Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
File: iZJ3h0cqfL3Zff209Tt077O7vFs.mft (raw, json)
Hash identifier: 01Cbyw3QPLmYwn6Cm+k21A+iYdQIkuZLMl/M1alk2ec=
Subject key identifier: 54:44:73:22:EA:B1:32:3A:03:A5:DF:08:9B:09:77:A4:0F:7F:6B:FD
Authority key identifier: 89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
Certificate issuer: /CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Certificate serial: 0194BB5FF84D3F1C3AE9A5320E7973FF4DC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
Manifest number: 0F5A
Signing time: Fri 31 Jan 2025 08:00:16 +0000
Manifest this update: Fri 31 Jan 2025 08:00:16 +0000
Manifest next update: Sat 01 Feb 2025 08:00:16 +0000
Files and hashes: 1: iZJ3h0cqfL3Zff209Tt077O7vFs.crl (hash: cC0w0z23JQNatFlmYhMX38Qk4kDPkRRJpo3xoeSH9AA=)
2: k_0z9yImMkkx7Q7hZaLKVoTRO74.roa (hash: bY1XGYbefYoSOVyj59OiTxL9N9Rlyyr/sbaOhEye3EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f8:4d:3f:1c:3a:e9:a5:32:0e:79:73:ff:4d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Validity
Not Before: Jan 31 08:00:16 2025 GMT
Not After : Feb 1 08:00:16 2025 GMT
Subject: CN=54447322eab1323a03a5df089b0977a40f7f6bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:91:98:3a:3b:90:11:c4:f2:67:49:fd:ce:21:
89:54:61:2e:98:c1:a7:88:64:2e:c3:f5:10:46:53:
0f:f5:e4:2c:19:6f:6e:5b:51:57:fc:7e:14:c5:bb:
23:1c:4d:bc:ba:85:87:7f:80:41:a7:06:fa:56:1e:
40:53:5c:14:78:a9:68:eb:e4:65:a6:e8:bd:40:72:
9b:72:80:9f:52:a7:da:70:88:dd:c7:cb:74:6f:30:
36:ee:4d:82:3d:30:46:5a:10:f0:89:4e:5d:56:22:
5c:87:83:a9:da:cf:86:5a:00:57:dc:be:57:a7:29:
9d:09:68:76:68:9b:0b:1b:5b:a9:b0:73:2c:74:84:
00:d2:62:9e:95:36:8a:91:6a:2f:dd:34:ea:39:4d:
b3:57:cb:6b:17:7f:fa:24:f3:06:85:46:63:c2:52:
d5:62:0d:ba:36:be:01:b6:5a:98:4e:b9:18:56:13:
c5:c0:d3:d7:3b:58:dc:d2:a6:71:a9:cd:0b:00:d1:
49:43:5c:d5:4f:1e:05:20:df:6e:d6:7a:8a:ef:75:
d4:57:a5:6d:16:4e:23:dd:b8:87:b0:79:cc:1a:f8:
36:fc:1c:09:6f:bd:9f:49:2a:f1:80:e2:f2:ad:a7:
e8:21:68:d4:aa:c0:cc:f8:67:d0:b3:d2:60:c0:81:
f4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:44:73:22:EA:B1:32:3A:03:A5:DF:08:9B:09:77:A4:0F:7F:6B:FD
X509v3 Authority Key Identifier:
keyid:89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:06:21:f6:b6:61:67:5e:14:fa:17:65:4f:29:c3:68:76:a9:
93:67:32:56:b6:c9:14:3a:1d:f3:33:32:c0:80:59:19:4c:c2:
5f:cc:c9:c9:6f:91:f0:e5:41:df:18:42:01:e3:9f:e5:f0:e0:
b0:2e:52:d8:99:14:ad:84:1f:96:ad:6f:d7:28:17:c0:13:cd:
39:2b:ea:a0:b0:f2:da:6a:e1:1f:be:a5:f6:34:0f:24:08:aa:
85:9a:63:4d:69:ae:75:00:1a:ee:c8:42:26:b7:4b:0a:d0:14:
3d:f4:de:9c:20:2d:aa:bf:e6:39:e5:a3:de:bd:b7:5a:a6:81:
ed:11:93:8e:89:a6:6b:60:91:b6:80:8f:e5:26:4b:5d:64:1b:
2e:b2:ec:a2:57:ba:87:1f:79:fd:29:eb:52:28:18:74:7c:05:
de:01:e6:99:b8:cc:32:1e:bc:ca:24:29:60:5a:c0:85:18:57:
a3:66:85:1b:17:b0:59:26:9c:83:1f:6c:5e:8c:7a:07:cb:63:
24:a8:17:26:15:25:33:1d:4f:47:ba:25:1f:6d:3d:43:e2:3e:
bb:fd:80:31:50:80:90:d5:af:13:7f:2b:c3:a3:8e:80:0c:ef:
8a:51:39:7e:c5:e2:62:63:91:ca:62:98:d2:d5:52:fb:8d:2b:
5e:92:e2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:48 2025 by rpki-client on console-fra.rpki-client.org