Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: InaLp9DTOkr/129La9s6lPU1shy062tOatoz0XDwqv0=
Subject key identifier: 30:39:30:E8:C0:06:4B:94:68:BE:74:03:CF:02:C7:2E:20:67:9E:BF
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0194BB294290E0BB592D2DEF4F578BB47610
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0BB9
Signing time: Fri 31 Jan 2025 07:00:30 +0000
Manifest this update: Fri 31 Jan 2025 07:00:30 +0000
Manifest next update: Sat 01 Feb 2025 07:00:30 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: NRVbwn3JKKExqh/5AcRCjmG708smuTuAJPsTxahmaKc=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:42:90:e0:bb:59:2d:2d:ef:4f:57:8b:b4:76:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Jan 31 07:00:30 2025 GMT
Not After : Feb 1 07:00:30 2025 GMT
Subject: CN=303930e8c0064b9468be7403cf02c72e20679ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0b:26:5e:17:a2:66:f9:c3:c8:8b:22:5c:0a:
94:3e:db:37:82:13:33:41:c1:88:e5:72:4f:a4:d1:
1e:ef:c8:3a:9b:f6:c8:21:dd:4c:20:1b:b5:ef:04:
43:a4:db:62:fe:0b:56:1a:87:44:fd:58:f2:63:05:
96:c3:e7:82:38:0f:d9:89:4f:73:90:9e:46:77:b5:
3f:47:d0:ac:d3:a3:ac:8e:bd:c7:8c:ef:79:cd:be:
cc:3d:09:92:34:ee:d0:15:a0:8b:99:ce:f8:b2:93:
7f:79:81:62:43:98:0f:c7:38:17:c9:f4:af:98:c1:
b4:08:64:11:84:ae:be:76:bf:27:e0:43:57:32:6b:
29:15:6b:68:b9:c5:70:68:41:e9:15:58:d9:b6:f2:
27:44:83:8d:a4:2d:dd:b9:4a:c8:c2:d8:65:a0:7d:
38:68:58:ef:6a:dd:9f:6e:8a:0d:8b:f6:e0:3b:dd:
33:dd:76:2c:fe:c4:d7:e9:12:bb:1e:17:35:f3:34:
ae:bd:81:1d:37:ed:7b:e3:b8:2b:7c:8a:ca:54:b3:
ac:7f:00:24:95:6c:17:d9:72:4f:c9:55:af:ba:17:
4e:0d:a3:ac:57:5f:61:d9:84:9a:06:c6:1c:8f:87:
df:2c:bd:2c:b9:77:5d:8e:4f:7e:e4:d9:f3:3f:1a:
f7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:39:30:E8:C0:06:4B:94:68:BE:74:03:CF:02:C7:2E:20:67:9E:BF
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:fb:bd:65:53:6a:62:04:6b:ac:39:1f:05:bd:06:91:d9:c0:
ea:fc:41:91:fc:0b:e6:7f:9c:ce:2b:68:ff:2b:a8:0a:d8:9a:
68:64:4b:94:9f:79:ab:cf:62:6e:6a:41:49:4c:ee:eb:70:70:
de:5d:20:31:cc:8c:9b:7d:9f:f5:67:d3:57:f3:05:49:7d:3e:
d7:eb:d4:3c:4f:53:3a:04:cb:22:33:fe:03:b9:10:fa:fe:07:
c2:9d:60:50:d9:df:37:09:7c:ef:9f:b7:17:e6:81:c7:38:f9:
c9:33:2a:e0:15:3b:1f:53:d3:bc:57:be:d4:30:fa:3a:89:95:
ce:47:db:87:8b:64:23:35:a4:df:68:42:5a:ac:ed:21:f0:94:
aa:21:02:f0:32:1b:45:cc:af:16:89:0c:a7:35:b9:75:d3:36:
61:93:4e:13:6a:4a:d2:f9:e6:33:9b:ca:47:6a:80:db:ba:22:
41:0a:d3:70:68:6c:35:ac:81:ed:a1:30:f6:23:e4:fb:69:aa:
6c:31:c1:92:2b:e1:0e:27:d6:f5:cb:c8:20:34:93:db:07:20:
4c:f6:55:1d:7c:3a:0f:89:3c:ac:de:53:9d:54:4a:7a:e7:54:
db:0e:79:90:31:5a:67:b1:4d:9e:a3:ab:c2:aa:3b:3d:43:67:
c9:dc:74:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:57 2025 by rpki-client on console-fra.rpki-client.org