Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: mkmmju8rE3dbIP4MRQf1IhLoJuAbNgMH5uITu8kIVQI=
Subject key identifier: 5B:4E:C9:AD:55:10:93:23:91:62:CC:09:2C:E3:B6:3A:57:B6:F4:FC
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 0194BABB881991F29E800112636E04161325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 1427
Signing time: Fri 31 Jan 2025 05:00:39 +0000
Manifest this update: Fri 31 Jan 2025 05:00:39 +0000
Manifest next update: Sat 01 Feb 2025 05:00:39 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: xuPG0zGilKci0tTaSkQfsPIHvpXPkiwnq6mq8Av6UBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:88:19:91:f2:9e:80:01:12:63:6e:04:16:13:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Jan 31 05:00:39 2025 GMT
Not After : Feb 1 05:00:39 2025 GMT
Subject: CN=5b4ec9ad551093239162cc092ce3b63a57b6f4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a6:21:5e:8b:99:86:b2:25:47:7b:bc:61:7d:
94:79:7f:56:71:b0:35:f6:ed:b7:1d:df:d7:b1:20:
8f:9c:f2:20:1c:4c:2b:84:f0:74:ac:4e:59:4b:5f:
75:a4:87:00:29:4f:db:06:d1:ac:ea:33:dd:d6:5c:
0b:dc:b8:94:35:59:d2:76:83:08:fd:cc:86:30:84:
c4:ef:be:03:47:22:9e:c1:ce:35:23:ae:7d:78:05:
96:7d:72:7e:4b:70:09:3c:bb:bf:c8:69:46:10:b6:
45:37:c6:d9:26:81:68:9d:c3:b0:52:97:b6:58:22:
37:f2:6a:b8:f8:bb:07:96:d1:cb:33:3b:d5:db:d4:
b0:03:e4:11:56:a7:c3:a0:1f:44:6f:2e:2d:bc:40:
d1:9a:3d:0c:78:d2:42:e7:d6:d4:11:f8:bf:f1:d3:
e9:b8:5f:d1:79:73:17:92:5d:01:56:71:75:16:7e:
b8:a1:58:ed:62:ee:c5:1d:6a:ad:53:11:37:2f:d2:
2a:fe:14:63:b6:49:4d:ac:a9:31:41:e8:61:46:13:
fe:66:41:ec:09:d2:bb:87:50:ba:51:82:2b:ce:4f:
95:c8:93:65:5a:72:11:38:77:2d:38:4b:a7:69:34:
95:f9:26:7c:bf:b2:6f:03:8f:b2:48:a4:76:df:ce:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4E:C9:AD:55:10:93:23:91:62:CC:09:2C:E3:B6:3A:57:B6:F4:FC
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:12:ae:a9:d3:54:1b:6b:58:b1:cd:25:05:82:b8:5e:4d:82:
71:46:d8:bf:da:37:c5:33:03:d0:5f:3a:fe:2d:e6:4f:57:9b:
63:88:50:37:7f:0a:7d:81:6c:2d:78:7a:2c:82:ff:c8:a0:2b:
5a:70:59:61:3c:42:40:de:73:c1:70:cf:ef:bd:39:e4:71:6c:
5c:5f:02:d5:0c:b4:3d:59:27:cd:c0:6b:18:86:9f:6b:da:60:
dd:35:38:b0:38:99:80:ab:10:7b:95:91:f5:49:e5:de:31:6a:
fb:cc:6f:10:02:94:62:e9:3d:39:86:9a:a6:50:f5:2a:35:14:
ea:44:47:45:fe:61:fd:23:7f:8c:63:47:77:54:96:f5:2f:2b:
d6:71:53:85:2d:90:9e:0a:20:bc:9c:d4:e7:b4:71:0d:1c:19:
bb:65:8f:e5:14:be:61:a1:b1:f5:90:5b:76:86:bd:fc:23:43:
4d:4b:f2:a1:13:13:ec:ab:f4:0a:a3:e2:81:d1:df:bb:2b:f1:
d4:fd:64:9f:54:d7:02:ba:0e:20:4e:36:1b:07:92:57:8c:44:
7d:74:58:f4:12:5b:d6:06:94:f6:67:91:dd:f8:74:1d:e8:af:
e9:31:06:f4:9a:6c:26:60:1c:7c:34:ba:b3:37:5c:a0:8b:7b:
b9:c7:54:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:27 2025 by rpki-client on console-fra.rpki-client.org