Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
File: khjNJev3TLGwBLAe5QVQP_8kbWE.mft (raw, json)
Hash identifier: Em4g+5yVZi8M7HzGEX5Xis5eRfJ8maTf1xmALnIFYhw=
Subject key identifier: 57:0B:3A:A6:CF:48:4D:8E:CD:AC:47:F4:5A:66:13:E9:EC:AE:A4:47
Authority key identifier: 92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61
Certificate issuer: /CN=9218cd25ebf74cb1b004b01ee505503fff246d61
Certificate serial: 0194BABB9761E8ABB5302F92932E53AF356B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
Manifest number: 0258
Signing time: Fri 31 Jan 2025 05:00:43 +0000
Manifest this update: Fri 31 Jan 2025 05:00:43 +0000
Manifest next update: Sat 01 Feb 2025 05:00:43 +0000
Files and hashes: 1: hzP2EY4V13WQH8d_pNPxVTI0pdE.roa (hash: p8JhkO3NrYZd+pd4+yMBXMa+gMDLxEDL5Q92aazBUYw=)
2: khjNJev3TLGwBLAe5QVQP_8kbWE.crl (hash: S/m4y2Pb1A1ve77jyz7mCmZCS+W8MbJLZtCjFjNNOlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:97:61:e8:ab:b5:30:2f:92:93:2e:53:af:35:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9218cd25ebf74cb1b004b01ee505503fff246d61
Validity
Not Before: Jan 31 05:00:43 2025 GMT
Not After : Feb 1 05:00:43 2025 GMT
Subject: CN=570b3aa6cf484d8ecdac47f45a6613e9ecaea447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:59:33:9a:81:52:a7:d1:a4:03:66:25:f0:60:
ab:01:6a:1f:eb:2c:24:9d:6d:93:a8:c5:37:ca:a9:
1e:71:45:bf:6a:15:12:f6:69:f9:7e:d2:44:d1:f9:
35:7e:64:da:f5:d3:81:6c:d6:5c:49:10:64:2a:c9:
10:11:0b:0f:d2:42:e4:be:f9:b5:f4:32:fc:44:04:
eb:dc:d2:d5:53:58:fd:83:cd:03:49:2f:fc:c5:af:
9e:7a:13:54:7b:04:52:05:55:9f:b4:9f:6a:86:1e:
07:78:65:ad:3b:4d:54:2a:3a:8a:43:2d:ad:6b:52:
b1:42:5f:df:57:34:69:cf:fe:6f:00:e2:0d:1e:0d:
17:8e:05:62:92:5f:06:37:66:d5:93:96:a6:e5:8b:
0d:b3:ad:f4:88:48:93:22:34:a1:bf:91:29:80:f8:
59:53:b8:c4:3a:6e:47:8f:b1:c1:ca:3a:85:e0:59:
74:0b:58:87:d5:e4:53:95:f5:74:e9:73:57:0e:11:
6d:5e:24:a4:9e:86:ca:61:c9:49:c7:e5:51:f2:60:
3f:3b:e8:af:96:12:f6:a9:f0:b1:d0:de:1a:75:ff:
d0:05:c6:f5:56:96:3a:bc:8a:fa:f5:fd:0f:10:e1:
ab:80:59:d1:04:cc:fe:36:62:0b:ca:f6:88:e7:91:
07:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0B:3A:A6:CF:48:4D:8E:CD:AC:47:F4:5A:66:13:E9:EC:AE:A4:47
X509v3 Authority Key Identifier:
keyid:92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:f7:66:68:d4:85:08:7b:99:d5:71:89:60:c3:73:5d:3e:10:
a2:e1:a0:06:79:f3:06:14:e0:0a:59:03:c0:7d:7a:82:7d:53:
48:f2:71:eb:8b:db:50:70:05:45:2e:8e:b2:a0:8c:69:14:2e:
0d:1a:7d:6a:10:f7:da:6f:c8:90:a0:2c:c7:56:75:c7:e9:b3:
cf:85:eb:04:77:fc:b5:0f:f9:d7:ac:9e:8c:7b:a0:12:e7:d4:
fa:ce:0c:b4:44:b2:c3:fa:cd:f0:66:db:55:32:49:88:5c:3f:
d7:0f:50:b4:ef:9f:26:03:b1:53:5d:28:e6:2d:30:a2:d0:94:
c7:16:ff:6e:92:dc:68:dd:c1:e1:61:14:39:f7:9d:06:c4:20:
87:82:aa:1f:8c:5b:d8:e8:75:68:a8:e1:12:56:1c:d5:f2:42:
9a:d3:ed:b5:0b:8c:12:ff:68:4a:f8:fb:82:08:de:7e:68:a0:
4d:d9:35:83:68:fb:e8:1b:21:47:19:0d:02:42:9d:d7:f1:d9:
53:db:d6:80:da:f6:69:ec:f5:77:57:0b:81:a8:73:6e:94:6d:
3e:10:9f:65:63:a7:ce:d5:68:e4:c2:78:e7:6e:94:c7:bd:4f:
74:56:9b:a0:2a:92:cb:2c:a6:dd:b9:43:17:12:bd:6f:e3:1e:
d9:98:af:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:25 2025 by rpki-client on console-fra.rpki-client.org