Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: 95ndYpFuWghXZUc9WdhV7Fr70K14tSpuI0fimUSoFnI=
Subject key identifier: 5D:CF:69:A8:0C:CC:D2:AE:2D:18:11:EB:5C:CE:9D:52:80:54:EA:C5
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 019510C77A0A729DCBBF8411F39CAE043C48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 1153
Signing time: Sun 16 Feb 2025 22:01:03 +0000
Manifest this update: Sun 16 Feb 2025 22:01:03 +0000
Manifest next update: Mon 17 Feb 2025 22:01:03 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: BMGAA9xXxWTHCLkuRwM+5iQcDcEVFoUa+fUVyM8pGzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:7a:0a:72:9d:cb:bf:84:11:f3:9c:ae:04:3c:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: Feb 16 22:01:03 2025 GMT
Not After : Feb 17 22:01:03 2025 GMT
Subject: CN=5dcf69a80cccd2ae2d1811eb5cce9d528054eac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2e:a0:13:e6:46:cb:28:a0:49:1c:64:bf:51:
b1:a1:03:40:52:98:58:2d:39:a9:ff:5d:14:85:7e:
c4:fd:ff:97:66:3c:04:d9:74:96:3a:1d:f6:9e:1a:
0a:fe:4b:7e:76:ae:20:80:56:a5:54:fb:14:68:2e:
cd:07:07:cc:85:b1:ff:70:18:b0:04:1c:bd:7c:7e:
d6:0a:bf:29:67:4e:09:f8:66:b1:36:02:7f:21:4e:
8a:60:64:63:39:67:a9:20:7c:41:ec:49:45:79:53:
f6:f7:55:41:a2:bb:7f:29:6f:8d:c7:c1:ef:c9:b9:
53:10:c5:32:36:bf:53:dc:a4:2a:a4:cd:4c:1d:b9:
1a:61:93:ba:95:5f:74:59:66:e2:d0:4d:cf:e5:84:
a1:68:06:91:a2:22:a2:2f:f6:8c:f3:14:d4:cc:e0:
c4:3e:30:f0:8f:33:49:d0:fb:90:bf:9a:a1:08:fd:
ad:57:08:5e:b8:d3:72:a9:0a:88:5a:6c:75:a7:b3:
6f:cf:3d:45:b4:86:f3:83:a6:e2:22:bc:69:0c:7d:
87:70:94:f6:7f:fb:b8:ba:87:59:8d:bd:12:75:ef:
f7:14:8a:ce:d5:6f:4c:cb:56:d9:56:c8:d4:7b:c9:
0a:7f:f9:a2:c9:43:11:6c:c6:2a:62:bd:1c:b9:73:
01:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CF:69:A8:0C:CC:D2:AE:2D:18:11:EB:5C:CE:9D:52:80:54:EA:C5
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:18:92:c2:e7:9c:96:28:ec:a6:15:3d:bb:4a:50:0d:1e:80:
76:07:e7:27:79:1a:fd:3d:ec:0e:de:62:85:26:e3:0f:8a:9d:
df:9c:6e:14:b6:33:ea:0c:d8:c5:8a:0c:4d:ca:0c:c3:de:6d:
84:1d:0a:ae:22:a1:35:7a:1e:9d:b4:02:71:d6:b0:90:f8:e4:
3d:b3:83:23:35:5d:6d:29:2f:4b:43:cc:f5:df:30:01:37:db:
98:7c:6e:3a:cd:ae:ce:9d:e7:b8:7b:10:42:0b:77:56:25:a1:
28:03:a7:8d:ab:d5:d0:eb:09:ee:d6:42:67:8f:30:d6:25:2c:
07:8e:fd:82:5c:90:7b:aa:38:23:bb:6d:02:d5:8c:f4:7a:45:
9b:ba:f3:0a:39:a2:77:69:9e:bc:23:6a:4b:eb:94:57:2c:31:
84:5f:42:e9:df:76:ad:42:2f:8f:df:84:c1:61:f0:76:1e:06:
2c:26:c8:7d:fe:15:25:f8:3e:a2:ce:9e:04:68:86:f9:46:3e:
30:f3:cc:16:69:ad:6f:e2:47:07:b0:f6:72:3b:35:96:85:ed:
8a:8a:06:14:05:39:58:d9:d3:b3:84:eb:f6:10:fe:a3:00:c2:
eb:8d:16:b4:9f:00:98:bb:35:e9:87:c5:09:2c:60:a9:6d:46:
37:d6:ac:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:32 2025 by rpki-client