Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
File: 1-geuOnkY-TLqJMwVa0tum6VYG_o.mft (raw, json)
Hash identifier: c9ll/ov91+4aGorhKYmEwB5KtZT82igxwQAC3tqsgYw=
Subject key identifier: 18:BE:55:37:18:1E:DF:6B:AA:4D:DF:64:FE:97:D4:6D:E9:CB:74:49
Authority key identifier: FA:07:AE:3A:79:18:F9:32:EA:24:CC:15:6B:4B:6E:9B:A5:58:1B:FA
Certificate issuer: /CN=fa07ae3a7918f932ea24cc156b4b6e9ba5581bfa
Certificate serial: 0194BAF2684DC0C28F644317856284DA1599
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
Manifest number: 0137
Signing time: Fri 31 Jan 2025 06:00:36 +0000
Manifest this update: Fri 31 Jan 2025 06:00:36 +0000
Manifest next update: Sat 01 Feb 2025 06:00:36 +0000
Files and hashes: 1: 1-geuOnkY-TLqJMwVa0tum6VYG_o.crl (hash: tznbor43qUUjzRq2bDxIrPkXbTpvaThiERoFhNcNJzc=)
2: rs3gWt450Dc5VAdX-LPh4FxzPfI.roa (hash: yHX556DQVgZDjr2xTPApsPlrmF99zYD+miBAgNn4a5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:68:4d:c0:c2:8f:64:43:17:85:62:84:da:15:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa07ae3a7918f932ea24cc156b4b6e9ba5581bfa
Validity
Not Before: Jan 31 06:00:36 2025 GMT
Not After : Feb 1 06:00:36 2025 GMT
Subject: CN=18be5537181edf6baa4ddf64fe97d46de9cb7449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ec:77:25:54:ad:22:58:32:a0:06:74:4e:74:
65:70:eb:e3:17:c5:c6:4c:b9:41:bb:fb:93:07:b9:
af:47:c7:48:97:7b:f5:f7:c5:73:91:13:e6:aa:61:
8a:c0:65:35:ef:7b:81:3f:f1:87:07:62:12:dd:f1:
18:4d:61:37:9f:d2:47:2d:64:a7:03:29:73:c6:cc:
92:89:e7:61:86:a8:60:9c:f3:d6:9e:22:ef:d8:da:
f4:3a:b2:1e:69:a9:7d:3f:2e:6a:5a:d1:75:fe:89:
a5:5f:16:b9:93:dc:c5:d9:0b:95:56:22:af:69:07:
49:a5:a3:74:fe:ce:8b:bc:8d:d8:bf:6f:26:04:64:
5d:75:2c:26:3c:e6:11:dc:29:18:88:19:7a:2a:62:
be:cb:ea:3c:04:53:8b:c9:f2:f6:b4:91:d9:4e:d9:
e5:c2:11:87:4c:c2:4a:c4:23:72:16:0f:5a:e7:fe:
ba:23:e3:23:83:91:8d:25:e5:be:0c:fc:b1:48:4a:
ba:a1:66:42:1f:01:d9:4a:da:6e:ab:93:1d:97:6f:
f9:f9:48:7e:38:34:47:b0:86:82:d0:1f:aa:e0:41:
16:0b:e2:52:9f:f7:c2:08:d0:9f:76:0b:da:1b:6f:
09:39:52:38:89:32:02:b3:50:5e:17:59:aa:f8:b3:
eb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BE:55:37:18:1E:DF:6B:AA:4D:DF:64:FE:97:D4:6D:E9:CB:74:49
X509v3 Authority Key Identifier:
keyid:FA:07:AE:3A:79:18:F9:32:EA:24:CC:15:6B:4B:6E:9B:A5:58:1B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:b2:13:b9:07:31:56:90:72:e4:e6:c0:3d:ed:ae:60:11:2b:
25:a8:4f:24:dc:47:08:de:d2:83:fe:20:a6:94:4b:65:1d:d6:
82:82:7f:37:f7:13:fb:07:39:4f:f1:30:77:06:98:56:12:01:
26:74:0d:1a:93:14:87:5f:80:d7:5f:56:27:7f:25:f2:3c:60:
fd:75:d7:f1:d5:1c:b9:82:79:2e:2f:19:5b:5f:05:50:6a:f9:
a1:1d:3d:48:ac:0c:9c:59:d6:2c:b8:58:ac:7b:61:33:cd:2a:
79:7f:fa:1d:21:21:dc:e3:3b:70:00:36:20:a6:a5:ed:ee:f0:
c1:ae:b5:b8:c4:c0:f2:51:2d:06:83:7a:13:21:74:33:15:8c:
2b:58:63:d8:c8:19:98:51:d1:df:2d:fd:89:a6:e2:91:62:7b:
7a:07:1f:50:f4:86:92:6d:8d:e4:00:04:f0:2b:0a:9d:23:0b:
c6:8a:49:c1:51:59:92:f5:9d:fc:dc:c7:1d:c3:ed:ad:10:67:
77:cc:5c:90:22:f8:7d:dd:1d:df:89:38:f9:69:8c:bc:a1:06:
51:13:ca:33:1d:59:cb:68:e1:74:2d:43:34:88:dd:69:f7:80:
f3:86:ec:a7:31:1f:c9:82:e0:92:10:5d:f5:bf:f6:dc:eb:cd:
0e:af:e7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:23 2025 by rpki-client on console-fra.rpki-client.org