Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: gIA2lw0Yo+U1qjPSGG1Wi+StQdbCyomruSe5NXaM1Kk=
Subject key identifier: A6:35:2F:97:B4:7C:5B:50:06:0B:C8:A4:29:78:1F:CC:F8:61:1E:4C
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 0194BABB6B59A5D5A867500725D27349645F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0319
Signing time: Fri 31 Jan 2025 05:00:32 +0000
Manifest this update: Fri 31 Jan 2025 05:00:32 +0000
Manifest next update: Sat 01 Feb 2025 05:00:32 +0000
Files and hashes: 1: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: w9OAcSsIPCeHbb73ZH5E2MQFq9EzJmMClTd+PNqPjLk=)
2: fE9GzrH3d-6Th3wBzYY1G9LbRew.roa (hash: xyXKNFQngeKokd5hS0djUT+QlJzpKydn7zNDkVQlZFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:6b:59:a5:d5:a8:67:50:07:25:d2:73:49:64:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Jan 31 05:00:32 2025 GMT
Not After : Feb 1 05:00:32 2025 GMT
Subject: CN=a6352f97b47c5b50060bc8a429781fccf8611e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:fd:25:95:5a:c5:98:d0:48:43:43:46:a1:58:
6c:74:6d:15:35:ac:b8:da:57:5f:b7:cf:b7:38:3c:
56:9d:42:09:be:f8:55:5f:e1:ce:75:5d:86:3c:3e:
d6:ec:eb:42:a2:8d:b9:71:d9:10:76:8a:3d:7c:fd:
8f:94:74:34:7a:49:19:56:f4:13:5d:c5:23:39:f6:
1c:dd:09:18:49:c4:66:26:ca:06:1a:db:8b:a7:00:
fc:fc:bb:7d:6b:8e:de:74:44:1a:0b:73:98:b4:0c:
44:95:f4:d0:6f:87:59:36:bc:b7:7d:12:8f:92:37:
d4:ff:54:e4:22:5d:72:75:e3:72:13:21:d2:93:64:
40:22:80:ef:62:db:22:69:ba:ab:1f:5f:70:92:8d:
bb:c0:23:d4:48:e0:cd:6b:aa:64:83:a8:19:e4:a0:
47:55:67:84:f0:6d:5c:be:ec:17:b0:13:b5:b8:29:
93:56:71:02:ef:42:96:93:9f:d4:55:1c:ae:f8:ab:
e4:bb:ea:c6:20:18:61:e5:42:ce:fa:01:94:40:58:
cb:1d:b9:24:9e:41:07:44:2f:fb:d9:2d:d4:a3:8b:
84:4b:7e:0d:02:09:d9:1f:4a:fb:59:9e:03:f6:f6:
32:b8:3a:22:d7:f2:e1:87:95:49:2b:18:06:55:62:
9a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:35:2F:97:B4:7C:5B:50:06:0B:C8:A4:29:78:1F:CC:F8:61:1E:4C
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:08:10:76:ae:38:56:25:91:ad:ff:c7:ae:a4:d9:4c:bd:5f:
fd:85:58:5d:01:9b:de:f5:83:33:8c:ba:de:f5:94:bd:d2:8c:
4b:48:06:32:0e:37:8a:f6:ae:e2:07:54:fb:7b:82:c6:28:34:
aa:49:09:38:52:3b:40:25:05:0d:82:2f:30:e5:a8:a5:c0:4e:
f3:bd:c9:de:a1:8f:73:ee:1d:96:f2:aa:e2:b5:bb:83:7b:34:
1f:dc:41:aa:77:c6:9d:fa:88:63:18:ed:2d:86:89:1a:0a:64:
83:a4:50:1b:02:8a:b9:bd:b5:fc:ab:31:1e:92:80:84:a0:3e:
a1:55:73:53:fc:a2:fe:37:42:41:14:88:9e:bd:17:74:39:9e:
dc:00:aa:e4:86:f0:53:9a:8d:9c:8e:d0:0b:12:72:c7:a1:0c:
83:62:2e:3d:00:72:0d:bc:13:3c:06:4b:b3:52:07:6d:31:56:
1e:f2:27:e7:8f:48:87:2c:13:a4:11:a0:a5:09:1c:ed:4f:41:
cf:83:ae:be:2c:1b:ac:1c:62:15:cb:e1:ee:7f:21:06:c4:7d:
33:e9:21:11:ea:be:16:3b:c4:13:b8:e1:88:5e:df:bb:a0:4d:
b2:33:2e:23:aa:ce:d6:1f:3e:f0:ad:9f:d4:91:a1:e9:46:33:
47:98:7f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:47 2025 by rpki-client on console-fra.rpki-client.org