Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
File: vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft (raw, json)
Hash identifier: QIpbEHW83qt70iHPCnBsaz86++aHghpm3VN5fPQ0zw4=
Subject key identifier: ED:FA:E5:1E:DE:74:70:84:5F:EB:C5:CD:71:FF:2C:CB:B5:C6:81:E7
Authority key identifier: BD:85:31:4D:13:C7:82:C0:52:DD:02:2B:3E:4E:20:14:2B:64:17:0E
Certificate issuer: /CN=bd85314d13c782c052dd022b3e4e20142b64170e
Certificate serial: 0194BAF2018664D6872F0FD6ADDED1FE9FF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
Manifest number: 0FBC
Signing time: Fri 31 Jan 2025 06:00:09 +0000
Manifest this update: Fri 31 Jan 2025 06:00:09 +0000
Manifest next update: Sat 01 Feb 2025 06:00:09 +0000
Files and hashes: 1: 87DcvIoV9C57hb7DwzS0oT0QBdM.roa (hash: 1fwwbxC7tvmVRypNN1d4FXoCK3/5oiWQOQyukuAKNSE=)
2: vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl (hash: ut/Ppxjj3X3u55S5F9LzzeWJeaNylIoV9cmEw1UI4HE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:01:86:64:d6:87:2f:0f:d6:ad:de:d1:fe:9f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85314d13c782c052dd022b3e4e20142b64170e
Validity
Not Before: Jan 31 06:00:09 2025 GMT
Not After : Feb 1 06:00:09 2025 GMT
Subject: CN=edfae51ede7470845febc5cd71ff2ccbb5c681e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:99:e0:c5:26:09:4e:11:50:ca:c6:3d:b7:59:
79:58:a2:98:31:8c:52:e7:e9:b2:c9:68:d7:fd:42:
38:33:88:8c:dd:f7:c0:8e:2c:93:33:76:67:00:30:
1d:20:6b:32:43:36:1b:c9:55:15:36:fe:5d:f7:c0:
80:13:85:fa:78:55:fb:e0:26:b0:51:c4:1d:34:03:
cd:6d:bf:e8:82:71:a3:a8:f7:68:70:45:a0:24:bb:
bb:1c:e0:cf:e1:76:19:a9:0f:64:e4:ba:1b:b1:ee:
c6:9e:90:34:8f:d7:fb:35:38:68:41:6e:28:cf:79:
a1:5d:c4:04:45:e5:37:ae:bb:a9:b2:87:c6:d6:ae:
63:8b:55:b7:89:cd:d5:31:7b:8b:88:a0:cc:76:62:
87:8c:bd:6c:47:ac:96:f8:6b:01:e4:61:9c:17:27:
cc:c8:6e:46:b4:32:db:0d:49:47:21:65:30:d5:97:
12:24:f2:b6:15:1a:27:97:07:d6:56:92:1b:7d:a1:
46:85:55:c4:c3:f8:cc:7d:22:b0:21:dd:70:be:89:
4c:e5:61:58:52:d1:9f:24:8e:0c:5b:b2:7a:9e:99:
23:ba:3a:36:66:90:59:47:f9:ea:ec:18:19:98:e7:
d7:98:ec:76:51:7c:4a:80:ae:c0:6d:44:d8:cd:9d:
ca:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FA:E5:1E:DE:74:70:84:5F:EB:C5:CD:71:FF:2C:CB:B5:C6:81:E7
X509v3 Authority Key Identifier:
keyid:BD:85:31:4D:13:C7:82:C0:52:DD:02:2B:3E:4E:20:14:2B:64:17:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:a0:e7:91:d6:52:81:e3:b5:78:b9:9d:66:b3:46:19:a9:db:
e1:e7:a5:39:2f:1b:fa:e3:be:b3:55:50:3e:85:f8:0c:80:75:
28:ee:99:8c:15:6e:06:3b:95:7c:9e:78:4e:5d:87:0d:2e:d5:
5f:64:90:d8:fe:e3:60:bd:1d:43:79:9d:32:24:d8:6a:47:3d:
e9:df:a0:7e:f6:0d:a0:42:3f:96:b6:12:a8:b7:24:04:8d:c6:
f5:8c:fb:91:76:a3:f2:01:3e:ea:b9:6f:4a:e0:0a:1e:de:51:
32:8d:41:75:50:19:d3:aa:bc:40:fa:d9:a0:2b:2a:64:49:2a:
af:44:a3:17:3e:94:40:50:a6:ec:d4:de:f0:59:cf:7d:4c:46:
f2:0e:78:73:0b:01:54:c3:17:92:9d:e6:88:66:1b:57:9e:95:
a3:de:17:26:16:6c:ad:e7:46:0a:0f:ca:f1:f5:43:21:e5:c0:
e7:22:d7:ec:f9:c6:0f:6d:5e:fe:85:06:32:4e:6d:7e:ba:7a:
db:65:09:88:fa:2a:84:8e:23:01:46:a4:c5:90:40:0a:d9:b1:
7e:9e:29:25:03:3d:ba:a7:b7:bc:b2:28:41:2f:1e:6e:ee:c4:
46:57:48:ce:cd:ee:c2:22:ff:5f:8c:73:dc:42:8c:ea:11:ff:
dc:24:99:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:19 2025 by rpki-client on console-fra.rpki-client.org