Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
File: D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft (raw, json)
Hash identifier: p6fNPkrARzyFajoEo6Q1+ocd1GkPmgarmog+lqEm+Yw=
Subject key identifier: 86:D2:16:6D:D1:C8:4B:9C:7C:DE:3F:2D:9C:67:F7:78:B2:9D:EA:E4
Authority key identifier: 0F:9C:5A:E9:4C:AD:ED:87:5C:8D:B2:F5:83:3C:A8:8D:2F:68:ED:0E
Certificate issuer: /CN=0f9c5ae94caded875c8db2f5833ca88d2f68ed0e
Certificate serial: 0194BABBDA7362F1B7EFB0B5517D2E485FD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
Manifest number: 01B0
Signing time: Fri 31 Jan 2025 05:01:00 +0000
Manifest this update: Fri 31 Jan 2025 05:01:00 +0000
Manifest next update: Sat 01 Feb 2025 05:01:00 +0000
Files and hashes: 1: 6BzrArwu58N5sBVvJVBthqND_N4.roa (hash: OfB+8pNfA8OgycXqKbk5L8hxFdJxQJhdYPo6qkN9fXA=)
2: D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl (hash: gBIQPXqjPDFlVpd6kR5uEa/+4FENjuXby6mLqFLWH6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:da:73:62:f1:b7:ef:b0:b5:51:7d:2e:48:5f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9c5ae94caded875c8db2f5833ca88d2f68ed0e
Validity
Not Before: Jan 31 05:01:00 2025 GMT
Not After : Feb 1 05:01:00 2025 GMT
Subject: CN=86d2166dd1c84b9c7cde3f2d9c67f778b29deae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ec:b7:11:42:90:a9:bb:92:3d:14:72:30:44:
27:2a:bc:0c:d5:54:82:d9:ad:22:b7:4d:e8:f1:69:
ba:78:2c:be:32:27:b4:d1:cf:70:70:0d:57:dd:e8:
36:c8:c3:06:ef:e1:76:c9:3d:12:6c:89:77:8e:24:
da:f5:5a:a6:05:2a:c3:b8:79:b3:60:11:43:65:40:
50:31:39:fd:98:b4:b7:bc:f7:e4:60:ec:c2:8b:3a:
1a:7e:ab:f1:53:03:f7:d7:7d:7a:89:91:64:8d:aa:
45:cf:21:04:01:80:96:f8:8a:b5:5c:48:e2:45:2d:
54:f2:37:1f:fa:cf:8a:20:00:f4:ae:75:77:df:42:
be:46:97:2e:d6:38:5f:0a:42:70:08:6a:b6:ab:07:
b6:66:c3:7f:ca:e8:0a:11:a5:26:00:0f:70:b1:0e:
31:89:d7:b0:59:93:4d:71:54:54:b0:98:66:29:ce:
09:db:3f:fd:fb:60:76:f6:64:4f:29:5d:dc:a5:99:
51:6c:d4:43:22:4c:24:b9:2c:19:0e:46:7d:b8:69:
6f:1e:65:0a:24:bf:f7:5f:d9:aa:1d:df:18:66:f6:
ed:3c:a4:c3:75:9e:ef:cb:a7:d9:c5:e6:16:86:66:
5f:13:14:4f:40:f9:c4:1e:1d:88:fd:c4:0f:b2:1a:
3f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D2:16:6D:D1:C8:4B:9C:7C:DE:3F:2D:9C:67:F7:78:B2:9D:EA:E4
X509v3 Authority Key Identifier:
keyid:0F:9C:5A:E9:4C:AD:ED:87:5C:8D:B2:F5:83:3C:A8:8D:2F:68:ED:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:40:cc:06:70:d3:8c:37:76:ef:b9:4c:16:3f:d9:d6:77:9c:
ce:86:97:47:21:60:af:31:f2:17:f5:16:41:c2:cc:8e:59:28:
d9:bc:c8:56:20:7a:53:67:66:ed:b5:43:e1:c1:a2:da:9b:e9:
46:a6:72:1a:f2:8d:a1:d7:3f:6f:b0:a9:78:c9:d1:33:1d:c1:
3d:79:11:9a:32:75:2b:c9:57:85:82:29:ee:7f:28:22:0b:2f:
18:2e:01:b0:bf:f2:78:50:fc:79:59:fe:83:ba:dc:b8:ee:4f:
e2:24:92:c0:fd:58:2f:b9:d9:26:76:26:0b:22:22:60:78:93:
5e:ee:2e:a7:f6:70:23:b1:3e:b3:02:0e:30:cd:8e:d6:23:cd:
a5:18:7b:cd:06:b3:52:dd:74:8f:81:e8:93:82:34:71:79:bb:
b1:67:2e:8b:d9:ef:22:c4:2e:22:d8:e3:f5:cc:ed:d8:99:0b:
cd:3f:fb:de:b5:76:50:13:40:b6:8d:fe:43:7b:b3:5c:5a:92:
98:71:79:03:c0:9d:f4:b9:9d:0c:f7:e9:f3:81:eb:20:0a:b3:
ea:4a:f0:9a:f4:e4:31:11:a7:97:ff:0b:19:59:9b:c9:4c:c7:
2e:de:d9:29:49:94:77:d5:50:b0:1a:32:6b:1d:ce:2a:4d:11:
cc:2a:a7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:36:10 2025 by rpki-client on console-fra.rpki-client.org