Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json)
Hash identifier: 9QXzvVuD2qIBqmfSQM0ZUhq00UTzBvaBcf/4NB7Gqt8=
Subject key identifier: 04:89:54:DA:88:AE:CC:1A:08:98:72:51:BB:A9:CF:D9:A1:EE:85:94
Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Certificate serial: 0194BB6039D2A14E9A3F9556527AEB37C2D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
Manifest number: 01FB
Signing time: Fri 31 Jan 2025 08:00:33 +0000
Manifest this update: Fri 31 Jan 2025 08:00:33 +0000
Manifest next update: Sat 01 Feb 2025 08:00:33 +0000
Files and hashes: 1: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: etcaEyvdpzq9iGQCXD3Mznv+BTTbqD8Gc7wpHQDI6zU=)
2: okivhnQi7w6GWYPlNEAmkXkmxpY.roa (hash: k4R8rWTOlMy3O5fk1lka5CmGZaX0JQEHHbZQX1i51u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:39:d2:a1:4e:9a:3f:95:56:52:7a:eb:37:c2:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb
Validity
Not Before: Jan 31 08:00:33 2025 GMT
Not After : Feb 1 08:00:33 2025 GMT
Subject: CN=048954da88aecc1a08987251bba9cfd9a1ee8594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:51:71:9a:c3:ad:90:96:a7:5e:6b:75:ac:
18:27:81:7e:a9:8d:ca:ce:80:ea:9e:e6:30:e0:47:
76:ec:ca:26:e2:a6:d7:6f:c5:bd:9d:f7:36:5a:bf:
15:6c:75:00:73:9c:63:86:24:99:c0:ef:9d:8f:6b:
13:91:4d:69:f4:99:a0:36:62:15:6d:64:50:39:b7:
db:b7:8b:60:1f:d7:ea:a8:72:81:e5:ea:f0:e8:b5:
0b:24:4d:83:34:a2:08:35:e5:c7:fe:99:d6:f9:93:
0d:ec:68:c7:21:21:8f:dc:e7:59:60:11:1d:cc:2f:
1e:0a:74:72:28:9b:2f:c3:88:0b:2d:ca:d7:f4:14:
67:0c:ce:b0:8a:9e:1c:4e:b2:aa:b1:4c:0d:cc:21:
e8:97:80:b2:f9:43:a8:87:4d:77:06:80:04:5b:e5:
1f:1e:07:d1:c3:64:b9:87:00:c8:b4:8d:cb:c3:af:
4a:5e:42:10:a3:28:b0:8a:bb:c7:bf:96:af:ea:e4:
a7:47:c6:fe:40:d1:0d:88:fc:34:b4:13:4f:6f:97:
a0:93:dc:59:07:bb:b4:49:11:04:dc:cc:64:7b:f2:
c8:2a:78:e6:22:b9:aa:ea:e1:b3:46:c1:21:08:27:
97:3f:3b:eb:6b:17:f0:9a:ee:ed:93:cb:97:06:31:
cc:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:89:54:DA:88:AE:CC:1A:08:98:72:51:BB:A9:CF:D9:A1:EE:85:94
X509v3 Authority Key Identifier:
keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:f5:7a:11:ef:84:5a:04:f0:87:e6:08:0e:b3:e3:3e:0f:80:
3a:a0:62:85:96:43:fe:61:b6:67:28:af:a6:32:cf:d3:c0:81:
0e:ef:ff:1b:fc:3f:ec:a9:9f:da:a1:29:88:69:7a:8d:68:6e:
cf:09:81:b7:b2:4f:0e:a2:6c:2e:63:b1:8e:6d:10:cd:ec:84:
ff:08:64:d5:16:b0:0e:23:0e:22:fd:c0:8d:04:fa:e0:df:2c:
be:dd:87:3b:11:d6:25:a6:b2:32:a6:12:55:02:f9:5d:86:8d:
b4:a6:5f:fb:02:08:f1:95:75:38:9c:d8:70:a5:8b:a6:5f:02:
3c:b7:bb:02:41:88:f2:1b:02:87:d4:76:d8:d6:12:ed:13:94:
25:bc:5d:39:8b:48:23:ee:b6:d5:a5:cc:e3:f6:83:16:37:66:
52:74:b2:e2:44:34:26:0e:1e:53:0b:5d:82:99:8f:ca:13:d5:
c3:13:cf:58:45:4d:65:0f:83:c5:21:e5:eb:8e:99:6c:25:3a:
01:97:07:f0:86:72:91:d4:a3:4e:e5:d8:f7:a2:70:2f:05:af:
4e:2b:9b:91:9c:53:d8:42:e6:8f:f0:30:d8:76:20:68:53:15:
e4:65:bd:c1:3c:11:f9:a4:48:f3:a8:f2:e5:a9:8b:a8:ef:4e:
47:0c:27:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:38:51 2025 by rpki-client on console-fra.rpki-client.org