Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
File: umCk2HTZYByBQsNS-AxWpDJ2zUc.mft (raw, json)
Hash identifier: tg1FGJ7PQ3dbOv9blDFpnJDco2b8aN8ByP9JB6hm+Ic=
Subject key identifier: CC:3D:CA:65:00:27:13:1B:36:0F:36:D9:92:32:1B:DA:FF:73:6A:8A
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 0194BABB1BF70409765684929512A6AE2E89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
Manifest number: 1439
Signing time: Fri 31 Jan 2025 05:00:12 +0000
Manifest this update: Fri 31 Jan 2025 05:00:12 +0000
Manifest next update: Sat 01 Feb 2025 05:00:12 +0000
Files and hashes: 1: 5U4MEYVwKErq9FhOsJB89ZvBBuA.roa (hash: NDCcRzRMP/wHXoUUOEq/IXJG3IgwKCj1GS7rUpsjlXY=)
2: 60lbisj9EBvEk8CkvIEbp4prM3I.roa (hash: cqYnW2I6KAO2XW2NYFnEXuAIZkVjJlu5WB2aqpTSh88=)
3: bHZh-gl2BV9HaE6gMvNJJyeNKUs.roa (hash: sDUjjxYqPfgF3z6qcjo8Ch8x8GHsvhm9yqvWs72G0WI=)
4: koXm2_p4F4KWKYlIu0UQERaNMQ8.roa (hash: zXAmEZonvu8xaYLE77bD6JgXELMdseALDrYiTNuQR1E=)
5: qerWJ9N0klhuhzcIgvZSrAumV_Y.roa (hash: /vwvzpt6A9BdPc1JxUloTrK4LVtePi7FvbqVFdA3VF8=)
6: umCk2HTZYByBQsNS-AxWpDJ2zUc.crl (hash: l//YQyLpMKBmeiDSgS976LQi+RlNfykJI6sk5hkLGbs=)
7: zMnP4SbXXtzO5Qz_HmHXST-lJbc.roa (hash: x/mXpix8fyVF7pfT27hYA7xsa5opQzKkRx7F0dXWqMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:1b:f7:04:09:76:56:84:92:95:12:a6:ae:2e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jan 31 05:00:12 2025 GMT
Not After : Feb 1 05:00:12 2025 GMT
Subject: CN=cc3dca650027131b360f36d992321bdaff736a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ee:c9:b6:4c:92:ba:04:33:a5:e8:4c:c4:87:
b4:0b:cd:37:77:e8:75:a7:20:5c:95:65:fb:58:af:
66:a2:0b:83:61:1d:43:44:d5:94:3c:17:26:37:dc:
6b:5c:39:1b:9b:b2:25:f4:01:1b:ad:4a:27:50:63:
a2:e1:84:0b:a2:56:da:3c:61:06:21:ea:bb:76:cb:
a1:36:6d:89:a8:d6:7c:a6:d3:e2:ec:22:a6:30:e2:
01:c6:bc:86:11:e3:73:bb:92:ac:8c:8d:7f:29:4e:
98:52:a7:a4:ad:c7:36:dc:e8:14:44:4e:96:0e:41:
b4:29:6d:60:b6:1b:db:bc:d3:72:d6:95:7d:89:7b:
4b:5a:27:78:f3:13:54:d7:26:92:18:4e:a5:98:be:
aa:fa:4d:f6:97:a5:1a:8d:1d:1c:3f:e5:73:ef:de:
9e:83:e8:53:44:f9:cd:93:b4:79:1e:84:d3:17:dd:
03:48:5a:6b:e7:f0:52:bf:f6:57:e9:f6:c4:39:a9:
3e:b2:41:0a:9d:3c:64:ce:d4:78:22:a3:ba:3e:4c:
b4:58:9a:94:e8:a8:3f:23:09:56:cb:4a:53:9a:5f:
6d:f2:4d:08:de:e8:21:e4:df:05:58:67:ae:9a:65:
e3:d5:1f:a7:82:ff:40:dc:9e:5f:6e:20:25:96:cc:
fd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3D:CA:65:00:27:13:1B:36:0F:36:D9:92:32:1B:DA:FF:73:6A:8A
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:1f:2d:2c:b5:25:24:6e:b2:7f:7d:74:09:d9:80:ee:0c:83:
6c:74:3f:df:16:93:30:86:9d:c9:03:1b:ee:ec:3a:cd:39:9d:
cb:92:4f:83:6a:4e:a1:94:2f:65:d9:58:23:88:95:cd:83:a5:
f8:4b:2e:f6:fd:56:0b:aa:a0:c1:78:2c:d9:c5:07:3f:2b:a5:
1c:92:7b:86:50:d3:20:b5:1b:60:3e:18:7f:cc:92:a3:15:0f:
a8:60:e9:53:67:29:41:d2:6b:f2:83:0a:6d:d7:1e:bf:1a:67:
a8:8e:a0:57:e9:e7:1e:6e:e2:1a:8a:ba:c0:14:d0:78:9e:94:
f7:85:e6:88:a6:14:a3:56:c8:b7:f2:49:2a:3b:f0:0c:dc:e5:
c0:60:82:d1:a0:b6:94:29:88:00:4e:2b:70:c2:2e:f2:4d:2d:
f0:48:35:52:33:88:89:1e:58:d2:ec:97:d5:7b:9c:75:1f:f0:
ca:12:d1:a5:6a:c1:2d:e6:ef:ec:88:ff:69:0d:27:2d:9f:18:
62:d5:bf:11:8e:da:2e:db:b1:37:9e:fa:a0:86:44:56:d8:6c:
64:2d:c5:c2:84:bf:4a:17:12:de:2d:e9:51:a7:29:e8:5f:91:
33:d0:6f:6f:0a:e6:48:f5:68:cf:70:d8:13:c7:fe:54:54:9d:
40:87:19:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:24 2025 by rpki-client on console-fra.rpki-client.org