Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: 1+Ib7fTURucg8x7uVBbhI+3MPdbxo7Dx8JH9GFs4oFQ=
Subject key identifier: 9F:0E:47:1C:38:DA:31:5B:31:17:75:2D:49:5E:6D:7D:05:E0:A2:9D
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 0194C35107315CD29E21497788BBF1CADB0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 02FC
Signing time: Sat 01 Feb 2025 21:00:54 +0000
Manifest this update: Sat 01 Feb 2025 21:00:54 +0000
Manifest next update: Sun 02 Feb 2025 21:00:54 +0000
Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: V6ToePspn+dQHi/zg7c9UQswA92ZFogBFHlykK+yZUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:51:07:31:5c:d2:9e:21:49:77:88:bb:f1:ca:db:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Feb 1 21:00:54 2025 GMT
Not After : Feb 2 21:00:54 2025 GMT
Subject: CN=9f0e471c38da315b3117752d495e6d7d05e0a29d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:05:33:76:cc:88:a8:7a:19:07:ee:fb:56:5e:
f6:49:24:de:f8:4f:e2:ea:23:4e:d6:e9:b8:93:02:
c6:b4:97:58:90:1f:74:0e:6d:02:a6:9f:b9:86:f2:
d8:16:5c:a0:4e:f7:a6:ac:b4:10:3a:2f:56:e9:71:
0e:de:f8:c2:c5:df:2e:22:cd:bc:30:26:71:2d:31:
c7:5a:96:43:ad:19:43:7f:f4:8f:d7:3d:a9:3b:99:
89:52:71:32:34:26:0f:82:dd:9e:2c:09:e7:98:fc:
be:72:84:02:89:12:3a:69:b1:dd:61:a0:d6:a3:46:
68:f4:e4:3e:66:fd:d7:78:e8:e6:e9:34:ba:25:b1:
2f:c3:b1:29:fe:67:76:2f:0c:3b:67:9d:9f:e3:f5:
e4:af:89:df:4f:3b:4f:87:94:35:20:3e:a2:25:ae:
42:ea:3f:9e:59:1f:94:d8:c5:d9:8e:f2:bf:b2:46:
6d:fe:df:0a:ad:7f:69:7a:e9:02:18:e0:1b:b1:01:
43:3e:56:62:61:b1:76:a5:3f:02:e1:90:b0:7e:17:
17:70:62:9f:e1:2a:21:1c:4a:76:b6:ad:8f:96:59:
13:d1:9a:7a:f0:55:ae:0e:20:5c:39:9e:6c:46:5c:
f6:86:bd:cd:1e:62:32:15:3f:26:be:2b:4d:62:bf:
b6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0E:47:1C:38:DA:31:5B:31:17:75:2D:49:5E:6D:7D:05:E0:A2:9D
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:c2:4e:10:7c:93:29:75:b4:97:76:4c:80:56:19:26:0c:4e:
4f:9e:04:62:e3:2e:50:6c:b7:9e:8f:2c:48:55:df:da:2b:65:
1e:bb:14:53:44:16:64:d9:d8:a9:f3:9c:d3:8d:b1:a6:40:74:
83:dc:e0:f7:c3:a9:5b:75:82:a9:55:e6:8d:cb:90:fd:d6:47:
7c:37:b3:d1:6c:23:90:06:e7:e4:f9:45:4f:8c:e6:34:46:cb:
65:b0:bc:89:f7:7f:ca:a8:5a:46:5a:b8:87:40:36:65:25:78:
b1:31:48:6e:99:c1:9c:45:eb:86:62:8e:54:4a:7b:d2:1a:35:
39:a7:72:98:3f:80:c6:11:eb:04:7d:45:a9:1a:59:e3:77:3d:
e0:34:a8:1b:3c:57:5e:0f:f9:fd:b3:2d:ed:07:19:e2:5d:9a:
d4:4a:f8:6e:3b:f5:61:75:18:27:22:cf:a8:0e:13:ef:b3:fe:
ed:2d:38:7c:3d:eb:f7:71:fc:ce:46:14:7a:33:a1:d6:23:6d:
35:7a:83:7d:6e:ce:5f:a8:f9:f0:f9:6b:5b:07:73:62:2e:4d:
75:5d:64:70:dc:b9:d7:5b:3f:08:cf:e7:59:77:4a:e4:05:e7:
f5:b9:6b:bb:5b:46:bb:ea:26:51:32:e6:e9:26:b5:33:89:69:
2a:9f:a5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:53:24 2025 by rpki-client