Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: 2Ib3ECm3QRB2AYEfYtuZNzn+T5jUzEYJWwZGYQLy1JA=
Subject key identifier: 9B:28:5D:7D:39:18:18:C9:0A:36:F0:13:CC:CB:DE:35:3A:9A:E4:3D
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 0194BB2981BC2354395E607D7FCBB2042E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0B4B
Signing time: Fri 31 Jan 2025 07:00:46 +0000
Manifest this update: Fri 31 Jan 2025 07:00:46 +0000
Manifest next update: Sat 01 Feb 2025 07:00:46 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: FOCWsF6nyCEgFjRfpMAZyMvUBzvozBh3rP2ON8yI2zM=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:81:bc:23:54:39:5e:60:7d:7f:cb:b2:04:2e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Jan 31 07:00:46 2025 GMT
Not After : Feb 1 07:00:46 2025 GMT
Subject: CN=9b285d7d391818c90a36f013cccbde353a9ae43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dd:25:52:e1:9f:a7:a6:0f:69:ca:2d:46:6c:
51:cd:aa:ef:bd:f6:59:11:a6:44:c3:10:b6:97:80:
57:fa:87:df:f1:d7:51:1e:f1:9c:3e:9d:7a:cc:a2:
f9:77:42:eb:9e:a4:ca:d8:e2:b4:6c:84:e6:8f:21:
b7:9b:9f:fe:66:36:c5:1a:48:7f:23:82:c0:6d:0d:
d1:a9:13:15:32:9c:5a:44:ff:35:cb:b1:f5:f5:af:
19:2f:48:33:08:91:1d:a3:da:b3:5c:db:cd:78:79:
74:82:4c:7e:ed:44:44:68:5a:a2:62:bd:c1:9d:0f:
f6:d6:1e:d5:8e:75:8c:ea:d0:74:75:4c:32:bf:e8:
a6:9f:16:5e:d7:20:72:98:83:34:16:58:f6:8f:55:
75:52:79:1d:32:c0:c2:e6:d8:cc:ae:71:e6:5e:f6:
61:1b:23:0c:14:c7:7b:5a:3d:d8:ba:ca:b3:d3:eb:
75:c9:ee:55:b5:3e:fc:ab:00:cb:96:5e:ff:4f:87:
2d:7e:dc:d2:af:64:8d:08:50:64:76:02:2a:9d:66:
44:1a:86:5c:94:53:dd:0b:d0:de:57:87:d4:af:7b:
e3:1c:0f:ee:e5:02:6a:cc:48:f4:21:92:38:78:49:
d2:83:4d:f9:9c:3a:7c:f1:57:bb:7c:e5:b6:57:c8:
59:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:28:5D:7D:39:18:18:C9:0A:36:F0:13:CC:CB:DE:35:3A:9A:E4:3D
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:92:65:ea:55:4f:e0:cf:19:ff:cd:fd:b6:3a:37:07:ad:10:
e9:02:11:e7:8d:3e:39:86:5c:f4:4a:cc:31:f2:89:3a:30:f9:
6d:21:23:4e:ad:1b:b4:cd:cd:b9:f5:4f:d4:51:2e:58:c4:9d:
20:83:2c:35:31:ca:7a:7a:1e:55:64:0c:15:ef:89:e4:9b:b3:
70:ea:b1:57:0c:f5:ed:14:33:3a:8e:0f:78:d8:36:c5:82:94:
14:f4:0c:ac:da:76:42:f7:e0:74:93:98:78:2c:a7:0d:12:a4:
53:83:f3:13:c4:c2:99:31:a6:b1:a3:ed:7e:c7:e8:2f:6f:9c:
42:d5:45:08:9b:42:76:ad:f9:4c:79:12:b6:52:af:69:0f:91:
a9:77:6a:24:6f:36:53:1a:aa:07:6e:76:e3:ae:88:fd:4e:79:
e6:ef:11:2a:d9:d5:33:a9:00:de:42:69:54:cd:ac:ca:c7:3c:
07:db:2e:99:17:81:9c:72:ed:18:b7:5f:a1:b6:d7:99:db:82:
31:e3:4b:f8:52:fd:b3:8c:dd:3d:62:1a:df:05:9c:32:ec:85:
a9:92:1c:29:d8:dc:ba:1b:fe:d6:49:48:79:77:a3:2a:46:92:
d0:8e:3c:53:b1:02:99:c1:55:76:43:7d:40:68:35:5b:12:34:
b7:8e:c9:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:36:08 2025 by rpki-client on console-fra.rpki-client.org