Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
File: sYfM7EmqX2aqAmSNkbSi7o_3veY.mft (raw, json)
Hash identifier: V0BUWLJqtPTJjnS6iJ/NrwJCzRkUI5kylfBKDsvy4aw=
Subject key identifier: B3:57:03:8B:7F:03:BA:F9:05:DC:03:F5:33:9F:F8:73:2E:34:42:72
Authority key identifier: B1:87:CC:EC:49:AA:5F:66:AA:02:64:8D:91:B4:A2:EE:8F:F7:BD:E6
Certificate issuer: /CN=b187ccec49aa5f66aa02648d91b4a2ee8ff7bde6
Certificate serial: 0194BB5FD9F557A9CF12234B21A485CF2420
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
Manifest number: 0158
Signing time: Fri 31 Jan 2025 08:00:08 +0000
Manifest this update: Fri 31 Jan 2025 08:00:08 +0000
Manifest next update: Sat 01 Feb 2025 08:00:08 +0000
Files and hashes: 1: OfdMOcUbbc7oEojb1zo08qkIRuQ.roa (hash: IicrU+y2VcBYbd4QyyTDfZZRjrYA59p1rvePkvFgFRg=)
2: sYfM7EmqX2aqAmSNkbSi7o_3veY.crl (hash: 7vaHPw1s6pPGwI78W+3aEBVYh+HLXIvteG0cvHRv1VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:d9:f5:57:a9:cf:12:23:4b:21:a4:85:cf:24:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b187ccec49aa5f66aa02648d91b4a2ee8ff7bde6
Validity
Not Before: Jan 31 08:00:08 2025 GMT
Not After : Feb 1 08:00:08 2025 GMT
Subject: CN=b357038b7f03baf905dc03f5339ff8732e344272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f2:a0:9e:da:c6:92:65:2d:f8:0b:24:47:45:
40:97:71:46:9b:39:73:38:9b:e0:57:42:9c:6f:fc:
7d:76:eb:20:21:39:f4:53:c9:90:1c:14:7d:af:22:
b6:eb:d5:d6:fe:d2:e9:5f:ec:f7:87:19:bd:f3:01:
9e:26:21:b5:b4:80:e4:66:68:a8:45:4c:41:55:a8:
e7:0e:7e:a7:20:c3:e9:9f:28:49:44:f4:c4:86:9e:
92:c7:64:74:f7:1a:cd:15:ba:de:4c:eb:14:57:72:
d3:06:03:61:b0:7a:75:3e:7b:4c:ec:67:34:81:eb:
d2:25:83:89:ec:23:b5:d1:5e:c4:ec:6a:67:57:d8:
60:56:66:e6:f5:5e:94:d9:ea:a8:01:e0:72:3c:1b:
89:ab:08:c1:77:b4:ef:ec:38:36:21:8d:80:e1:66:
79:8e:2f:32:82:c2:1e:97:3e:ee:95:66:43:19:12:
0e:7a:0e:f6:48:d6:16:3e:b5:5b:32:f1:31:4f:e6:
a3:ba:98:5e:63:0b:82:c0:89:a3:75:10:36:9f:43:
b8:34:ad:2d:91:fc:ae:61:34:b8:69:cc:56:15:1e:
e0:3c:a2:c3:57:c9:ba:8a:c7:88:d0:53:02:f0:e4:
84:85:e3:81:cc:ae:66:cf:28:1d:ac:63:c5:49:16:
01:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:57:03:8B:7F:03:BA:F9:05:DC:03:F5:33:9F:F8:73:2E:34:42:72
X509v3 Authority Key Identifier:
keyid:B1:87:CC:EC:49:AA:5F:66:AA:02:64:8D:91:B4:A2:EE:8F:F7:BD:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:28:21:00:b5:3c:f8:0d:41:eb:ee:33:f6:6b:90:60:2a:15:
81:33:2f:91:17:bc:58:56:ce:5a:9c:6c:63:ba:a4:c0:a1:c3:
8a:43:45:3f:a7:a7:fe:65:7f:7b:17:47:76:48:be:c9:f3:9c:
7a:c1:e5:d9:0f:51:55:d5:35:7a:dd:85:87:21:d8:44:85:db:
96:64:58:78:06:7c:bf:a9:4c:53:e4:26:e5:72:df:13:5b:98:
21:ba:ec:c5:68:a7:fc:5e:55:09:42:5a:7c:32:23:3f:0a:86:
90:65:cc:3b:f8:ef:39:70:90:92:23:a6:4c:84:7d:80:47:ef:
20:4f:7f:d1:e4:11:cf:18:7c:cd:92:66:e3:0e:9d:c2:8e:3f:
71:90:c7:b7:be:e4:b5:e4:1a:ed:f4:82:82:d8:89:df:7c:9c:
4a:84:9e:90:06:7e:b6:29:97:15:f9:af:00:1c:1f:e1:76:c5:
46:94:2b:c6:ba:1d:53:52:4d:40:21:04:46:95:90:3f:66:ed:
3b:51:56:db:0b:af:10:bd:70:37:6d:ce:40:44:90:53:6d:a1:
c6:c8:3d:9f:80:9b:8e:ce:f6:44:a3:c6:9f:84:bc:c5:59:51:
50:e7:ca:bb:a8:ad:b5:48:91:60:c7:c6:79:2a:43:fc:37:fe:
82:f3:d1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:07 2025 by rpki-client on console-fra.rpki-client.org