Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: 5JD6Bm2tIPEUrKYHvVAQeS5JC52mL9LnZv/TBKvYKHs=
Subject key identifier: 23:4A:C3:1B:3A:B5:DD:1C:C3:72:FB:76:A6:B7:71:65:D9:F2:04:3D
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 0194BB6047ACEA93BC88D6B10E73A76FB9E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: D2
Signing time: Fri 31 Jan 2025 08:00:36 +0000
Manifest this update: Fri 31 Jan 2025 08:00:36 +0000
Manifest next update: Sat 01 Feb 2025 08:00:36 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: tVwabs5wn2k3Xd2jCJ1aeiGgaU+UXWS4hBasguYlJRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:47:ac:ea:93:bc:88:d6:b1:0e:73:a7:6f:b9:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: Jan 31 08:00:36 2025 GMT
Not After : Feb 1 08:00:36 2025 GMT
Subject: CN=234ac31b3ab5dd1cc372fb76a6b77165d9f2043d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b4:80:33:5d:bf:e5:2d:ac:e8:c7:f2:97:73:
0d:48:a3:b5:7c:62:4d:d2:d2:7d:41:9e:c0:30:24:
df:2e:10:cd:e8:bd:ee:4c:f5:b8:f4:7f:87:2f:67:
61:ab:42:25:37:b0:76:66:df:76:54:c5:34:db:b5:
ef:c1:e7:fc:fd:f0:09:04:23:f3:49:f5:40:6a:91:
32:a2:80:d1:d5:5a:d3:68:d3:50:9d:a9:1c:bd:23:
2f:be:04:d3:5c:d9:c0:20:b8:eb:16:b8:d3:b8:c2:
ac:7f:43:cd:69:14:e4:3b:a8:ab:63:2a:0f:7e:c9:
bf:52:29:98:3a:30:15:87:75:f6:d8:c9:0a:19:83:
29:c2:0c:a4:a2:5d:06:8d:97:34:be:48:cd:c0:b8:
52:33:32:38:51:f2:07:e1:7f:6d:27:a4:9b:4a:75:
5e:06:83:f4:6e:48:13:09:46:49:dc:32:68:9e:b3:
ea:94:5b:53:83:1f:e3:1f:bb:ef:3d:cd:0a:d7:fc:
e6:53:8f:7a:17:e1:eb:a5:e6:45:0e:2c:19:1d:e1:
33:8a:c6:68:9a:df:8e:53:43:f8:ee:29:1b:a7:4e:
56:f9:ce:75:1d:61:f7:07:d5:65:c2:9a:30:12:2f:
b0:65:8d:ec:87:c0:87:07:82:48:69:71:3f:f2:67:
2b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4A:C3:1B:3A:B5:DD:1C:C3:72:FB:76:A6:B7:71:65:D9:F2:04:3D
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:85:86:40:a7:bd:38:04:f9:79:dd:8e:54:bd:78:14:97:81:
52:d6:44:e1:82:1b:2d:a2:41:23:23:4d:2d:eb:b2:7f:91:bd:
a3:ed:ae:a1:06:e4:a2:f3:bf:08:2a:6a:a8:65:87:10:0e:df:
a7:55:60:3f:04:e3:16:75:34:5d:02:17:e4:7f:3b:72:9a:1f:
25:8f:0a:84:4f:69:90:54:db:73:92:8a:b4:09:34:a6:14:08:
43:2b:eb:8f:97:04:6e:12:5f:b2:e9:c5:a0:e5:d9:c5:47:2c:
df:64:0b:bf:99:53:2b:ff:5d:7a:2f:a0:71:39:9b:dc:02:47:
34:e8:02:d7:22:23:22:d2:d4:b0:a8:30:e1:1a:df:ab:56:9e:
f0:da:76:07:34:c0:dd:92:29:e0:c4:fa:4b:6b:e6:cd:5a:a4:
e5:0d:2c:f4:07:0b:b7:22:ca:6f:c4:e2:8e:f7:83:8c:0f:5a:
ab:50:4f:eb:9e:f5:49:3a:02:df:47:c0:dc:32:65:04:d6:e4:
f2:e4:2e:dc:b8:15:2c:d1:d7:32:f4:ec:5c:3c:02:2e:35:e5:
71:a7:9e:2d:3e:c1:91:a0:7a:0c:6f:d1:48:11:b4:8e:59:ec:
a7:f6:96:67:d4:f5:3d:7c:0e:5c:fb:62:42:3e:a3:7a:b8:08:
6b:90:ff:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:45:16 2025 by rpki-client on console-fra.rpki-client.org