Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: pIBUFy8TToKhafwpgz209Vodlmr3CoeG83YczFOZIhw=
Subject key identifier: 5E:44:A9:18:9C:32:7C:87:08:5E:C2:7A:08:29:D5:4C:D0:45:41:EB
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 0194BA842AB69815E94EDCD2F7882DC60639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 12B3
Signing time: Fri 31 Jan 2025 04:00:11 +0000
Manifest this update: Fri 31 Jan 2025 04:00:11 +0000
Manifest next update: Sat 01 Feb 2025 04:00:11 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: xSLJucxazkLml/dJckL/SiWx3xsyVtU45arGGn54xow=)
2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:2a:b6:98:15:e9:4e:dc:d2:f7:88:2d:c6:06:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Jan 31 04:00:11 2025 GMT
Not After : Feb 1 04:00:11 2025 GMT
Subject: CN=5e44a9189c327c87085ec27a0829d54cd04541eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:03:54:64:36:ae:93:7b:d5:ae:d2:8f:3a:87:
16:09:a9:cd:87:bb:c9:b4:94:46:8f:5a:1f:ee:7a:
de:03:3f:45:32:ac:c7:a5:11:51:6f:26:6f:0c:40:
8b:d0:64:b1:ab:c1:be:a9:3e:bf:b1:dc:e3:5e:19:
e5:60:13:ef:11:4b:2c:d4:f6:8f:eb:ea:bd:77:a0:
31:e6:ce:74:47:f6:22:0c:a8:85:e9:db:6d:fa:57:
7b:c7:d0:aa:94:33:59:52:3b:0f:08:c8:44:3b:82:
5d:45:b6:df:bf:5f:36:f4:02:47:0a:78:7e:a3:2f:
b6:b8:9b:a7:d5:0f:a2:73:72:72:ca:5d:1d:16:1a:
9a:8c:0d:ea:8f:46:fd:89:d8:b1:4f:56:f1:fe:d6:
51:ba:be:64:57:fd:16:c0:0c:98:43:03:da:53:b4:
77:f2:8b:6b:5e:9a:43:45:f3:49:ed:25:c8:4d:04:
df:eb:90:05:76:4d:17:48:af:04:33:27:cd:fb:0a:
9e:99:59:78:0a:46:55:87:99:22:6d:a3:c8:92:cd:
46:03:46:36:e5:25:d8:76:d3:cf:66:1d:1b:11:ae:
24:5d:0e:2c:50:38:db:3c:04:8c:46:9c:67:44:43:
95:1a:28:47:cd:d3:35:9b:01:48:db:d5:12:44:07:
4a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:44:A9:18:9C:32:7C:87:08:5E:C2:7A:08:29:D5:4C:D0:45:41:EB
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:39:67:ac:83:fa:65:72:0f:e0:0d:41:eb:91:5d:7d:e3:e4:
85:13:7e:1f:05:7d:be:b6:51:aa:8d:8d:04:db:ec:04:75:b4:
61:b8:51:9c:cb:56:20:ae:fb:a4:e2:5a:bd:da:28:08:d8:ab:
ff:40:84:6e:e3:b4:c4:af:d2:6f:49:a9:41:d7:c5:f0:44:2d:
8c:23:ee:ac:e2:ae:82:ff:83:83:d0:99:a8:54:57:db:82:50:
09:a0:80:d5:a4:f8:a3:d7:df:b2:d6:57:e4:8b:0f:52:a6:71:
49:f0:96:62:36:96:b4:ff:67:85:18:d9:bb:45:55:0d:4f:97:
d5:83:ce:35:56:2d:43:62:22:ea:ed:74:e9:fb:97:34:dd:a8:
14:45:80:b7:04:6a:8c:57:92:72:e8:e8:94:f7:95:3e:f9:39:
6b:b1:0d:76:20:a7:f9:0c:ff:67:30:cd:04:35:1e:2b:d9:31:
63:f8:bb:99:4c:70:c5:47:25:a2:8f:fe:12:0e:70:34:a6:99:
24:8f:8e:e2:10:ee:3c:0c:97:48:71:ca:2b:81:f1:fc:06:ba:
37:52:51:90:fe:2a:63:ed:66:ec:d1:1b:91:69:55:3b:db:70:
c8:e7:f7:7a:e4:5e:16:b9:94:49:85:61:f8:b6:95:5d:ca:c0:
f5:cd:18:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:26:18 2025 by rpki-client on console-fra.rpki-client.org