Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: epcOLW6AcCboaHj2MEkJlgIc4o9QOJt9doRt7Df+zdY=
Subject key identifier: 76:D9:07:DC:E1:5F:B3:AC:2A:A7:49:EF:19:4F:56:BC:87:6E:5A:7B
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 0194BA845A2BBF47B2726419C9BCBA7AB044
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 0BD9
Signing time: Fri 31 Jan 2025 04:00:23 +0000
Manifest this update: Fri 31 Jan 2025 04:00:23 +0000
Manifest next update: Sat 01 Feb 2025 04:00:23 +0000
Files and hashes: 1: 8rSm2TYmCggVgedhJYf2d5mO9bY.roa (hash: u5F6NWnwd9MOKoxteUtWCw1+tPwzMsMfG5qFtnCO6pk=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: HGSr8AsTYznNej5sZLdsV5KfI+3iS3gcETxtrk54WbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:5a:2b:bf:47:b2:72:64:19:c9:bc:ba:7a:b0:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Jan 31 04:00:23 2025 GMT
Not After : Feb 1 04:00:23 2025 GMT
Subject: CN=76d907dce15fb3ac2aa749ef194f56bc876e5a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a1:20:b8:82:86:3c:6e:86:55:61:12:60:31:
b0:ad:72:93:4c:c7:14:b3:ff:c1:8e:ab:63:b3:66:
5f:dc:84:e5:52:d1:77:54:0c:88:cf:7c:1a:a6:2a:
ea:95:72:d4:73:ad:26:20:be:b5:b4:d0:21:09:4f:
71:d8:83:cd:a4:ce:d2:db:da:a9:fe:00:1c:8c:1e:
c4:33:23:69:ee:83:5b:04:5d:b8:83:d6:52:fe:cc:
a0:33:41:50:4b:64:64:b9:e3:67:56:e6:bb:b0:fd:
2d:55:8f:65:02:27:12:a9:57:04:21:1c:b9:14:a8:
b3:58:8f:90:38:f1:3c:a9:a1:d6:b8:10:2c:3a:b7:
55:4b:e9:3d:c6:01:3f:44:bf:a2:44:17:71:ce:3a:
1a:b3:9e:7a:e0:a0:18:6f:33:d7:49:d3:d4:90:59:
de:9b:35:33:3c:56:94:97:f9:6c:b9:16:1d:74:96:
17:ec:40:6b:7a:89:b6:b2:c9:1e:c6:6e:88:3e:ea:
7f:52:fa:b6:4d:7c:2a:87:d7:be:d5:2e:46:ec:bf:
ee:b0:86:60:5f:33:9c:b8:06:af:0b:b5:16:0a:42:
59:04:e3:41:db:96:3e:a3:c9:01:d5:24:81:b2:10:
44:d3:e2:b8:fd:2f:c9:6b:87:64:2e:8f:c0:a2:9a:
6b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D9:07:DC:E1:5F:B3:AC:2A:A7:49:EF:19:4F:56:BC:87:6E:5A:7B
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:38:34:7a:4c:9f:f3:c7:a4:48:21:29:c2:42:a3:33:da:60:
3f:04:95:ed:76:3e:b3:ab:79:f1:56:3e:fb:1f:a6:18:19:51:
2f:98:5d:fa:ea:29:5c:64:3c:79:c6:95:47:8f:21:f4:66:dd:
8a:62:32:37:0e:ec:1b:5f:3a:89:76:71:33:b2:f7:13:06:78:
f2:6f:aa:af:a8:03:ae:76:ba:58:f4:26:5a:7f:0f:f5:51:a0:
4f:73:ca:d5:ec:a0:3c:48:4b:c9:a9:8f:56:09:49:73:3f:44:
1e:a6:0a:d6:4a:ff:d2:4c:9c:79:37:df:81:cd:5a:e5:7e:f8:
47:80:5d:ce:e3:e0:65:4c:9c:22:e6:eb:28:cc:5d:8a:90:d6:
be:0f:fb:3c:28:e9:35:e9:6a:c0:bf:3c:06:d6:3d:80:5c:b4:
07:29:ee:33:b5:48:e5:4a:3c:d0:13:9f:e3:ab:fd:93:df:46:
47:2c:66:84:20:bc:f5:bf:1f:7d:a8:45:0e:e0:93:71:ab:82:
23:01:84:5a:59:87:2f:c1:25:d3:59:ac:54:e7:4e:d4:3b:ba:
58:76:b7:d3:0a:6d:85:d8:17:b2:0f:69:36:53:89:cb:3c:ae:
56:f3:d3:da:20:2f:a4:0f:c2:0f:82:6e:4e:67:53:db:94:89:
9e:ed:37:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:27:31 2025 by rpki-client on console-fra.rpki-client.org