Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
File: JOuXPcgi1CNuy911UB0mxD4chzk.mft (raw, json)
Hash identifier: 4PAmW7pJKuGsDDdso1/Aq6RxDHdP8VxDRb83KP2PmdI=
Subject key identifier: D0:55:A8:F2:B9:92:DE:11:B1:27:56:D8:C3:DE:CA:DC:6D:40:09:EC
Authority key identifier: 24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
Certificate issuer: /CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Certificate serial: 0194C387C4317DB94E9F6AEF76F64CE85A87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
Manifest number: 08D2
Signing time: Sat 01 Feb 2025 22:00:42 +0000
Manifest this update: Sat 01 Feb 2025 22:00:42 +0000
Manifest next update: Sun 02 Feb 2025 22:00:42 +0000
Files and hashes: 1: JOuXPcgi1CNuy911UB0mxD4chzk.crl (hash: YbA1DRATomM2AQTP5KkMPE/FAbIS+5MxyTfD4cQUW+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:c4:31:7d:b9:4e:9f:6a:ef:76:f6:4c:e8:5a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Validity
Not Before: Feb 1 22:00:42 2025 GMT
Not After : Feb 2 22:00:42 2025 GMT
Subject: CN=d055a8f2b992de11b12756d8c3decadc6d4009ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:05:5d:94:a2:d6:81:50:c7:9b:78:d7:15:ae:
02:18:0b:d2:0f:6b:27:8e:6b:58:1e:d8:35:54:51:
8b:55:52:f9:26:1b:3d:40:95:08:69:6f:5f:16:32:
db:68:c5:50:a9:43:81:bf:91:ab:75:31:88:09:47:
9d:24:f4:d2:35:e5:4e:a4:89:35:17:75:3f:65:93:
af:44:0b:15:97:98:4e:e8:25:07:3d:87:ed:ed:51:
b5:b9:ca:1c:a9:e4:e6:bc:27:0c:37:8c:04:4e:d7:
98:af:de:c4:70:2d:ae:05:9f:18:04:21:62:5f:90:
70:3e:0f:72:cf:ab:73:9c:13:4c:03:6f:38:89:2f:
db:20:ae:a3:fb:95:a7:f3:5d:cd:25:4b:03:93:d4:
96:17:97:24:0c:94:3f:22:25:02:ea:b0:cb:d5:ec:
f8:62:d4:48:73:87:3c:88:d3:30:41:08:3c:62:52:
da:b2:70:37:a2:6d:54:36:1a:bf:15:bc:29:68:fa:
ea:c7:36:5e:aa:c1:e8:e4:1f:09:91:46:71:ae:e0:
0f:70:de:c8:d2:7d:84:b0:8a:68:98:43:cc:d5:ed:
44:6f:36:a3:aa:cb:72:c1:03:ca:d0:44:cd:a6:2e:
0a:7f:7e:b6:d5:9b:d7:32:17:56:34:ac:d7:bb:2c:
58:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:55:A8:F2:B9:92:DE:11:B1:27:56:D8:C3:DE:CA:DC:6D:40:09:EC
X509v3 Authority Key Identifier:
keyid:24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:13:5c:08:d7:58:a7:c1:0c:b2:07:0c:af:66:12:71:1d:65:
52:20:74:6d:ef:46:d9:ac:fd:22:4e:21:06:4f:9e:62:b9:35:
e6:55:2c:3f:e9:40:84:73:04:2e:52:52:12:51:ae:c9:9c:c1:
1b:84:72:68:c9:6b:a2:c9:df:25:66:5b:33:ff:8a:bf:b8:23:
cf:63:5f:8d:b2:90:a7:60:8c:64:4c:12:fe:3e:cf:c8:f9:13:
cb:66:15:ec:60:4c:1b:e6:9a:38:31:ca:15:f8:2a:e2:3b:e2:
7f:4f:ea:bf:88:e4:8c:d2:c5:5a:28:42:01:93:f1:23:f1:35:
01:76:1f:31:fd:1b:aa:61:f4:68:6e:ca:f0:60:f1:d3:8d:74:
c4:b5:4b:2d:b5:3b:66:e1:91:5a:3d:8a:a4:d8:c0:b0:6a:16:
6c:e4:83:d1:b9:eb:00:f5:c5:69:f4:40:d5:b8:32:7f:f6:c1:
35:b9:e5:f5:87:c0:02:c6:e8:40:e4:6f:16:2e:36:30:74:5e:
0d:6f:01:38:99:1f:9d:2e:c5:98:dc:dc:60:82:94:89:80:21:
de:89:3b:82:d7:62:a5:e6:5c:19:33:9e:c2:83:f0:7e:f5:be:
44:70:91:45:ab:79:e0:ea:e9:59:e6:16:bf:99:8c:67:2b:ff:
5e:4a:18:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:47:05 2025 by rpki-client