Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
File: IwbLbMzQnnXtGfwG-1kkzyejmMM.mft (raw, json)
Hash identifier: 9g+CvtliXzx5EyeDyJnHlV8C4HczCJeXpNurdd7ar2E=
Subject key identifier: E8:29:CE:4C:0E:A6:73:48:1E:6E:2C:41:EE:76:57:A0:68:32:DF:AB
Authority key identifier: 23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
Certificate issuer: /CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Certificate serial: 0194BB600FE6042DE50B9AAB9642167B0DDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
Manifest number: 01A5
Signing time: Fri 31 Jan 2025 08:00:22 +0000
Manifest this update: Fri 31 Jan 2025 08:00:22 +0000
Manifest next update: Sat 01 Feb 2025 08:00:22 +0000
Files and hashes: 1: IwbLbMzQnnXtGfwG-1kkzyejmMM.crl (hash: SoZitGEL7nK/k5vZcEtAhz8yw77fQAYW2+5bhiDoca8=)
2: YYev6Pek4prQk97zPtNDo2u2KRU.roa (hash: wJZbyHz8STJ6eKcT9ZVX0wVCLZZb2WUlXYfMJ35kaXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:0f:e6:04:2d:e5:0b:9a:ab:96:42:16:7b:0d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Validity
Not Before: Jan 31 08:00:22 2025 GMT
Not After : Feb 1 08:00:22 2025 GMT
Subject: CN=e829ce4c0ea673481e6e2c41ee7657a06832dfab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:85:88:d8:42:af:84:02:0c:a1:34:f8:6d:19:
3f:97:f8:67:c4:c0:fe:d1:f7:73:47:b8:40:60:2a:
df:8b:e5:ff:fa:0b:e9:59:6a:44:f2:61:c5:af:5c:
9f:c8:34:2b:7e:10:83:57:80:62:e0:b8:53:38:e1:
e4:5c:84:bf:6e:25:d8:8e:d3:28:f5:38:61:60:83:
15:ea:59:dd:04:22:f9:00:80:68:63:96:8d:f9:e9:
c3:5b:c6:78:9f:5c:ab:ec:47:f7:26:02:48:0a:0e:
88:5b:53:c8:a1:7c:90:6a:54:5d:fb:d6:3c:61:2d:
15:6b:6e:4f:a8:45:21:21:ec:39:88:ef:3d:d2:17:
5a:94:86:4f:24:e5:ce:d7:5f:81:1f:67:6f:f1:91:
fe:4f:c2:46:17:51:90:85:3e:95:2c:be:ab:4b:28:
12:e8:d2:78:a9:1f:c5:1a:2f:c5:4b:e8:c9:c8:4b:
ad:0c:b9:a6:e2:46:d3:06:d2:bc:22:35:38:99:ac:
5b:88:06:6c:1e:ba:1b:36:f7:4e:2c:af:4b:f1:92:
56:1c:06:f7:d4:d2:7c:c5:ff:38:7b:6b:b7:6a:7e:
f3:b4:99:e9:e2:41:0f:cc:2c:8a:d9:28:98:ec:ea:
f0:54:63:63:d3:51:18:cb:e7:34:e8:e3:bc:c7:db:
82:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:29:CE:4C:0E:A6:73:48:1E:6E:2C:41:EE:76:57:A0:68:32:DF:AB
X509v3 Authority Key Identifier:
keyid:23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:33:2a:97:3e:5d:23:50:05:a6:6a:6d:d5:01:75:de:df:e8:
40:da:ed:2b:2e:0e:f5:4c:3f:3f:46:16:fc:a8:d3:28:1f:57:
d4:5f:19:04:aa:49:27:76:45:ed:62:77:7e:d7:75:b0:a3:92:
e1:cc:52:15:50:1b:87:fb:7c:88:74:50:ee:43:6e:2d:9f:1d:
45:13:5b:40:d5:13:22:0e:b8:3f:7e:69:f1:54:c5:e1:cd:3f:
30:8f:0a:df:02:8e:30:0c:69:36:37:ea:c2:81:de:bb:22:67:
01:8a:dd:ba:a2:c4:f2:23:bb:bd:22:5b:b8:49:05:b0:85:55:
a4:1f:23:7b:3b:fc:55:79:2f:38:d0:bb:fb:31:4e:33:48:82:
b5:89:24:42:bc:47:eb:db:60:fc:23:9f:aa:7d:5b:5b:b6:ae:
c4:45:f7:1a:5b:b8:0a:2f:9d:21:f2:fd:f1:40:00:27:01:05:
5d:b5:ac:d9:e0:d6:0d:78:2d:5c:dc:77:28:35:a8:03:14:4a:
6b:b1:9f:c0:ab:38:e2:2c:0a:a2:92:61:b5:8e:ea:a9:b8:aa:
12:c5:fe:47:46:be:1d:08:b0:3e:c8:24:a7:13:02:7f:66:c9:
4a:88:03:66:95:a9:0c:ab:d5:f3:29:eb:0c:e4:08:cd:6c:fb:
be:8b:4c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:03 2025 by rpki-client on console-fra.rpki-client.org