Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
File: kNzOkQAEUUlMQ8FdFy2i651beVY.mft (raw, json)
Hash identifier: A/UJDujIVfvFn+QyyrFplZijggnIL23Gi1/ElwMiLQo=
Subject key identifier: 73:54:18:9A:FD:D9:11:6A:52:DB:78:4A:BD:1A:C4:DD:E1:DB:D1:86
Authority key identifier: 90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
Certificate issuer: /CN=90dcce91000451494c43c15d172da2eb9d5b7956
Certificate serial: 0194BAF227A501CED887DE6C5F078581EC33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
Manifest number: 142B
Signing time: Fri 31 Jan 2025 06:00:19 +0000
Manifest this update: Fri 31 Jan 2025 06:00:19 +0000
Manifest next update: Sat 01 Feb 2025 06:00:19 +0000
Files and hashes: 1: 4COA7EoK---RVhokcyyZ55j8IXE.roa (hash: 7qjze9UZTxm2x0zZOdskcsGbC7b8KEyBHHGZAVSSicA=)
2: kNzOkQAEUUlMQ8FdFy2i651beVY.crl (hash: TMnpdbS6GpnN+HS+l/EYGL6HlyLl9T7UX1IEThDMQPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:27:a5:01:ce:d8:87:de:6c:5f:07:85:81:ec:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dcce91000451494c43c15d172da2eb9d5b7956
Validity
Not Before: Jan 31 06:00:19 2025 GMT
Not After : Feb 1 06:00:19 2025 GMT
Subject: CN=7354189afdd9116a52db784abd1ac4dde1dbd186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:04:9c:06:4f:15:e8:b0:cc:2d:3b:47:5b:53:
49:61:46:14:39:ab:db:23:68:8b:28:b4:ca:f4:dc:
42:d8:11:95:57:de:56:fc:95:69:76:35:c6:5b:e9:
12:aa:7c:b0:32:02:67:f8:ea:d6:72:03:ee:d2:5a:
11:48:3e:e0:a1:d3:4f:bb:3d:00:3d:58:16:9a:fa:
bb:f5:b5:c3:f6:82:17:f0:f1:72:cc:9e:79:d3:dc:
a5:3f:3d:62:75:dc:61:a3:67:dd:c2:1c:d0:67:55:
52:14:1a:c9:1b:b1:ba:6d:bb:5d:72:12:a6:60:8b:
30:13:18:db:3d:6d:c0:df:f1:85:e7:e1:0d:1e:89:
65:aa:60:a9:79:68:73:10:9f:a7:36:26:f7:f2:2e:
53:5f:b5:20:15:38:02:9b:5c:91:d4:3a:97:1e:83:
fd:5d:cf:67:7a:b5:81:e0:a1:52:76:94:54:aa:73:
76:8d:a0:7c:3c:b3:6b:5a:e5:2a:e1:85:c2:9f:66:
1d:38:92:a8:8c:58:6c:bd:9d:70:e5:ca:75:16:18:
1f:69:55:58:eb:bf:a6:8b:65:19:bd:1e:74:4e:fc:
c7:e3:6f:6e:8e:14:98:6b:2e:0b:bf:ad:70:49:0c:
b6:48:de:de:66:55:78:9e:17:65:ad:9a:ee:48:1b:
65:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:54:18:9A:FD:D9:11:6A:52:DB:78:4A:BD:1A:C4:DD:E1:DB:D1:86
X509v3 Authority Key Identifier:
keyid:90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:92:d6:d8:13:05:f9:b7:0e:23:52:9e:45:5a:03:32:09:db:
d4:ab:89:3f:f6:23:c8:7e:43:db:26:39:28:49:27:c6:91:9e:
a6:3f:db:8d:71:b1:23:b0:e2:0f:51:55:0b:20:6e:39:7d:f7:
26:0a:11:22:11:f5:a0:ca:cc:09:8e:3b:28:2b:0a:77:52:43:
34:6f:34:20:e1:60:09:cb:05:f9:b4:3b:d7:df:91:4d:bf:b6:
75:80:00:b3:44:2a:f9:c3:b3:58:a5:3d:85:a9:88:f1:39:b9:
87:9e:51:51:b8:35:4d:87:88:d6:fe:ba:b4:b8:d2:be:97:14:
93:38:9a:92:37:da:cc:bc:4e:6d:ba:56:33:f1:0d:6d:71:10:
e9:72:eb:84:bd:d5:34:c3:e2:2a:d1:ea:fe:63:bf:ac:8b:9b:
d7:17:e6:6f:d1:42:18:a7:75:25:4a:49:6e:19:19:1d:9a:32:
72:d2:54:85:a6:7a:7b:74:d5:f9:08:38:1f:16:4a:c3:d7:ea:
e4:6e:9d:ef:50:8b:59:61:27:3f:8b:77:06:09:9b:96:97:43:
21:50:18:77:05:e2:01:75:b3:b6:83:63:b8:d1:db:22:27:31:
5d:b7:ed:8b:6c:7c:16:fb:c0:37:28:e2:1c:54:2e:94:0d:1c:
7a:e0:6f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:47 2025 by rpki-client on console-fra.rpki-client.org