Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
File: QiW1cPRt5cbosrZO0JCtE4XatzE.mft (raw, json)
Hash identifier: r+7xQhB5stIQ6TumkspZTGSHf9WVNcCu0pYxFxcXqtY=
Subject key identifier: B4:A9:08:DB:C7:16:73:74:94:6E:C3:E3:3C:51:2F:09:0D:10:CF:69
Authority key identifier: 42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
Certificate issuer: /CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Certificate serial: 0194BABB9CF3C7CA173F1E9CC724C23FAEA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 05:00:45 +0000
Manifest this update: Fri 31 Jan 2025 05:00:45 +0000
Manifest next update: Sat 01 Feb 2025 05:00:45 +0000
Files and hashes: 1: Ad__4Mw9qH40aKjCCd6U7wn1LE8.roa (hash: XmUspE3wSTnFZCF/0+RPTjtSL/Xtm1GMKSxL+nI/8po=)
2: QiW1cPRt5cbosrZO0JCtE4XatzE.crl (hash: jfaP+R1vmtJxzFh7QI0fexErZOzXtfhbxaCKZk9zR+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:9c:f3:c7:ca:17:3f:1e:9c:c7:24:c2:3f:ae:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4225b570f46de5c6e8b2b64ed090ad1385dab731
Validity
Not Before: Jan 31 05:00:45 2025 GMT
Not After : Feb 1 05:00:45 2025 GMT
Subject: CN=b4a908dbc7167374946ec3e33c512f090d10cf69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:54:eb:73:23:8d:e9:d4:76:5a:0d:12:e9:e1:
ab:5b:aa:4e:bc:1c:dc:39:35:9a:64:75:ae:2a:bc:
81:8a:07:bf:89:11:5a:3c:1a:53:eb:6d:9f:d3:6e:
0c:1f:cb:b8:bc:22:ac:0d:56:a5:fe:a4:94:93:d3:
88:31:3f:22:28:44:f9:a4:26:0a:8a:e5:25:8f:f1:
79:a8:30:ce:15:dc:bc:1a:a0:70:fa:ec:01:35:33:
2c:9a:a2:ec:f5:08:b3:b9:32:fc:46:91:5e:9a:db:
44:db:7f:1c:5f:d2:7e:bf:a6:2b:d9:8c:be:f4:99:
99:4e:6e:2e:50:55:dd:0f:9e:91:25:61:87:59:05:
ef:87:f5:43:da:50:c1:9c:27:a1:e4:c3:93:07:a1:
18:f6:40:fd:f2:03:c8:c0:4c:55:f1:57:4f:68:27:
c4:b6:05:17:a0:84:bc:35:0e:09:ef:f8:f2:76:a1:
c5:9e:b2:cf:c4:d0:0d:2d:ed:6b:c6:8f:b7:d5:15:
25:2b:b5:d0:a0:f4:36:4d:60:c3:ed:a2:31:cd:5d:
95:92:b8:1e:02:44:d0:43:14:9f:1e:19:e8:b4:fe:
15:26:e8:94:23:82:39:ee:31:21:7a:3d:98:f6:0a:
5e:d7:de:50:01:60:13:31:e2:81:85:7c:44:3f:5a:
51:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A9:08:DB:C7:16:73:74:94:6E:C3:E3:3C:51:2F:09:0D:10:CF:69
X509v3 Authority Key Identifier:
keyid:42:25:B5:70:F4:6D:E5:C6:E8:B2:B6:4E:D0:90:AD:13:85:DA:B7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QiW1cPRt5cbosrZO0JCtE4XatzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c34c99-18c8-41a2-874b-390b85394beb/1/QiW1cPRt5cbosrZO0JCtE4XatzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1a:ce:82:75:e3:5d:99:0a:df:be:83:cb:55:c3:ee:24:32:
c0:19:e4:24:b3:61:5a:d1:b7:a3:eb:dd:9f:f3:b5:90:e3:c5:
2f:4f:41:6e:ad:10:3b:2d:80:f9:46:56:b6:e8:1f:45:c2:c2:
ac:5b:7b:43:c8:88:99:26:24:f3:89:57:f6:85:e6:98:a9:67:
95:46:48:e2:e5:12:44:a7:46:c9:26:82:ac:a7:8f:0e:fc:ac:
b8:d1:56:20:d0:1d:94:83:35:0a:8b:05:06:22:77:93:2e:32:
04:48:22:3e:15:a6:1b:0c:4a:3c:fc:49:b3:36:d5:0c:e0:ba:
b1:e1:12:a4:86:0e:af:8f:c6:13:4b:44:df:f8:88:d2:80:d2:
1d:7f:39:27:6a:61:07:58:61:9c:e2:cb:f5:10:c9:ed:90:40:
0b:b8:f4:1e:8f:14:be:cf:47:39:40:5c:6e:cd:89:72:c3:64:
0f:b1:21:d6:76:3f:f4:78:8c:29:ea:ec:85:46:48:9a:d4:5f:
46:ae:a0:c3:60:84:c6:f5:4d:05:cb:c5:7d:b3:36:7b:30:ec:
c9:6e:ed:cd:f4:4d:36:6c:3a:22:a3:5f:16:77:80:82:d7:73:
03:04:0e:11:03:f5:bd:2b:44:4a:91:ba:d7:a4:31:27:9e:66:
71:00:7a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:36 2025 by rpki-client on console-fra.rpki-client.org