Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
File: aqNKS6w794E80qZrT0W5x4bdNUI.mft (raw, json)
Hash identifier: eCXO5Kg4n8W5TNlpxZBddfQMpy8PpUKUOEx6QvIsVbI=
Subject key identifier: 68:97:4C:87:D9:EA:45:78:B0:40:9C:5F:14:8D:8E:74:D4:48:DC:67
Authority key identifier: 6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
Certificate issuer: /CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Certificate serial: 0194BA84B4FE89F35701B641007599C8BB8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
Manifest number: 0678
Signing time: Fri 31 Jan 2025 04:00:46 +0000
Manifest this update: Fri 31 Jan 2025 04:00:46 +0000
Manifest next update: Sat 01 Feb 2025 04:00:46 +0000
Files and hashes: 1: aqNKS6w794E80qZrT0W5x4bdNUI.crl (hash: WgzHouC1dI6Z7g+AhBIaSI/PP5h+rSpQPHT1KfjkZNM=)
2: b9B102wOebSEH0EiAU4o7haSTNE.roa (hash: w8TiYlYrrX0BopJEemJvanYXKIEW88KrCZAniAUGX7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:b4:fe:89:f3:57:01:b6:41:00:75:99:c8:bb:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Validity
Not Before: Jan 31 04:00:46 2025 GMT
Not After : Feb 1 04:00:46 2025 GMT
Subject: CN=68974c87d9ea4578b0409c5f148d8e74d448dc67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:00:03:6e:d2:bf:b5:aa:f9:7e:e7:52:c1:38:
f1:d4:4f:10:e8:54:08:09:5a:8b:ed:9f:cf:ad:8d:
45:5c:40:c5:33:be:8a:01:fb:73:94:cf:50:c9:e8:
84:de:75:c2:e7:1a:9f:a8:91:0a:93:d6:4e:5c:76:
56:37:74:e3:43:25:e3:04:df:29:43:1e:05:a6:75:
9f:b3:15:18:af:4c:18:28:b6:15:f7:dd:c5:e2:6c:
83:a0:96:6f:10:c0:29:88:78:4b:a8:91:6c:b9:a8:
98:c1:5f:71:25:5f:79:29:4e:bd:1f:42:81:14:e3:
74:f0:84:ff:65:92:40:ce:fd:6e:36:97:23:55:30:
b6:66:1a:02:ad:9f:30:33:19:62:bc:cc:ce:ae:a4:
e6:b8:85:7f:05:b9:74:24:61:5e:34:0d:5a:be:91:
57:59:f3:22:0e:3e:da:df:1f:1d:75:bb:e2:30:df:
63:c5:00:c6:a6:1e:a9:49:52:d4:ef:30:f0:88:bb:
66:29:07:46:21:d7:1f:94:d4:1f:98:09:22:88:d2:
7a:5e:07:29:bd:8e:c2:bb:93:d7:ee:84:90:cb:39:
74:a5:76:85:ea:de:a7:6f:96:a7:ce:e3:ac:0a:03:
4c:da:5d:26:c2:93:c1:35:ad:ce:9c:95:07:ac:ae:
c1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:97:4C:87:D9:EA:45:78:B0:40:9C:5F:14:8D:8E:74:D4:48:DC:67
X509v3 Authority Key Identifier:
keyid:6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:dd:43:ea:51:ac:21:4b:43:d2:12:62:e3:86:2f:e3:00:fb:
e5:dd:88:16:2f:e5:4a:48:1a:69:b4:46:55:2c:1a:3f:36:4b:
11:82:47:21:6b:6d:85:c7:e8:a3:a2:40:5d:79:2c:40:8c:30:
2e:fa:ab:7c:01:ab:df:27:d7:61:38:46:5a:de:f2:e3:6a:fa:
5d:87:8c:ec:1a:9d:b6:34:71:4d:f7:f6:fc:93:7b:75:6e:48:
ba:83:e1:f0:87:bc:e5:76:f8:f7:f0:3f:f1:86:08:ed:69:8f:
28:8a:39:fd:8b:66:0c:4a:c3:7f:09:10:85:d1:d4:8b:73:79:
62:fa:2d:cd:1d:0c:19:12:2b:65:16:01:77:0a:f8:75:f7:88:
a6:17:42:b0:ef:45:09:01:ae:55:f4:fd:5e:48:4f:77:bb:7a:
c2:91:96:a5:a4:00:88:24:8f:78:14:8b:16:06:d8:7e:78:08:
bd:60:7b:e6:35:2f:ab:1f:b4:5a:cc:7d:b2:a6:d4:dd:e0:6d:
d0:2c:35:60:83:9d:8b:26:cf:76:9c:54:22:08:56:89:bf:fa:
1c:3a:bb:e1:7a:fa:7e:92:d9:57:57:73:f3:15:bb:aa:22:0d:
b4:21:26:72:1d:59:1b:40:65:58:69:c5:d4:b1:9f:df:bf:b2:
12:74:a4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:37:53 2025 by rpki-client on console-fra.rpki-client.org