Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
File: KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft (raw, json)
Hash identifier: d5DyGNgE4AHjW+tWafMjEjSocn71lb9W5kIeFzXxJ8w=
Subject key identifier: D2:07:03:18:25:97:B6:1D:6A:6D:78:D2:3C:B0:9D:59:EA:11:B6:9A
Authority key identifier: 2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
Certificate issuer: /CN=2a7148c461f5e77e107af73566a27e343561dc1d
Certificate serial: 019510C75EA7B6A1BB41AE435D77943ECB37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
Manifest number: 1453
Signing time: Sun 16 Feb 2025 22:00:56 +0000
Manifest this update: Sun 16 Feb 2025 22:00:56 +0000
Manifest next update: Mon 17 Feb 2025 22:00:56 +0000
Files and hashes: 1: KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl (hash: F7XWc893KTA8gft/MR+cmHOBkyXPZw2fb/PTQJCeqdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:5e:a7:b6:a1:bb:41:ae:43:5d:77:94:3e:cb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a7148c461f5e77e107af73566a27e343561dc1d
Validity
Not Before: Feb 16 22:00:56 2025 GMT
Not After : Feb 17 22:00:56 2025 GMT
Subject: CN=d20703182597b61d6a6d78d23cb09d59ea11b69a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8f:a3:89:cd:8c:44:d9:b7:e7:e7:8e:59:67:
60:6c:de:86:c3:08:f6:d8:0a:b2:dc:c6:68:4c:37:
b2:52:16:02:9f:60:d3:99:82:70:0f:cf:13:07:24:
2b:a7:f1:38:b5:c6:93:c4:99:96:7e:b6:47:c6:ea:
11:e6:52:8d:89:18:04:33:dc:fe:42:a4:37:84:f8:
e5:37:4f:79:96:73:60:1f:13:21:bd:93:78:62:0d:
f4:93:af:d4:5a:1f:01:cb:81:07:7f:f3:b1:6b:44:
96:d0:a2:30:17:6b:7c:fb:79:b8:51:83:06:c9:e4:
f9:f8:e8:e8:3a:db:88:77:12:c9:bb:ab:2a:91:9c:
7d:18:69:94:79:a4:07:d7:d8:74:68:06:d8:70:d3:
be:18:a5:21:58:a3:3b:f5:b0:2f:40:e6:a8:07:1c:
38:37:6f:5f:2e:1a:7d:c4:e6:54:f6:b1:26:68:b8:
67:53:c4:8a:01:9c:33:ec:c4:53:aa:05:a3:49:b8:
31:3c:56:3a:a5:ca:92:f1:bb:a1:33:fd:d2:5d:f0:
45:fc:0e:76:17:e4:72:4c:79:d2:f9:f9:27:c0:c0:
28:3f:a7:a9:6c:e5:34:47:d9:f8:7c:bc:73:e0:7b:
b0:e0:e3:27:f2:8a:ef:50:c1:da:aa:18:ec:b8:dc:
19:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:07:03:18:25:97:B6:1D:6A:6D:78:D2:3C:B0:9D:59:EA:11:B6:9A
X509v3 Authority Key Identifier:
keyid:2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:00:ea:be:dd:14:da:e3:3f:29:d3:09:95:a6:d2:94:a0:51:
d5:26:25:30:ca:f2:c0:78:0b:2a:b8:30:60:83:f6:4e:e7:3f:
91:17:de:f3:5b:d8:aa:54:ea:3e:d9:c1:8c:a0:9a:96:91:7b:
71:ed:c4:0f:cc:34:7f:61:e3:ca:60:c8:6c:b8:8c:c7:85:b2:
d7:6c:3f:1c:24:89:31:3c:1f:6f:cc:74:d6:6b:9c:f2:1c:2b:
86:36:2d:fb:4c:cc:29:d3:bb:5b:c3:d1:2a:9a:cf:d1:17:f9:
2e:f5:1c:5e:7b:21:bf:d0:18:7c:2e:c9:8a:ec:ea:92:d8:6e:
ad:ce:d1:a9:02:1d:cc:c0:ae:9a:a6:aa:60:b5:4b:0c:9b:74:
c4:4d:e4:41:10:53:3b:0a:4b:82:a8:ea:15:4b:bb:83:74:94:
d9:da:77:a5:37:05:b0:2d:7b:98:11:b7:91:1e:08:15:d1:5c:
17:c3:37:35:b6:84:ac:f4:e2:60:07:cc:7b:6f:26:e1:6e:ed:
88:cf:69:a7:85:0f:ee:96:de:22:38:c0:89:8a:d7:7b:e0:e7:
63:33:34:98:7d:de:4b:53:bc:f8:2b:52:29:7e:49:14:7c:cd:
55:bc:06:2b:92:1c:f1:53:25:1d:dc:e6:32:88:34:90:45:c8:
50:ff:a3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:59 2025 by rpki-client