Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
File: KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft (raw, json)
Hash identifier: QsMSzC0UKtXxZ7qImctDwLYM99w2s3J/OrHeh/ljtMQ=
Subject key identifier: C6:7E:50:0A:2A:38:40:64:8E:CA:18:C5:D7:E0:2A:D0:F4:CD:18:D5
Authority key identifier: 2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
Certificate issuer: /CN=2aa380e230cb334361b4861e2f694124387f8529
Certificate serial: 0194C38793822D6CF48A98DAEB0AE65A1092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
Manifest number: 142B
Signing time: Sat 01 Feb 2025 22:00:29 +0000
Manifest this update: Sat 01 Feb 2025 22:00:29 +0000
Manifest next update: Sun 02 Feb 2025 22:00:29 +0000
Files and hashes: 1: KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl (hash: pD9D+DTjVN+IW5vFz84YBsZhJ2JXJVtM5a0uzGDxJKU=)
2: SjvSMbvX_pvw3i1Pn6Bx1TTyu6U.roa (hash: kgWKItzA9z25TXtV7XlZgfoMV6KRvWKz0GsOPfm6isI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:93:82:2d:6c:f4:8a:98:da:eb:0a:e6:5a:10:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa380e230cb334361b4861e2f694124387f8529
Validity
Not Before: Feb 1 22:00:29 2025 GMT
Not After : Feb 2 22:00:29 2025 GMT
Subject: CN=c67e500a2a3840648eca18c5d7e02ad0f4cd18d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1c:4b:32:f0:0f:22:bd:e5:ea:a7:ba:2d:94:
f2:e9:95:42:8f:65:4d:72:2d:58:b6:8b:1d:2b:ab:
7f:e0:38:10:69:3e:d1:55:9d:4e:2f:83:c7:2b:c7:
4c:ed:89:c6:71:b0:90:8e:f1:5a:46:8a:29:36:44:
f8:25:14:c0:d8:58:28:ae:02:84:39:8d:97:fb:91:
4d:fb:d7:91:83:69:16:de:60:1c:f6:46:6f:db:94:
9c:38:78:50:6f:be:f0:fc:c1:f5:11:c0:e3:1a:00:
ae:35:21:74:36:aa:0f:5e:58:23:88:b0:3c:8b:a9:
68:a1:fb:71:cc:74:76:b9:d6:89:a3:9d:d0:37:8d:
d5:2e:a8:26:1d:43:79:71:04:d5:1a:60:4e:f2:07:
16:fa:c6:6f:17:a9:54:e4:21:85:0d:00:6a:47:88:
0c:8e:02:85:02:a5:20:d6:7e:7e:e2:8a:0b:53:f7:
3d:3b:f1:7f:0d:ab:c6:f7:cc:7b:45:13:84:07:fb:
30:f1:66:20:eb:60:6f:6e:b5:ee:0d:f5:63:d1:11:
0c:93:ee:39:84:49:92:ee:42:6b:38:25:9a:cd:9b:
74:89:52:a1:99:d6:31:c6:0f:36:c6:e2:91:27:b5:
41:5f:a5:2a:86:0c:96:f2:36:46:d6:f0:68:d2:ec:
41:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7E:50:0A:2A:38:40:64:8E:CA:18:C5:D7:E0:2A:D0:F4:CD:18:D5
X509v3 Authority Key Identifier:
keyid:2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:f9:b7:a9:10:39:e4:a4:37:1a:8f:4a:72:b1:91:4c:11:3c:
fb:1b:9b:38:df:a5:80:c6:8e:ec:a5:93:66:ab:87:e5:70:a8:
3e:0b:ad:87:70:aa:10:cf:62:99:d7:f1:72:e9:e6:af:60:85:
fa:12:98:c9:51:90:30:c4:9f:7f:cd:9a:25:ae:c9:e7:7e:bd:
7f:3c:1b:42:02:80:10:4a:5a:94:1d:b8:3d:31:e8:6a:d4:aa:
3c:29:84:a2:13:db:96:ed:c5:62:f2:80:92:48:ce:ae:9e:8d:
96:72:a5:9c:43:55:e6:90:fc:96:07:e5:55:5b:e7:89:30:7c:
1a:45:9b:74:40:9a:75:a4:6a:0d:b1:62:65:50:20:3c:fa:43:
03:b2:32:5e:9b:5f:80:1f:7c:b2:46:42:46:86:0e:7b:65:84:
51:3a:2e:30:ab:43:7d:d3:ab:46:26:75:85:92:da:73:09:3c:
aa:38:e1:22:2e:44:3e:c7:03:cd:c1:87:cb:7a:94:10:32:47:
93:7e:54:68:34:52:40:75:aa:e0:11:7f:0e:0c:d3:0e:1e:5d:
e2:cf:c1:32:21:c0:21:c6:06:b7:5f:91:0e:0e:e0:0f:c0:b6:
9c:31:72:e5:15:3e:c9:d6:c2:fd:40:db:f0:af:cf:67:ef:8e:
79:f5:36:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:07:57 2025 by rpki-client