Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
File: 3XF0IQf16FBis-CuZa-kuuZw4Es.mft (raw, json)
Hash identifier: Z02J6C0lp4+d1ecLV051PoG30I/7C7qTakhANDePnwA=
Subject key identifier: 1D:99:69:F2:F3:CA:27:80:B3:D2:FD:E4:A0:8E:E7:16:A7:24:A4:07
Authority key identifier: DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
Certificate issuer: /CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Certificate serial: 0194BB28EF90A5E0F99125B7C0C6227BCADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
Manifest number: 02AA
Signing time: Fri 31 Jan 2025 07:00:09 +0000
Manifest this update: Fri 31 Jan 2025 07:00:09 +0000
Manifest next update: Sat 01 Feb 2025 07:00:09 +0000
Files and hashes: 1: 3XF0IQf16FBis-CuZa-kuuZw4Es.crl (hash: QnF7PDVyZymD3pZQErzA+xq9JR1Ns9e2BheVjoSWZE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:28:ef:90:a5:e0:f9:91:25:b7:c0:c6:22:7b:ca:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Validity
Not Before: Jan 31 07:00:09 2025 GMT
Not After : Feb 1 07:00:09 2025 GMT
Subject: CN=1d9969f2f3ca2780b3d2fde4a08ee716a724a407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6e:75:86:69:41:cd:c7:c4:a7:4e:2c:4e:13:
6d:42:ec:f8:a4:48:3e:31:db:63:66:cc:10:03:cc:
b1:c1:bc:ac:f6:ed:cc:2d:f7:9e:4c:23:a2:5e:30:
e7:38:73:24:4a:cf:02:8a:1b:ec:ac:4b:cc:4e:74:
45:6c:0f:5c:a7:88:e2:8b:cb:7e:b6:45:fd:a0:ee:
d9:22:2d:48:18:d5:ce:42:9c:1b:90:67:c9:43:59:
43:34:16:35:a9:97:30:cf:b6:06:09:56:dc:ca:11:
35:91:a9:9c:0b:75:7d:00:74:bb:cd:c1:2a:eb:89:
18:db:0b:4a:6f:a2:d0:a9:e5:b6:e9:63:41:c0:ad:
d3:e9:3f:fb:06:4f:c0:77:b1:9c:78:e8:92:e6:17:
29:fe:6d:21:ad:ff:d3:05:02:8a:c4:dd:e5:ef:56:
4b:fc:35:16:a6:5f:08:96:bf:74:d9:7a:ed:61:31:
0e:04:87:49:a4:b6:89:79:18:8a:b1:e6:06:2f:50:
e9:d6:00:e9:24:6a:e0:22:94:4b:ab:e8:4f:45:50:
23:14:a4:9a:d6:d1:5d:b5:da:ea:72:d1:af:33:fb:
57:b3:2a:90:10:a5:24:62:a1:e0:64:fb:06:24:14:
e4:0f:32:0e:ba:e1:07:cc:0d:0c:1b:1d:90:0e:f4:
40:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:99:69:F2:F3:CA:27:80:B3:D2:FD:E4:A0:8E:E7:16:A7:24:A4:07
X509v3 Authority Key Identifier:
keyid:DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:b3:98:27:41:fd:f6:e1:5d:21:87:7d:c5:31:f4:89:1e:45:
fb:fe:0a:8e:e2:9b:9f:48:a5:e4:d1:36:8d:90:10:f6:ee:1f:
1b:59:3f:c2:1e:0c:a5:74:fb:1a:91:22:c8:fe:e6:44:df:16:
d2:ac:61:b3:8c:1d:fb:1f:61:f8:1e:f7:8c:de:1c:7f:97:0c:
7a:78:3e:f4:0b:9e:36:2e:dd:e8:9e:36:f4:87:f4:0d:80:59:
2c:2f:0f:cb:ce:05:38:d5:d1:11:46:ac:57:bb:25:47:33:bb:
62:71:54:a5:f7:9f:e9:bf:fc:90:70:cf:f1:0d:f3:15:fd:69:
0a:a9:30:f0:25:1b:fe:6a:93:10:39:9a:58:ba:b3:ea:e5:b3:
b8:72:c1:b2:bd:3e:df:d5:4e:c8:9b:26:66:4c:09:91:e4:6b:
1d:b8:54:e8:0a:28:83:66:35:8e:13:81:92:d8:0f:2d:d8:51:
33:32:88:c5:c0:53:7a:68:e5:ff:06:15:48:ca:52:18:88:ee:
80:82:90:8f:ff:4d:3e:a7:89:69:63:5d:9b:ea:df:41:ab:56:
94:ae:d6:2a:18:c2:b6:b4:0b:4f:24:82:03:ea:10:43:15:75:
0a:7e:96:65:81:c8:80:bd:8d:71:9b:4c:0d:ac:94:c9:dc:a8:
93:d7:0e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:31:41 2025 by rpki-client on console-fra.rpki-client.org