Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
File: MbXwrK42UqU8caB0ojR6tvF_0_g.mft (raw, json)
Hash identifier: +0ZaLRJ1qmR81I6IcKYoB8WhAo+1XJM09m6+3WgV12Q=
Subject key identifier: 94:93:70:B5:AE:36:05:62:A7:5F:8B:4C:CE:B0:81:8B:BF:2F:6A:28
Authority key identifier: 31:B5:F0:AC:AE:36:52:A5:3C:71:A0:74:A2:34:7A:B6:F1:7F:D3:F8
Certificate issuer: /CN=31b5f0acae3652a53c71a074a2347ab6f17fd3f8
Certificate serial: 0194BABB908F963C201543F08BDB22B1537E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
Manifest number: 13B5
Signing time: Fri 31 Jan 2025 05:00:41 +0000
Manifest this update: Fri 31 Jan 2025 05:00:41 +0000
Manifest next update: Sat 01 Feb 2025 05:00:41 +0000
Files and hashes: 1: KlCag1k38E35giK2RwCL86wfRww.roa (hash: 3A8pcHf0/9mVDJ/I9xf+96E0LjYi6EEs2LRUfPZpiNc=)
2: MbXwrK42UqU8caB0ojR6tvF_0_g.crl (hash: SNVQmsQ0ZOcxxePfOR17VYVftk4pm/oEA+atdJhJOUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:90:8f:96:3c:20:15:43:f0:8b:db:22:b1:53:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b5f0acae3652a53c71a074a2347ab6f17fd3f8
Validity
Not Before: Jan 31 05:00:41 2025 GMT
Not After : Feb 1 05:00:41 2025 GMT
Subject: CN=949370b5ae360562a75f8b4cceb0818bbf2f6a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:07:bd:d4:37:c8:ed:fa:87:38:46:57:ce:41:
0a:ee:6e:b4:1a:65:ad:f0:44:ac:ae:1b:6b:00:3b:
74:12:4d:99:80:08:9a:42:05:d2:3e:97:d2:80:9e:
33:46:8c:c2:56:21:52:c3:dc:41:2b:22:a6:bf:8c:
59:0b:82:45:d2:04:a7:ec:b5:cd:96:69:72:30:51:
95:40:5c:52:a6:85:a5:5f:c2:33:e1:92:c5:be:87:
51:6f:e5:5d:e9:f5:c3:4c:66:a2:24:7c:47:b5:fb:
0d:3d:db:04:74:d7:50:0e:01:68:c2:d4:32:1c:3a:
5d:05:16:15:3e:8e:84:3f:ff:e1:8b:cf:cf:67:25:
65:b3:b4:15:35:25:ec:41:67:49:7c:1f:88:a8:7f:
59:bd:69:13:0c:40:b8:46:49:bd:6e:93:d5:a4:e2:
eb:f1:1e:df:a5:b8:81:64:10:19:c8:b3:13:2f:6f:
de:38:ed:2f:f9:25:9a:ce:c5:2d:ad:31:9f:22:21:
5a:60:58:3d:a9:0a:13:ca:30:05:a0:c3:93:63:7c:
66:53:06:53:c1:b3:a5:d2:d2:45:e6:73:85:a3:f7:
43:01:9b:8c:72:d4:1d:22:a6:7f:74:19:56:74:c7:
32:6f:eb:98:8a:8b:b7:df:14:53:23:d8:28:35:d5:
1e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:93:70:B5:AE:36:05:62:A7:5F:8B:4C:CE:B0:81:8B:BF:2F:6A:28
X509v3 Authority Key Identifier:
keyid:31:B5:F0:AC:AE:36:52:A5:3C:71:A0:74:A2:34:7A:B6:F1:7F:D3:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e3:47:d3:88:5d:93:60:f2:c8:ab:92:68:08:57:af:b9:92:
b6:32:4f:e8:ee:d6:28:da:45:bd:19:13:cf:30:22:c2:92:2e:
18:ba:85:e9:50:c2:a7:be:7d:c8:0e:67:3c:71:7b:ca:45:0e:
10:ad:10:a4:b4:8a:c2:cc:68:ed:c4:a9:f0:51:57:2f:70:50:
84:25:6e:89:06:03:3d:c0:19:44:96:e9:5c:1e:4d:1a:36:48:
c2:47:8d:fa:a6:13:fa:77:c3:2d:b7:d9:3f:1c:4e:bd:ec:7b:
28:c9:ba:10:72:6e:9b:4e:9f:d9:73:eb:0e:b6:e2:1e:b8:3e:
26:35:27:16:f7:9d:12:fe:06:e9:29:ff:54:1f:f2:bf:8b:fc:
d6:6b:8c:9d:79:d8:1f:11:65:fe:9e:72:23:ca:fc:84:7d:93:
dd:d6:bd:c1:a4:5d:71:11:36:db:f9:10:6b:f8:e8:7a:9b:d5:
d4:e1:d3:ed:58:09:9c:e4:71:25:fe:0b:c6:7a:b0:c4:10:bc:
a1:9b:c8:5d:e5:29:7e:16:5f:65:f2:5d:b8:7b:54:ea:1a:48:
7c:1b:1e:4b:f1:b4:13:24:a3:80:da:31:88:ff:b7:26:79:55:
e2:f6:57:e4:83:b2:67:8c:21:cc:77:65:00:53:79:8c:6b:d8:
05:c5:9f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:14 2025 by rpki-client on console-fra.rpki-client.org