Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: zEVC/skvRawKRl4ap+tsZGYSLpBw1ZH/LISQsSaz/Go=
Subject key identifier: 41:67:34:BD:F1:6E:8E:8D:DA:E4:66:FC:4F:8A:55:10:86:DF:9A:87
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 0194BB5FE52227965F353B26EFC43D2A5681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 096F
Signing time: Fri 31 Jan 2025 08:00:11 +0000
Manifest this update: Fri 31 Jan 2025 08:00:11 +0000
Manifest next update: Sat 01 Feb 2025 08:00:11 +0000
Files and hashes: 1: O7JK_R6ip6iR244uyf3DBgROHco.roa (hash: GKH7o0xxF7nZfmB+4s7mUapBQQrsXrRHoDwbM7Hh8hA=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: hJq+bAubHWM0TPNry93oM9Zs3bBfcfZkyNBV0W7m1j8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:e5:22:27:96:5f:35:3b:26:ef:c4:3d:2a:56:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: Jan 31 08:00:11 2025 GMT
Not After : Feb 1 08:00:11 2025 GMT
Subject: CN=416734bdf16e8e8ddae466fc4f8a551086df9a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:89:3c:ba:26:85:d7:8f:06:24:d5:d7:34:0c:
d2:b7:28:57:ea:8b:a6:61:96:a9:9a:03:6d:04:43:
4e:3b:29:8a:9c:2c:8d:6a:b8:8d:54:9f:ad:0d:d0:
a8:41:47:9c:64:b9:cd:80:b6:31:77:2a:8c:d9:9f:
9c:99:d0:10:df:06:6f:43:c4:1c:88:96:ec:32:65:
06:5f:8e:13:c3:76:72:97:55:1c:ad:25:d3:64:a3:
f9:f0:e2:7d:9e:88:51:7a:79:0c:c4:83:fe:88:ac:
3b:e7:9e:25:76:d3:cc:b9:2d:f4:4c:ff:f0:51:24:
62:e0:23:b4:cd:16:08:e7:65:49:7c:25:ed:c3:3d:
c4:ab:5b:f5:5d:ff:9f:69:3e:6c:dd:12:3d:34:bd:
a4:fa:f2:4d:4e:99:7c:e7:e2:7e:b8:ee:33:e8:1b:
d5:db:37:dd:ba:9e:e5:b4:af:4f:e9:25:8a:ed:de:
b1:7f:e3:a0:3c:cc:f4:97:06:28:95:f4:44:ed:07:
fb:c5:d7:51:6a:78:a8:98:d9:55:b7:19:96:77:17:
ba:5e:33:ed:0d:9d:27:23:6d:ce:29:54:aa:b2:d6:
22:40:b5:0c:95:1b:6c:24:5f:d4:56:71:be:05:34:
df:81:95:b8:48:21:46:3e:47:08:19:d9:53:dd:0a:
77:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:67:34:BD:F1:6E:8E:8D:DA:E4:66:FC:4F:8A:55:10:86:DF:9A:87
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:30:63:d6:95:82:71:70:d7:c9:69:6b:8d:4c:69:ee:70:8e:
f9:e4:9e:50:64:c2:2b:2c:7b:2e:59:5c:28:f6:d5:bd:ac:37:
be:04:dc:14:49:04:ce:c3:09:9b:2a:f8:77:7e:34:78:29:af:
47:e2:fe:84:01:2e:c1:ca:ab:98:f8:91:42:81:74:3f:3a:de:
3d:d2:62:fb:b9:f2:47:6e:c7:31:1b:af:c9:03:ba:73:aa:b5:
c2:ee:b7:c0:f2:29:25:c7:49:14:2b:b2:dd:ad:3a:67:bc:57:
08:b7:12:71:3b:61:05:ae:f8:42:ce:7a:6f:10:73:b9:a2:de:
3d:91:bc:80:26:fa:c4:63:a2:be:d3:66:50:57:a2:db:69:b5:
d6:92:fa:15:15:ea:c8:2b:5d:98:fa:94:bd:9a:17:96:e6:75:
f7:3b:96:e7:50:3b:01:95:42:25:3f:4b:ba:88:fc:d3:3c:64:
fb:f4:19:1a:8e:8f:09:e9:9c:06:fa:d8:ac:f5:53:d7:7b:57:
54:7f:89:96:31:af:5b:1b:97:b9:52:82:80:06:41:7d:2a:f8:
a4:07:fe:4e:24:65:a2:71:e1:51:40:95:1c:c5:27:52:14:8b:
41:6e:12:13:b4:97:a7:20:b4:30:f0:0c:70:dd:e3:ba:79:20:
9c:c6:7d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:05 2025 by rpki-client on console-fra.rpki-client.org