Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: 5T/Q0pFHSwVMhn3Y6IPRbMiiuOfTgKzr5RvjHQ/We84=
Subject key identifier: C6:CE:8E:3D:B0:D8:45:A2:C2:43:D4:31:A9:9E:E8:31:89:84:1C:71
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 0194C3BE2B7DBA14AB562DF135B9922E5E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 1431
Signing time: Sat 01 Feb 2025 23:00:07 +0000
Manifest this update: Sat 01 Feb 2025 23:00:07 +0000
Manifest next update: Sun 02 Feb 2025 23:00:07 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: twzJ0Ppk1cjFmmsDB8Y7D7m5FOYZn/XewUnHGV5rB0Q=)
2: rzOkydR3EHFZXD3XEkRebB02-_4.roa (hash: df7jTqxQL8Sw059sbRTkyG9ltt5KtHFaW+BfP29wPTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:2b:7d:ba:14:ab:56:2d:f1:35:b9:92:2e:5e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Feb 1 23:00:07 2025 GMT
Not After : Feb 2 23:00:07 2025 GMT
Subject: CN=c6ce8e3db0d845a2c243d431a99ee83189841c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5c:61:84:6e:14:2c:29:23:26:b1:7e:2c:9e:
89:35:bb:6f:bf:91:bb:c5:df:96:e8:80:bc:bf:fa:
b2:44:4f:9c:0f:21:e4:6c:61:c9:75:f1:aa:00:65:
64:7d:a5:9b:0f:4e:a6:2e:45:49:8e:4a:d6:51:57:
03:41:1d:6b:68:f4:6e:86:03:ea:21:12:92:fa:70:
31:b5:f9:b2:09:50:57:f4:ba:e5:7a:5a:13:86:49:
2a:e4:8d:b0:09:9e:6a:04:cc:c6:45:fe:61:ce:d6:
fd:b2:f2:7f:00:23:d5:34:9d:24:43:48:37:5c:d0:
8e:f4:35:9b:dc:85:24:ba:7d:1e:ea:af:f4:00:ae:
b3:99:c6:dc:77:2f:3f:4a:02:44:d5:0b:d4:f3:da:
10:9c:13:bb:3f:7b:3f:c5:52:f9:38:fb:82:f3:00:
fb:5a:a5:0f:e2:8f:31:af:b5:23:1b:27:de:21:18:
54:a6:84:d2:60:e7:0d:7a:66:69:10:10:ea:2e:a4:
b6:51:01:5a:28:2b:d2:08:4f:ba:05:de:5e:22:91:
57:cc:0c:d6:10:dc:73:f8:56:c6:c8:bc:1c:27:94:
58:37:54:7b:5f:21:9d:f9:11:76:38:a1:a4:56:3a:
47:08:f5:e4:37:12:e5:7f:cf:fd:2b:a0:36:0c:df:
8c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:CE:8E:3D:B0:D8:45:A2:C2:43:D4:31:A9:9E:E8:31:89:84:1C:71
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5b:05:5b:a4:c6:b7:5e:6d:8e:69:b8:39:ee:65:d4:9d:81:
1f:2c:d6:6f:87:bc:48:57:44:88:53:f4:58:e7:39:df:aa:57:
f2:14:54:8b:83:7b:31:33:00:af:5a:cb:d6:26:0c:5e:d4:e4:
0b:a4:46:47:78:dd:7d:59:f4:b5:ac:01:6c:fe:e1:f7:ba:68:
78:f3:02:c3:ca:97:c4:c0:02:35:67:30:7c:73:76:62:3b:bc:
5f:00:3a:b0:6a:2d:10:9a:5f:f0:82:4b:3c:97:79:81:0a:e2:
c0:69:a0:97:b1:59:45:71:de:90:16:99:81:36:91:91:e7:41:
de:59:b7:e9:53:54:ed:51:02:f6:71:4a:4a:32:de:f7:0c:00:
ab:48:df:96:dc:1e:9b:90:7e:16:7e:08:6b:ef:ea:97:09:c9:
59:bd:41:86:ca:0f:f7:68:45:af:e9:fa:bc:17:02:cf:ef:0c:
f8:99:c6:ee:93:c6:21:d8:b7:c7:fe:c2:2e:cb:29:bd:57:7e:
aa:f9:11:73:4b:43:a8:80:41:49:d9:51:04:58:df:ac:d2:13:
fe:8c:b3:72:59:24:82:9d:3b:8f:2e:1c:e5:36:fb:e2:a9:ff:
b1:27:93:d7:6e:cc:2f:5c:dd:b4:6f:99:fe:23:cc:93:72:3f:
9a:fd:40:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:44:42 2025 by rpki-client