Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6c13ac-38a7-468c-b7f1-b106232a342c/1/aXC3r07RGKBaFTFefYuUY0yf6iA.mft
File: aXC3r07RGKBaFTFefYuUY0yf6iA.mft (raw, json)
Hash identifier: sZPhAF9gO8ayQAJXMb/cH8SUFakuROGqmG3r8DkAh2E=
Subject key identifier: 30:8B:35:98:DA:2A:58:59:A3:DF:F3:0A:D3:CB:AA:A0:AC:2E:76:55
Authority key identifier: 69:70:B7:AF:4E:D1:18:A0:5A:15:31:5E:7D:8B:94:63:4C:9F:EA:20
Certificate issuer: /CN=6970b7af4ed118a05a15315e7d8b94634c9fea20
Certificate serial: 0194BB296AAAB09A47027358A7F1E114819A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXC3r07RGKBaFTFefYuUY0yf6iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6c13ac-38a7-468c-b7f1-b106232a342c/1/aXC3r07RGKBaFTFefYuUY0yf6iA.mft
Manifest number: 09B4
Signing time: Fri 31 Jan 2025 07:00:41 +0000
Manifest this update: Fri 31 Jan 2025 07:00:41 +0000
Manifest next update: Sat 01 Feb 2025 07:00:41 +0000
Files and hashes: 1: aXC3r07RGKBaFTFefYuUY0yf6iA.crl (hash: 1V2TXD0XaSf/OZSqTidhCecidwiosbZY8J2M5jsSELo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6c13ac-38a7-468c-b7f1-b106232a342c/1/aXC3r07RGKBaFTFefYuUY0yf6iA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6c13ac-38a7-468c-b7f1-b106232a342c/1/aXC3r07RGKBaFTFefYuUY0yf6iA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXC3r07RGKBaFTFefYuUY0yf6iA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:6a:aa:b0:9a:47:02:73:58:a7:f1:e1:14:81:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6970b7af4ed118a05a15315e7d8b94634c9fea20
Validity
Not Before: Jan 31 07:00:41 2025 GMT
Not After : Feb 1 07:00:41 2025 GMT
Subject: CN=308b3598da2a5859a3dff30ad3cbaaa0ac2e7655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:74:9c:f5:45:06:85:de:93:13:10:57:92:93:
84:7b:cb:d3:fa:c4:8c:11:21:4f:62:54:ee:3d:6b:
f8:59:d2:74:1d:af:d3:a6:34:84:68:e5:fe:bc:26:
5f:14:b5:16:32:24:27:56:80:34:da:da:1c:fb:28:
19:83:b6:11:b8:50:18:d8:f3:10:ee:30:9d:b9:ab:
c7:fb:a6:1c:cc:4c:29:48:3c:d2:04:0f:39:30:bb:
e5:23:1e:80:e4:43:30:84:2e:48:2c:d6:54:9c:bb:
bf:27:16:3f:fb:a2:dd:c3:8f:42:dd:a7:90:77:03:
24:2a:3f:ac:cb:14:ca:b0:c0:b2:71:95:bc:5b:5b:
fd:9b:06:b7:9c:77:e5:58:9f:27:09:78:17:39:a3:
97:36:46:73:3b:0d:31:b4:80:13:ea:46:5b:ce:e3:
a3:0a:ec:82:60:ff:47:06:a1:99:c0:bd:a7:05:56:
e3:4e:51:fd:80:b9:e9:30:98:05:2e:d9:54:95:b7:
e0:a8:3a:31:3d:54:69:03:ce:b1:be:10:ca:ab:5a:
81:02:75:3c:8b:7d:57:82:f9:cd:98:68:4e:b3:be:
45:b4:2f:39:ad:c8:ac:ac:b1:38:1a:c7:a9:ba:8e:
06:7a:d0:da:9a:a4:2b:bb:7d:00:96:67:89:79:af:
59:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:8B:35:98:DA:2A:58:59:A3:DF:F3:0A:D3:CB:AA:A0:AC:2E:76:55
X509v3 Authority Key Identifier:
keyid:69:70:B7:AF:4E:D1:18:A0:5A:15:31:5E:7D:8B:94:63:4C:9F:EA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXC3r07RGKBaFTFefYuUY0yf6iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6c13ac-38a7-468c-b7f1-b106232a342c/1/aXC3r07RGKBaFTFefYuUY0yf6iA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6c13ac-38a7-468c-b7f1-b106232a342c/1/aXC3r07RGKBaFTFefYuUY0yf6iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:00:a9:60:5f:a7:a4:95:0d:2c:8f:86:9e:51:1e:4c:b3:7b:
23:45:db:9a:cd:e4:4e:71:d2:2c:a7:bd:85:8e:3f:cf:18:5e:
07:0c:f2:e8:0f:d0:cd:89:84:f8:48:fd:84:55:3a:1b:f3:de:
27:82:40:53:b7:4f:ce:eb:47:5a:2e:40:ae:9a:71:14:df:00:
78:3c:ae:37:99:6c:68:cb:5b:e8:f1:6e:24:f4:00:e6:ce:2d:
c1:ab:90:a7:96:3f:1b:3e:6f:32:ca:c9:eb:ed:63:a0:cf:b9:
56:4d:c6:5a:15:ac:17:1b:bc:5d:31:87:fa:51:a1:44:67:f0:
97:91:92:a1:f0:e4:bd:d3:f3:d5:4c:d4:1f:d5:61:3a:0f:bb:
68:44:42:0d:24:21:d6:4f:eb:89:9d:cc:c6:a6:11:2f:2a:74:
ad:99:36:e6:5e:d0:da:14:4b:fd:0d:65:bb:2a:5a:a6:3b:f9:
b0:86:b2:8f:3a:02:50:a8:5a:13:90:ba:33:44:4f:00:85:01:
f8:fc:23:af:e2:1f:2c:ed:99:43:ce:0f:5a:3c:78:a8:a1:21:
68:06:89:e6:e4:49:e6:e7:6b:58:ef:c2:16:e6:9c:4e:21:f6:
97:de:4c:6f:35:57:0f:67:a3:ea:c6:43:80:dd:ce:32:c2:9c:
43:15:b6:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:19 2025 by rpki-client on console-fra.rpki-client.org