5d:0d:08:b6:68:c0:07:e3:78:95:56:89:9f:5c:
e3:4f:f0:85:c3:19:cd:96:56:53:4a:8f:47:d9:39:84:39:cf:
74:0d:0c:cc:0e:64:38:23:59:fa:29:69:74:61:3d:a2:bc:bb:
f3:44:85:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:30:19 2025 by rpki-client on console-fra.rpki-client.org