Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: BuQaCne8qa5sx7tzSnk3JFZGYcSlHsLfhclXVvLH8VA=
Subject key identifier: 12:49:31:73:AE:94:BC:5C:57:B4:EE:EE:C6:C8:57:CB:8C:1F:3F:94
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 0194BA84790F13D2709480310045F6EB10AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0D8A
Signing time: Fri 31 Jan 2025 04:00:31 +0000
Manifest this update: Fri 31 Jan 2025 04:00:31 +0000
Manifest next update: Sat 01 Feb 2025 04:00:31 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: FkE9XSpIdV/VoYLH+tETghO07yf8JXBhd9bdl5rbkXk=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:79:0f:13:d2:70:94:80:31:00:45:f6:eb:10:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Jan 31 04:00:31 2025 GMT
Not After : Feb 1 04:00:31 2025 GMT
Subject: CN=12493173ae94bc5c57b4eeeec6c857cb8c1f3f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:32:a1:f5:19:6d:f2:96:8b:ed:9b:cd:10:bc:
6b:44:93:a6:37:20:f2:7f:a6:d7:47:bc:51:b8:22:
48:cb:7f:6e:11:5a:49:4a:f6:03:0e:dd:30:ca:39:
cb:08:eb:74:cb:91:61:35:eb:d2:91:48:85:75:92:
c2:e0:90:17:0e:06:15:15:4a:b7:b3:4f:dc:ce:d4:
da:4e:f2:13:9f:09:39:be:27:f8:01:c1:18:58:c5:
82:6e:e5:52:a5:48:b6:5e:29:af:81:05:cc:b9:9a:
87:42:66:1b:ed:f4:f5:27:5d:ba:1f:b4:8f:9b:ac:
91:d5:cb:19:6f:10:98:59:5d:c0:7e:1e:a6:5f:36:
8d:15:ca:0a:51:5a:3a:a4:8d:b3:83:8c:fc:99:b9:
a8:2a:81:a1:12:81:26:cd:58:c8:32:7f:0c:ec:98:
5a:49:26:c3:a3:0c:b4:73:94:fb:33:84:62:2d:02:
a3:4d:e9:f6:56:c1:cb:c3:8b:96:00:62:cf:c4:9b:
72:43:46:7e:36:00:25:86:0d:ba:5c:9d:b0:ad:62:
63:9a:86:20:3d:80:f4:a8:58:ef:d2:69:54:dc:15:
13:89:3e:aa:e6:fd:93:a8:13:18:83:88:2b:82:9a:
68:a1:8b:e8:40:23:5d:ab:c4:9d:bb:93:0b:bf:ce:
39:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:49:31:73:AE:94:BC:5C:57:B4:EE:EE:C6:C8:57:CB:8C:1F:3F:94
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:2c:f5:da:d9:a8:17:09:7c:6e:3c:dd:47:f1:16:09:f8:f3:
c8:f1:b3:db:46:9b:5f:6f:5e:87:b4:fb:6b:2a:a7:88:8f:db:
bd:6e:13:3d:47:c6:cd:04:2f:be:42:54:1f:3f:bb:b7:a2:37:
3a:88:24:50:8b:fd:fc:c5:fb:c4:cd:b7:56:2c:46:fb:e4:5a:
ee:dd:4e:97:45:dd:0a:d2:bd:fc:6b:30:05:a6:9f:57:1b:22:
f5:76:19:ba:54:3d:81:f4:00:34:f3:5f:df:91:9c:1d:9f:9d:
87:19:1a:66:98:eb:6c:a0:86:36:6f:7c:58:9b:a0:1e:1c:32:
00:a4:1c:60:d4:a3:11:a2:15:6e:49:cd:19:0b:f3:ea:cc:ce:
62:a2:73:e8:a6:a0:39:cf:31:e6:ca:89:c7:24:a6:6e:5f:0e:
8e:bf:dd:d4:d4:bd:70:23:60:08:7c:68:0e:c4:9e:b1:09:5e:
b5:93:5f:b5:06:0a:a0:3a:9e:cb:4e:f4:fd:85:cb:ea:07:92:
f4:bd:bf:9d:d4:2c:1e:6a:22:31:51:4e:8d:65:ea:cd:df:f3:
e3:de:5b:8b:51:8f:42:43:fe:d2:fa:c8:3b:2e:e2:08:f5:bd:
25:83:ca:1f:58:5b:c8:71:6e:60:a3:89:78:2a:24:cf:e4:41:
e2:e4:f6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:40:04 2025 by rpki-client on console-fra.rpki-client.org