Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: CQ0Ry7wjjc4CcTRxltsXgGkgqO2AT5Lp0iPyo4S/DXk=
Subject key identifier: 46:EA:63:74:1C:6C:1D:8D:F0:14:65:D4:86:04:AE:65:0C:6C:09:52
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 0194BABB5414E60C173AEA05A5AA3D3E966A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 02A2
Signing time: Fri 31 Jan 2025 05:00:26 +0000
Manifest this update: Fri 31 Jan 2025 05:00:26 +0000
Manifest next update: Sat 01 Feb 2025 05:00:26 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: FQ/xBHomq4dhZ5H6i49zW4TM63s+QIcutj/oc5ERZOI=)
2: QxzsJBZ0KnjdWggXNkiPE3mxTiE.roa (hash: wp71B9vMq7Np21xWaUokwt4Wn7Ga2Zz2FhWmCQz4Lj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:54:14:e6:0c:17:3a:ea:05:a5:aa:3d:3e:96:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Jan 31 05:00:26 2025 GMT
Not After : Feb 1 05:00:26 2025 GMT
Subject: CN=46ea63741c6c1d8df01465d48604ae650c6c0952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:56:ca:46:e8:d2:dc:46:0e:1a:95:f9:23:ca:
2c:52:66:49:5f:25:7a:05:be:bf:23:37:40:f8:b0:
37:eb:fd:0b:ff:9e:0f:b1:b2:53:26:7a:da:c9:54:
d3:6e:e1:8b:e5:30:08:ec:37:cb:26:25:e1:18:92:
87:54:ab:3d:0b:fa:25:0b:be:82:f5:c9:4c:2d:b1:
f9:a2:57:5c:28:83:e8:86:51:da:c9:da:42:51:e6:
45:fd:76:ae:c9:60:c8:6d:85:b8:d7:86:70:fb:f5:
9d:ce:10:41:31:da:b2:f5:a3:d9:9d:f2:e4:d7:b0:
7d:84:69:b8:12:8f:77:e0:2d:00:df:f1:74:0e:68:
52:e9:8a:33:d4:12:2b:49:8f:cd:81:a6:14:5a:2e:
8e:d1:5f:c5:8d:7d:a4:ea:c4:51:b7:ce:18:92:77:
61:df:68:16:92:cb:8e:ef:d9:cf:c2:8c:ee:b4:6a:
e6:6e:0f:49:e3:f2:01:c9:59:89:0b:04:87:f4:f5:
e5:dc:75:70:23:94:46:1e:ba:82:75:d6:3e:cd:33:
d9:1e:8d:4b:e2:b9:b3:be:24:5e:2e:6c:80:b0:65:
0b:5e:c2:7d:64:64:c7:db:88:2e:26:48:1e:ad:97:
7f:97:b0:5f:d1:b9:a5:89:57:56:81:94:7b:8e:24:
49:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EA:63:74:1C:6C:1D:8D:F0:14:65:D4:86:04:AE:65:0C:6C:09:52
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:83:1a:d5:0f:eb:f1:c1:14:01:42:44:1c:25:05:64:16:8c:
d9:57:c6:43:ab:e6:75:e2:3c:f7:2c:89:b7:fb:e9:97:3e:f1:
25:0e:c9:dd:00:fd:d6:53:a6:43:04:ae:30:e0:d1:0a:28:cb:
e7:5d:33:cb:e3:ca:f9:2a:a1:6d:7d:4a:70:68:51:77:ba:13:
22:25:12:31:0c:f3:27:c3:bf:8c:7a:a4:f9:a1:a9:d1:cd:b4:
c1:ef:dd:29:20:31:34:b5:b4:06:16:27:97:b7:ea:a5:28:29:
30:ef:a1:a7:49:78:11:42:3e:c9:9e:a4:49:bf:1d:80:f0:87:
f4:a3:e5:04:70:0d:9f:45:eb:90:37:ff:1c:cb:fc:05:30:ce:
95:14:a9:28:3e:ab:d3:45:96:75:34:7c:df:3f:8a:ea:7b:aa:
f7:8f:ee:91:55:be:25:d9:5b:39:5b:76:93:39:42:9a:e4:f1:
f2:fc:3b:e4:6a:a5:f4:7a:5d:be:ab:f9:c3:39:73:bf:fc:75:
3e:2d:36:7c:1b:ae:85:17:c6:14:a8:57:14:0e:21:7d:c7:89:
fe:79:5d:b3:bd:63:e0:c4:87:a8:2a:03:94:13:4f:de:10:ee:
8b:ae:63:f1:0d:51:a7:80:e7:7f:f5:52:14:a0:70:cb:82:02:
20:46:1b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:37 2025 by rpki-client on console-fra.rpki-client.org