Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
File: KjbWeMS7ysJK5r6pokyZXEjVk_A.mft (raw, json)
Hash identifier: bu/YfEsVP2CM6NFFvv9XcTaVhCiPf1JikSItLuIh/E0=
Subject key identifier: D8:1E:F3:10:C8:B5:13:85:A9:FF:39:D3:49:C5:84:2B:0B:4B:53:C3
Authority key identifier: 2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
Certificate issuer: /CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Certificate serial: 0194BB5FFD4668383D1E2139F31C4B426676
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
Manifest number: 142C
Signing time: Fri 31 Jan 2025 08:00:17 +0000
Manifest this update: Fri 31 Jan 2025 08:00:17 +0000
Manifest next update: Sat 01 Feb 2025 08:00:17 +0000
Files and hashes: 1: KjbWeMS7ysJK5r6pokyZXEjVk_A.crl (hash: oJd1evMtKbdmw3P8Ckv83bdiE+BNHMZuchSaV1FU35A=)
2: zK1LIZGeSSnaNXNW0qcn6w1MLCU.roa (hash: e8RwpvlrpxWqEOoeavX1Cyz9aTwhsZ8GdJGcHGa5+Eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:fd:46:68:38:3d:1e:21:39:f3:1c:4b:42:66:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Validity
Not Before: Jan 31 08:00:17 2025 GMT
Not After : Feb 1 08:00:17 2025 GMT
Subject: CN=d81ef310c8b51385a9ff39d349c5842b0b4b53c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:91:66:eb:29:88:63:9f:2e:e2:d9:4b:34:79:
95:52:83:09:b6:6f:4d:d0:89:50:bd:6c:06:02:96:
0b:94:d8:2c:c0:a3:45:c9:ae:5f:93:64:f1:d8:77:
d4:f9:02:e0:24:52:0d:88:85:00:c5:a8:73:dd:88:
e9:6d:0e:3c:d0:76:45:26:2e:ed:78:84:96:c7:c9:
c7:51:59:f5:09:08:1e:16:ce:a1:1d:7f:15:76:58:
f5:ed:78:03:68:6a:ed:f4:23:e8:42:91:da:15:95:
30:29:e3:1b:97:fa:62:36:b1:19:9b:90:5f:1a:cf:
8d:3b:16:10:11:33:b1:03:67:21:5f:b5:4b:72:5d:
ea:d9:27:7e:b8:df:8f:27:6e:73:25:e2:87:08:82:
4b:3e:de:ea:90:f3:27:f5:4b:6e:df:af:49:a8:d8:
f3:ee:a5:65:0a:08:51:3d:c3:36:bf:2c:31:ea:00:
13:d6:f8:7f:f2:c5:7b:bf:94:af:93:03:70:50:aa:
d7:53:5f:1b:61:f5:1e:86:45:01:5a:ef:f4:bb:dd:
0e:59:ba:a5:53:04:e0:33:73:ee:90:3b:e5:f6:b8:
94:14:bb:36:7d:17:bf:4c:54:79:67:e3:52:85:fb:
07:68:0e:76:4d:8f:89:61:fb:a8:a6:a0:ec:ab:c7:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1E:F3:10:C8:B5:13:85:A9:FF:39:D3:49:C5:84:2B:0B:4B:53:C3
X509v3 Authority Key Identifier:
keyid:2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b9:74:c8:ca:11:df:59:3f:34:12:dd:49:7a:a8:a7:71:c2:
fa:84:1b:21:bf:3c:49:fd:f8:63:63:71:1b:b8:02:8f:61:b0:
d9:a7:b2:64:ac:76:26:7f:4f:24:82:d8:c2:de:29:41:52:48:
31:18:33:1c:a8:ee:70:e4:0a:73:a8:63:59:12:06:82:13:fa:
4a:c2:76:16:6a:09:14:ba:9a:d5:17:ca:e6:a2:b5:f1:da:82:
5d:35:6f:1d:19:65:c9:a2:d6:b5:55:01:2c:f6:43:c9:ae:e9:
67:b5:c6:71:42:ce:24:02:a3:4c:26:d3:be:cb:be:b4:dc:3b:
0c:93:3e:ee:61:58:c4:a0:78:07:94:2e:88:4c:5d:b4:56:6b:
37:89:54:65:08:68:66:5f:45:aa:1d:80:c1:f0:1c:67:15:4c:
13:0f:3a:3c:6a:fa:c9:39:39:d7:c4:37:1c:a5:31:c5:32:2b:
64:0c:f2:8f:41:5c:1b:2a:96:97:47:bc:4b:16:24:80:0d:39:
44:d6:c9:52:8a:1c:b6:24:ff:9a:dc:82:70:e2:21:41:c7:6c:
9d:32:bc:53:b0:f5:24:5b:e1:9c:80:84:5a:64:40:00:7b:09:
19:7b:7a:85:04:71:95:67:7b:84:c2:43:fe:b5:37:dc:0e:58:
bc:85:02:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:31 2025 by rpki-client on console-fra.rpki-client.org