Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: WeKtQ68En1qLkTFzKpQKzwxGjr/ta5+yZLmoQ7CE4As=
Subject key identifier: 10:2F:69:76:69:7A:68:7D:6F:E8:2F:F0:FF:D3:03:CA:A7:EA:6E:AF
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0194BB971CA1181FA3A5DB7D59CA9180E09F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0AE4
Signing time: Fri 31 Jan 2025 09:00:30 +0000
Manifest this update: Fri 31 Jan 2025 09:00:30 +0000
Manifest next update: Sat 01 Feb 2025 09:00:30 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: Zx8lTUtkW8Cj2cyeeeQ+zGKarIrXCsVjbxs8NKhMbpQ=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:1c:a1:18:1f:a3:a5:db:7d:59:ca:91:80:e0:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Jan 31 09:00:30 2025 GMT
Not After : Feb 1 09:00:30 2025 GMT
Subject: CN=102f6976697a687d6fe82ff0ffd303caa7ea6eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a8:d6:74:99:34:5e:7b:a0:d0:15:33:d5:19:
1a:b8:cc:7f:eb:9d:15:47:7f:de:af:54:17:76:4d:
c3:ae:0a:26:2a:fc:bc:e5:31:04:3b:ce:f7:1d:b5:
de:9a:f7:79:2d:51:10:5b:5c:c3:19:07:6b:23:a4:
98:a6:75:fd:a2:c1:2c:f3:a2:11:f3:bd:fc:a8:25:
81:09:19:94:c4:60:60:6f:7a:58:cf:85:55:1e:f9:
57:e4:23:f8:e5:2f:2a:1f:b1:41:0f:8a:e8:ac:03:
72:53:5d:73:f1:4c:09:46:aa:33:1a:29:e6:05:08:
89:cf:3d:52:d5:ab:ff:fc:67:6d:dc:40:69:35:56:
9e:e5:50:84:90:4f:71:a0:88:e2:b2:6f:45:44:64:
7e:a9:98:17:d8:55:fc:ce:07:c9:28:fb:63:62:96:
44:5b:b1:7a:54:45:eb:bc:05:6a:8e:8c:f5:e7:2b:
88:d4:42:88:10:ca:63:7a:04:d8:ff:d9:65:aa:25:
b4:56:9c:22:05:de:c2:13:96:88:12:87:17:a1:7b:
e2:81:34:25:5a:3f:60:78:56:c6:5a:82:1c:d4:6b:
4b:a3:d3:b3:f0:fb:88:b6:86:0e:64:12:2f:84:dd:
46:65:7b:36:c2:0d:63:75:08:c4:74:49:64:2c:e3:
02:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:2F:69:76:69:7A:68:7D:6F:E8:2F:F0:FF:D3:03:CA:A7:EA:6E:AF
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:97:48:5d:da:c3:22:e6:64:1c:26:97:46:11:de:9d:18:9e:
6a:4a:fc:d4:83:c0:b4:21:35:e7:49:8f:70:74:19:3c:09:bf:
16:54:fc:57:77:fb:aa:41:ee:1c:db:75:24:1f:30:de:00:6b:
94:29:50:71:0a:04:c3:d4:3d:2e:48:3d:b5:c5:b8:4d:68:9a:
8a:59:a4:9e:db:cd:7d:07:a4:9f:93:f6:be:ce:03:3f:8e:75:
ed:2e:db:cb:10:c4:15:d8:bd:64:41:cf:81:b3:22:77:38:fb:
4b:19:e0:d0:bc:d4:9d:9c:76:d6:42:6b:8e:e7:f6:a2:df:67:
0f:1c:37:f0:6e:50:e7:dd:45:56:bd:3b:fd:25:b3:af:86:35:
97:d6:ae:9d:14:f1:d6:05:c8:7f:b4:45:f3:c8:f9:c2:2c:e4:
76:bb:e3:66:ae:d2:51:22:4d:29:9f:03:ea:a8:63:f9:d1:34:
47:1f:cf:35:b7:9f:cb:b2:20:88:36:21:bb:b2:3e:10:9e:61:
be:e7:1c:d7:9e:48:02:c4:05:e2:c7:4c:f8:8c:96:85:08:b2:
72:7c:bc:89:05:37:a2:13:c2:2e:b1:2e:a0:73:1d:5d:8d:aa:
20:06:dc:1d:5a:51:c8:58:d6:c0:b2:4d:fc:72:85:11:6f:c5:
64:a1:6a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:42 2025 by rpki-client on console-fra.rpki-client.org