Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
File: INShQtHjFwTrW88Dp4X2N4NVt5k.mft (raw, json)
Hash identifier: m8MQTx46ghbyc6yQrh710R3pD0zHKqNCToUmb/O43PM=
Subject key identifier: B6:7E:D1:FA:FC:05:E8:FD:DA:E0:EE:4A:EC:90:3D:E6:9C:E4:AD:C9
Authority key identifier: 20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
Certificate issuer: /CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Certificate serial: 0194C3F611EBB183BB612C5D373088803081
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
Manifest number: 0452
Signing time: Sun 02 Feb 2025 00:01:11 +0000
Manifest this update: Sun 02 Feb 2025 00:01:11 +0000
Manifest next update: Mon 03 Feb 2025 00:01:11 +0000
Files and hashes: 1: INShQtHjFwTrW88Dp4X2N4NVt5k.crl (hash: j52iJItadVYSRQyEc8zAGtw41+RyJNPoFxaVZ5XB3gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f6:11:eb:b1:83:bb:61:2c:5d:37:30:88:80:30:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Validity
Not Before: Feb 2 00:01:11 2025 GMT
Not After : Feb 3 00:01:11 2025 GMT
Subject: CN=b67ed1fafc05e8fddae0ee4aec903de69ce4adc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:19:9d:67:03:73:6d:cb:1b:a6:36:2b:fb:7f:
7d:50:ce:60:fd:d0:55:66:b7:a2:5e:bb:59:1c:57:
a1:3c:03:d9:ee:12:f6:8a:fd:5b:b1:5f:79:28:71:
79:72:92:be:5a:18:86:6a:94:cd:ba:c3:63:4d:db:
0c:98:61:2f:68:19:1b:53:1d:6e:0b:c0:15:e0:6c:
ce:2f:27:50:26:f0:fb:bd:a3:b8:be:c7:fd:d6:83:
fc:e0:04:ed:a0:f2:5a:c9:16:df:81:19:df:be:ae:
91:c7:38:b2:f2:46:48:14:65:05:38:34:07:3a:97:
4d:97:f2:3c:14:42:cf:8a:27:d7:3e:b5:25:97:e0:
b5:50:85:de:3e:8f:3b:c5:7d:7b:37:f2:10:e9:7e:
7e:4c:43:03:5a:13:31:e2:6f:77:91:66:12:61:3c:
1c:03:9f:8c:ef:25:c6:9a:76:89:74:31:a3:17:71:
8e:e6:72:5c:32:54:72:9a:9b:0b:79:af:8c:78:db:
a0:13:6d:03:cc:68:56:8d:15:b8:18:b9:54:02:47:
45:f6:55:ad:05:f4:78:0a:55:c6:8e:68:72:d6:7a:
ce:33:c5:8e:50:6d:89:52:d1:00:d3:e6:17:21:de:
56:6f:21:08:85:5c:4c:f4:61:cc:1d:11:8a:c4:28:
2c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7E:D1:FA:FC:05:E8:FD:DA:E0:EE:4A:EC:90:3D:E6:9C:E4:AD:C9
X509v3 Authority Key Identifier:
keyid:20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:eb:52:ea:29:c5:b2:80:6a:73:4e:78:5b:62:cb:8d:af:99:
36:22:97:74:c7:fc:70:f3:bf:22:7d:8b:c4:49:ef:da:9b:13:
4d:9f:4a:04:8f:51:84:18:f9:f2:3a:95:ba:ac:b6:d7:0f:93:
d0:11:a3:0b:b9:7f:25:64:c5:9c:f1:c0:22:bf:14:af:fd:00:
26:a9:59:2f:73:c9:c3:1d:27:14:8c:17:52:73:77:a3:b6:cd:
40:bb:b0:ee:ff:54:29:2f:27:cc:55:e2:d4:30:ac:dd:e4:eb:
bc:9d:76:ec:3c:04:fd:3d:2b:c8:45:43:1c:f8:b3:8e:cb:0d:
f2:f1:8c:60:e2:ec:26:bf:49:35:d3:09:7e:14:59:15:3b:29:
02:2e:3d:b6:4e:bf:7e:b0:0f:31:1d:01:1e:71:37:b3:84:20:
18:cf:e6:40:6e:97:4c:85:76:5b:f0:1a:7a:a8:24:51:9d:50:
a9:dc:7c:50:3a:14:07:78:ed:b9:02:85:5a:df:44:68:17:2b:
d9:11:de:b6:44:f0:a8:34:67:b5:db:f2:35:e7:e2:d8:c9:dd:
9a:3f:73:dc:d0:88:31:96:4c:31:01:3a:c8:5a:f1:5b:22:05:
07:14:71:a1:5a:0f:13:78:6e:0f:1f:df:73:16:7f:8e:ca:40:
6d:3a:41:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:03:22 2025 by rpki-client