Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
File: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft (raw, json)
Hash identifier: rmw3uc8SBknjm2Zv724LEdpVqOBW0oDqpcjsiucjDGA=
Subject key identifier: E4:1E:82:07:0C:76:4D:C0:AC:F5:CB:42:96:BB:0B:AF:79:3E:13:96
Authority key identifier: 22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
Certificate issuer: /CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Certificate serial: 0194BABBD7E549CD814A8048947195141F0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
Manifest number: 09FA
Signing time: Fri 31 Jan 2025 05:01:00 +0000
Manifest this update: Fri 31 Jan 2025 05:01:00 +0000
Manifest next update: Sat 01 Feb 2025 05:01:00 +0000
Files and hashes: 1: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl (hash: CQVjvwh9gpBl/1d6Q82Qw8PG4+bS5Q/VqmBevHhRKqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:d7:e5:49:cd:81:4a:80:48:94:71:95:14:1f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Validity
Not Before: Jan 31 05:01:00 2025 GMT
Not After : Feb 1 05:01:00 2025 GMT
Subject: CN=e41e82070c764dc0acf5cb4296bb0baf793e1396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:25:91:cc:b9:9d:92:a3:ed:fb:d2:c6:ff:64:
33:79:a3:0d:f0:ba:14:97:b8:af:d1:21:1f:af:e5:
53:69:d2:4c:ef:5b:27:07:a3:5f:2e:0c:5c:95:42:
a9:75:40:9b:b6:a3:bb:2d:1a:9f:00:38:ae:c1:10:
85:d8:51:ff:4a:d5:04:66:1a:9e:dc:3c:37:f3:06:
c6:eb:fb:b2:12:08:be:de:02:58:2b:f8:f2:6a:61:
6e:15:09:59:4b:00:57:c6:59:bb:a2:8f:ab:d8:45:
e9:9d:cd:02:b0:b8:b8:29:a1:8f:20:1d:ec:93:2b:
1f:72:7b:27:a4:f8:87:ee:e9:5a:46:8b:e5:a7:e5:
b1:80:79:20:64:db:a2:8a:29:60:7f:b0:4a:b2:23:
a4:1d:64:e1:0f:dd:28:f6:99:4a:5e:e1:23:63:e1:
1a:02:eb:18:18:ca:f1:e4:02:3a:61:12:40:b2:5e:
c1:cb:76:88:6f:08:1c:4b:49:6d:cd:70:f1:3d:6c:
08:79:57:f9:71:62:73:2e:5e:8a:0a:0a:b7:73:f2:
fb:2b:70:3c:4a:d3:f4:31:ba:e6:57:85:84:71:d9:
13:72:dd:49:5e:94:c9:e2:c4:e1:b6:b6:58:a4:86:
1b:dc:52:44:a3:51:5b:c3:bd:9a:7a:3d:be:6f:5f:
b7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1E:82:07:0C:76:4D:C0:AC:F5:CB:42:96:BB:0B:AF:79:3E:13:96
X509v3 Authority Key Identifier:
keyid:22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ea:e6:f1:15:f6:90:e5:c5:72:18:2d:97:94:75:2e:ab:86:
60:84:7f:6a:4a:0c:a3:c7:65:d2:fd:21:0d:41:af:b0:24:c3:
e6:38:0e:07:03:b7:10:48:6e:ec:3f:18:07:37:be:b7:78:e2:
36:f4:c3:7e:2b:d7:f5:0e:f1:3b:9e:b2:8a:a2:cc:dc:e0:6c:
d3:3e:7f:4d:44:5c:73:5a:89:86:63:77:18:cb:d6:01:2d:ab:
e6:ab:16:7c:77:53:aa:33:82:6a:6d:b5:16:90:4e:8a:79:d8:
87:af:48:7e:9c:c9:4c:d5:7c:9a:f5:2b:84:a6:7e:47:89:61:
ff:c1:b5:61:13:aa:87:bc:fd:d8:f6:33:90:5d:58:7a:4c:51:
ce:04:41:78:03:09:56:d9:f6:6d:65:d9:08:aa:be:76:7a:72:
99:73:4a:7e:0e:56:bb:06:0c:d4:c4:1c:2c:f3:75:fa:4a:4c:
37:7e:61:c1:57:fd:05:e4:f6:3d:c2:de:3f:c1:09:a4:27:06:
4f:71:70:6c:e2:f3:88:92:0f:d8:ce:6d:16:8c:8b:9d:d0:8b:
77:cf:33:0e:aa:8f:b3:0a:63:74:5c:45:87:8b:af:24:44:94:
32:a2:d9:51:01:15:ba:3b:f2:ed:59:26:4f:81:e7:e5:9f:09:
a2:bd:5a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:23 2025 by rpki-client on console-fra.rpki-client.org