Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
File: Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft (raw, json)
Hash identifier: KStRvj1TvLnfT7fAuwNw0QULNLE7upUT32UYd1hARJA=
Subject key identifier: 9D:F4:B2:58:5C:C8:CD:4B:EA:8D:A7:C5:24:63:0C:BC:9D:5D:20:51
Authority key identifier: 2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
Certificate issuer: /CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Certificate serial: 0194BABB091DF20B0281712404DA492E9DA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
Manifest number: 0D57
Signing time: Fri 31 Jan 2025 05:00:07 +0000
Manifest this update: Fri 31 Jan 2025 05:00:07 +0000
Manifest next update: Sat 01 Feb 2025 05:00:07 +0000
Files and hashes: 1: Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl (hash: BpeSBlWHAC1eTOKXHma54bF7WDy3MzDfk3yXRI/jDOY=)
2: so_dnSs4BnrVZYioQ2oy6VOroHk.roa (hash: EXJQLyqb51APlznWLoV0tXq0fpUDEu2dhVkLYk30HsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:09:1d:f2:0b:02:81:71:24:04:da:49:2e:9d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Validity
Not Before: Jan 31 05:00:07 2025 GMT
Not After : Feb 1 05:00:07 2025 GMT
Subject: CN=9df4b2585cc8cd4bea8da7c524630cbc9d5d2051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:46:99:71:a2:97:25:51:ff:43:64:fa:4e:d9:
f5:06:c4:2c:7b:9d:f1:3c:7d:75:ca:fe:de:ab:a6:
40:be:1e:b0:31:3a:dc:bf:4d:95:f0:6a:6a:c2:e6:
1d:cf:a3:04:61:18:96:80:3f:4e:7b:53:f4:2f:2e:
04:73:5e:db:e5:f4:2d:a9:cc:c7:11:7f:3f:40:6a:
c5:19:f1:92:4e:79:ca:e2:32:0b:33:54:d8:e2:93:
e0:f3:cc:e0:8a:28:76:66:48:c5:3d:8d:00:ee:69:
bf:64:37:3d:8c:c4:41:f9:e6:ad:f5:38:38:b8:0a:
8c:15:bd:7e:f7:94:26:99:ea:68:29:7d:f3:0f:e2:
80:ef:e7:33:15:f7:78:0c:14:5e:ca:2b:18:aa:3b:
66:74:8b:0e:8b:ab:75:d3:bb:dd:3e:c7:2c:e5:f8:
0b:f1:0a:b9:4f:cd:62:88:15:c0:f3:d6:8f:18:b3:
c6:b3:15:c6:1d:5b:18:8c:4f:68:2b:bd:98:52:83:
fe:50:35:74:32:0f:d7:c8:b6:44:09:1d:c3:f6:54:
a6:ec:2f:fa:64:6e:d3:68:98:0e:3e:4f:b4:1e:30:
8a:4f:58:3c:af:86:a6:96:87:23:1e:96:60:e3:c9:
1a:ee:fa:2a:ad:2b:9b:e1:4a:58:a0:27:fd:a3:96:
a2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F4:B2:58:5C:C8:CD:4B:EA:8D:A7:C5:24:63:0C:BC:9D:5D:20:51
X509v3 Authority Key Identifier:
keyid:2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:da:d3:70:80:70:48:d9:8f:3d:d3:51:69:93:9b:95:51:fb:
8e:7e:43:d6:0c:94:52:0c:dd:66:b1:32:57:88:8b:56:1f:b1:
a7:63:74:b1:1b:c6:25:cf:66:53:f0:78:34:7a:0e:8c:ed:20:
d1:d2:96:1e:b0:4e:af:30:e9:5a:cb:1c:c2:8e:89:a6:bb:eb:
84:69:43:f8:fc:8f:57:6c:8c:26:fd:4a:c2:32:c4:5a:b2:35:
2c:2c:d8:bb:51:a0:16:20:de:be:29:74:07:b0:8f:94:c1:42:
1a:60:44:1a:f9:cc:5f:8c:40:e6:02:fd:b0:c3:e7:34:3e:e6:
23:21:0d:8e:54:0f:e3:14:53:9f:ac:e1:de:c3:1d:3d:a5:e1:
8a:ef:f2:99:f2:8c:df:28:66:5a:dd:e8:16:a1:da:d5:9d:8d:
47:fe:23:b4:4a:a2:73:61:1e:7d:ed:4d:bf:5a:1a:60:d8:21:
70:ef:38:31:8e:5c:85:a7:b7:74:b9:3c:43:31:ae:21:90:80:
9b:78:1d:ae:e0:d2:36:7a:35:62:59:56:0c:70:76:6f:cd:2a:
ad:c1:dc:4a:48:24:cd:31:d6:b1:f0:45:ab:60:73:fc:56:23:
65:19:48:e9:d4:4c:5c:4d:37:b0:9d:8e:46:8f:bd:3d:a3:2b:
f2:8f:f3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:37:53 2025 by rpki-client on console-fra.rpki-client.org