Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
File: KD3ro7EwXJpI03S6Rzab8fgn7gg.mft (raw, json)
Hash identifier: gwGzUseIotoL0k++3Kdnh+7dR4VyinEiG6GReT8TU6A=
Subject key identifier: 27:B7:54:84:75:C3:2B:AE:2F:AA:FC:AF:B0:AD:AF:85:C6:4E:B7:61
Authority key identifier: 28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
Certificate issuer: /CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Certificate serial: 019511A24C8D0D2B9A2AD2E2740AE87DC1F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
Manifest number: 07A4
Signing time: Mon 17 Feb 2025 02:00:03 +0000
Manifest this update: Mon 17 Feb 2025 02:00:03 +0000
Manifest next update: Tue 18 Feb 2025 02:00:03 +0000
Files and hashes: 1: KD3ro7EwXJpI03S6Rzab8fgn7gg.crl (hash: UbhHmbqNh2qAAtDn4M4p5PyKXVuJ54PApKlPDY23sFM=)
2: hy1vd6FMybZThTm3SvjJ_hE7qn4.roa (hash: vLPWUWT2tszs2HUF2XNEiqkWjYMRC5uDHz+kbz1YJLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:4c:8d:0d:2b:9a:2a:d2:e2:74:0a:e8:7d:c1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Validity
Not Before: Feb 17 02:00:03 2025 GMT
Not After : Feb 18 02:00:03 2025 GMT
Subject: CN=27b7548475c32bae2faafcafb0adaf85c64eb761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:16:ba:e1:0a:26:be:60:da:40:61:c5:8f:7c:
81:8d:9d:65:0c:2b:7c:8a:50:d5:06:7f:67:8e:fd:
d9:15:3c:62:a4:5e:d5:b5:54:84:f9:0a:52:9e:78:
28:d8:37:db:cc:85:77:d8:e9:f8:20:6b:bd:b2:2d:
50:2f:65:fd:d6:fa:67:c6:57:6f:7f:44:a5:ea:c3:
70:dd:bd:3d:68:9d:95:d5:eb:1f:31:eb:b3:d4:d7:
14:38:44:16:dd:16:77:f8:25:0b:06:ef:93:67:d9:
2b:d2:33:c5:ff:f4:73:d0:db:d1:0a:06:7c:1a:0c:
48:43:ef:a0:ee:3d:bd:63:77:83:3a:77:35:c0:19:
58:a2:98:35:df:c2:9a:7d:fc:00:ac:2f:37:ad:89:
43:fd:13:0f:25:eb:b3:10:2a:87:91:1e:d8:29:f5:
a5:f9:82:93:47:e9:ea:fc:98:e1:ca:fd:a2:a5:c6:
f0:b5:24:f6:e6:6f:7a:a1:10:fd:63:e0:25:33:50:
ef:74:7b:a8:3f:23:d5:52:37:5b:b0:87:1d:50:a0:
75:66:d0:75:79:7b:f8:e0:36:9d:fe:44:2c:47:b9:
93:58:99:6c:04:76:cc:83:51:ec:ed:02:c1:0c:2c:
ec:09:e7:0d:a3:61:cf:d1:07:fa:22:d4:6b:24:dc:
24:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B7:54:84:75:C3:2B:AE:2F:AA:FC:AF:B0:AD:AF:85:C6:4E:B7:61
X509v3 Authority Key Identifier:
keyid:28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:fc:7c:a1:ff:f7:fd:ac:0f:f8:ed:c7:80:6a:09:08:22:c5:
65:d2:bb:36:ef:4b:4d:4c:c0:ad:13:77:7a:4a:a4:b5:84:37:
cd:52:d9:78:6c:98:0a:cf:f2:30:b3:d9:f3:4c:b6:b5:af:90:
9a:74:cb:8e:da:0f:dc:e9:e4:e2:bc:5f:04:9d:d6:4b:09:9c:
41:35:13:c7:80:1f:ed:5d:47:84:38:eb:00:27:b9:fc:20:a7:
86:c8:6d:1c:d0:71:33:6e:86:e8:e6:a5:46:b6:0e:e8:20:a6:
4e:f3:c6:9b:4b:f3:3c:8c:24:78:7f:6e:88:b7:a8:db:17:65:
89:c8:57:f1:07:d2:1f:13:2f:c3:81:e8:79:e2:b0:13:e5:6c:
c6:90:17:28:8b:01:4c:e7:73:e7:7d:b0:4f:cf:95:f1:b3:a4:
bd:56:4c:d2:82:6b:65:02:af:a2:da:5c:10:37:ca:84:4a:01:
76:1f:8c:d7:76:ed:89:2d:6c:19:4d:15:96:f2:a6:2a:86:18:
fb:2a:60:b5:dc:37:a7:a3:12:d2:ef:20:01:24:06:0b:4f:da:
14:ea:95:09:92:91:4a:e4:16:31:fa:e9:1f:14:eb:5e:d3:0a:
53:50:3c:68:78:05:b8:df:94:e5:a4:db:78:40:3d:c8:9a:30:
3c:ab:8b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:18 2025 by rpki-client