Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
File: Sy7AqbnmDoZSFoymnZI58nMHw3I.mft (raw, json)
Hash identifier: EDTLkuhNrcIdhFJ4Fsdxj6N0Ua+BhO6B9ce6++PUZi0=
Subject key identifier: 61:1B:03:D3:99:45:E6:4C:90:7C:87:E7:1B:00:92:6D:D6:28:2D:E5
Authority key identifier: 4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
Certificate issuer: /CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Certificate serial: 0194BA843753017A25158071C275CE2C41C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
Manifest number: 138E
Signing time: Fri 31 Jan 2025 04:00:14 +0000
Manifest this update: Fri 31 Jan 2025 04:00:14 +0000
Manifest next update: Sat 01 Feb 2025 04:00:14 +0000
Files and hashes: 1: I0uKuQxKXFKWPHV3tWp8USg1X-E.roa (hash: WXxoeNxUFy+lmF1DwKWF+FMyVOrtNM4sTEwb6rXBq/g=)
2: Sy7AqbnmDoZSFoymnZI58nMHw3I.crl (hash: K1BhNIpwnvCLmItMfcRLaH1aIzB/qEVjw0VmfepiwfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:37:53:01:7a:25:15:80:71:c2:75:ce:2c:41:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Validity
Not Before: Jan 31 04:00:14 2025 GMT
Not After : Feb 1 04:00:14 2025 GMT
Subject: CN=611b03d39945e64c907c87e71b00926dd6282de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c8:d9:7f:12:c8:5d:42:39:2c:24:f3:ff:a3:
57:e6:62:ec:b5:95:66:5b:41:cf:ed:79:76:f6:38:
55:58:ea:3e:cc:54:10:cc:9a:97:f9:47:85:fd:a4:
88:d1:0d:aa:5a:59:57:6d:c6:01:4a:7f:f9:31:ac:
02:25:97:10:f2:72:ba:9c:45:4b:62:60:59:27:b5:
57:64:02:ec:bf:7e:79:75:97:38:04:35:86:6a:31:
5c:0e:6d:98:b4:8c:de:5b:d6:6d:b8:c9:ff:86:bd:
c0:91:9f:11:9f:19:c8:19:e3:cf:e1:1e:be:f6:7d:
00:48:8f:58:c3:09:3c:b5:9d:dd:0c:77:95:06:f3:
69:77:6c:24:b3:a0:21:a1:32:ae:4d:c1:f6:e5:b6:
dc:af:c8:9f:5a:db:7b:bd:16:8f:9e:04:68:41:b5:
5e:6c:9e:ee:a1:a2:6f:a5:f6:9c:99:93:87:49:35:
a8:c7:8e:7c:39:d1:48:58:b2:aa:4a:e7:51:22:40:
67:52:97:37:81:cc:43:9a:26:b9:85:66:1e:3e:f5:
b4:fe:59:0c:48:e1:15:bb:4b:fe:58:0d:08:25:6d:
c7:47:e2:d1:81:45:83:51:82:79:39:30:81:4c:c5:
26:12:d9:2d:10:50:f5:f8:85:3f:d6:19:c5:83:92:
54:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1B:03:D3:99:45:E6:4C:90:7C:87:E7:1B:00:92:6D:D6:28:2D:E5
X509v3 Authority Key Identifier:
keyid:4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e9:b5:f0:d7:40:5a:59:62:6a:94:82:98:a0:34:bd:ae:48:
3f:60:61:23:8d:2c:c6:93:a0:c2:c6:d7:c2:26:48:5c:4d:02:
97:d8:e9:1d:3b:da:b1:b8:d3:5d:32:40:77:6c:69:96:c3:ba:
c4:16:dd:1a:4b:f2:cb:51:86:dc:1b:e8:63:39:8c:9a:fe:2c:
29:d7:f1:da:7b:fb:70:3f:4b:fe:96:70:4c:f8:05:63:6f:20:
c8:82:ea:2a:c0:85:9b:1e:b4:bd:33:3b:54:56:57:5d:9d:59:
32:4d:ad:d2:9b:2a:b8:02:84:c1:15:24:75:ab:7c:d6:ee:3a:
f6:fb:9a:8e:4f:fc:f3:b8:37:c1:91:32:8b:9a:a8:47:3d:11:
71:a9:51:1f:38:af:ad:6e:4c:b5:26:ed:e4:ea:fa:f6:3a:f3:
22:db:87:f4:5d:25:16:70:9c:2c:d4:24:1a:61:d2:38:91:bd:
f9:77:09:4a:ef:f8:4e:cb:5e:a8:2f:76:94:1d:d3:13:38:6d:
4d:5f:40:6d:0a:d2:b9:2f:41:a1:32:05:4a:44:6c:11:a7:1a:
a0:77:3a:c6:a8:07:f3:25:f5:35:31:c9:ac:ed:7d:71:4d:40:
9e:b7:b9:6d:7c:39:9e:2d:7d:33:2b:35:84:2e:a6:05:ef:83:
0d:5f:4a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:29 2025 by rpki-client on console-fra.rpki-client.org