Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
File: Kq8k6REaiJ202uCH5ICeEIbjP4I.mft (raw, json)
Hash identifier: HMEWR68Wf4fhxNL7JvUktJ7f1DXCVRfv859FaOwcsgY=
Subject key identifier: EC:C3:1A:70:B8:75:80:38:74:77:6C:C6:BD:7B:2C:83:5F:30:09:2C
Authority key identifier: 2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
Certificate issuer: /CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Certificate serial: 0194C42C9B6A0D477AE578022E183A258609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
Manifest number: 138A
Signing time: Sun 02 Feb 2025 01:00:45 +0000
Manifest this update: Sun 02 Feb 2025 01:00:45 +0000
Manifest next update: Mon 03 Feb 2025 01:00:45 +0000
Files and hashes: 1: 5sMxgmIczAQ4fn8JJ0_j3DrMjS0.roa (hash: VTfvZnzv8Q2Rd2Q6njhUyXmObqB+4ygm6Iue4TDP3ic=)
2: Kq8k6REaiJ202uCH5ICeEIbjP4I.crl (hash: zTp5hhFe53leibGv9kvQReB0FLspKbnGo4k3KkXB6Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:9b:6a:0d:47:7a:e5:78:02:2e:18:3a:25:86:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Validity
Not Before: Feb 2 01:00:45 2025 GMT
Not After : Feb 3 01:00:45 2025 GMT
Subject: CN=ecc31a70b875803874776cc6bd7b2c835f30092c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8d:17:80:a6:f8:77:3b:38:73:e5:b6:62:99:
0a:e9:0f:fa:13:ed:cc:e7:68:f4:f3:01:4a:1e:87:
09:3e:fb:60:dd:47:73:63:b5:60:92:0b:4a:70:50:
f3:1f:2e:cc:00:ff:a5:a1:65:18:9e:43:ec:0b:36:
0e:17:88:e3:2a:63:41:4b:68:66:7a:b1:96:81:11:
69:06:d3:52:9b:ad:c1:50:06:8c:21:1a:93:31:3c:
19:85:6c:6c:d7:53:da:b6:45:38:b5:61:f7:c5:f8:
44:b6:aa:3e:a8:fb:27:64:90:9e:bc:fd:67:3c:a9:
76:ac:5c:d6:f1:81:e9:1e:1e:5b:7c:eb:59:69:2c:
29:72:69:4a:d5:f5:d1:34:22:c8:cf:4e:6e:f8:95:
0c:d4:9b:95:e0:a4:8b:ef:ec:67:24:c9:d3:2d:c5:
3f:68:92:18:e3:1a:33:21:02:8d:14:3d:2a:1e:08:
25:b3:f6:f0:84:2e:d6:21:ec:1b:79:c8:72:d0:f3:
99:1d:94:5f:a5:45:09:07:1a:ac:be:96:21:41:56:
e6:28:5a:ef:87:d9:bc:ab:cf:a4:be:03:38:bd:92:
85:8a:15:ba:00:23:8b:22:de:fb:fd:7c:c4:4b:2e:
ce:c9:83:f6:04:2a:db:17:0a:9b:e9:f3:a1:94:37:
3d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C3:1A:70:B8:75:80:38:74:77:6C:C6:BD:7B:2C:83:5F:30:09:2C
X509v3 Authority Key Identifier:
keyid:2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:08:b1:0a:0e:a7:22:0f:8a:79:bb:5a:1c:ca:cc:27:ff:66:
b5:63:66:4f:aa:b1:b9:95:f4:e4:72:96:6f:3b:24:59:b5:0e:
ad:48:a6:9c:d7:22:84:90:70:10:c3:1c:02:61:b1:ce:ba:4e:
ea:f0:b3:b2:24:b2:03:a8:f1:c9:23:b2:6b:87:9d:31:fb:55:
4b:23:2a:02:10:51:55:c4:83:cb:fa:55:80:cc:f8:47:fa:b6:
df:2d:19:83:36:3c:d0:15:ad:c5:66:d6:d1:f0:54:b9:8d:dc:
88:9d:dd:cc:35:0b:8b:ed:d3:5a:d7:89:7a:47:0b:ed:6a:5d:
f7:d0:e6:a3:fa:07:69:75:29:38:65:7c:fd:d6:8f:3e:49:34:
48:d9:9e:03:4f:63:97:65:f4:c5:59:b6:0f:9e:b4:ef:fd:f0:
d4:55:4e:42:ef:ee:6b:0d:cd:b1:7c:d0:c0:21:5e:64:8f:d7:
af:8d:62:b5:06:d0:48:66:a7:60:a0:b2:cb:cb:69:45:e1:44:
a5:6d:7f:29:6a:ec:b7:59:93:16:16:4d:26:d9:6a:df:14:d6:
80:2a:08:f5:00:d1:19:d2:27:ca:9f:9f:da:72:4c:f0:47:3d:
7c:74:14:74:64:75:6d:82:17:f8:af:7b:ac:2c:5b:ab:28:78:
70:0e:af:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:08:05 2025 by rpki-client