Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: oDCHZU64YyJJvq7v8Arg/+V+MMecvfWbdsvq5NCjdbw=
Subject key identifier: BD:C1:E9:A3:7E:4A:42:3C:A3:3B:E5:F2:FD:42:EC:5A:2A:77:9F:29
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0194BA845C3CAAE4DBDBBFBCB5F4B98D7F87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 1328
Signing time: Fri 31 Jan 2025 04:00:23 +0000
Manifest this update: Fri 31 Jan 2025 04:00:23 +0000
Manifest next update: Sat 01 Feb 2025 04:00:23 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: URS3Aa3uTQmMv4h6ZG+RKLnpGdy/LoMB4hZDXCXYbsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:5c:3c:aa:e4:db:db:bf:bc:b5:f4:b9:8d:7f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Jan 31 04:00:23 2025 GMT
Not After : Feb 1 04:00:23 2025 GMT
Subject: CN=bdc1e9a37e4a423ca33be5f2fd42ec5a2a779f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ba:1a:9c:77:de:7d:b2:d7:83:26:d2:99:0d:
ff:9d:43:ec:ec:e9:be:6d:7d:26:4d:30:22:81:17:
15:a8:84:b0:ea:5f:cd:cf:65:a7:c0:b0:4a:6b:f6:
6b:01:8c:de:2a:5b:bf:6a:7b:b6:56:bc:0e:48:c7:
3b:d0:d0:2d:5b:a2:f8:c8:93:5f:cc:4a:6d:7a:54:
bd:e8:b6:87:15:a4:04:cc:67:a3:c8:c9:c2:18:a7:
aa:d7:af:a4:9c:20:be:b6:ab:83:94:5d:c5:42:7f:
e2:cf:20:e9:34:fc:d3:f3:4d:33:ec:c8:4b:59:ab:
94:68:7d:e4:f3:a7:9a:9b:d4:f2:37:7c:fb:f6:08:
30:17:81:c4:6c:3c:7d:48:0a:72:f4:6d:89:8e:68:
3d:02:8d:84:91:77:dd:4f:a1:38:2f:1f:37:49:d4:
d8:94:f9:9b:9a:b5:f1:60:1b:39:0b:57:52:0f:f6:
47:96:cb:95:c1:1f:9a:11:3d:4c:4e:32:20:ea:2a:
8b:e8:f1:ce:1a:98:b0:5a:66:34:43:35:4d:d1:6b:
2e:8c:bd:1c:1a:d9:95:d6:44:d3:a5:6b:ba:6c:70:
3e:55:1f:e4:7b:d9:6a:97:7a:98:55:45:9a:72:a0:
aa:52:98:d9:ae:ec:db:5c:85:31:80:0a:20:ff:3c:
61:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C1:E9:A3:7E:4A:42:3C:A3:3B:E5:F2:FD:42:EC:5A:2A:77:9F:29
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:b0:70:75:08:72:a5:3f:9b:e0:b9:dc:cd:13:ab:ab:b6:18:
5f:95:e5:24:29:dc:a8:a5:fd:d8:4c:ef:86:38:e1:6e:0a:a8:
e9:2e:7b:f5:97:aa:26:2c:54:c1:2d:3e:47:6d:65:92:ab:13:
ca:50:c1:1b:9c:44:7a:1f:b4:25:cd:d0:e2:09:f8:ba:d5:7f:
1a:1e:3d:c6:18:f8:43:07:fa:4d:a7:34:10:6d:1a:bf:21:d5:
16:48:f7:10:05:96:4d:17:b1:97:0d:3c:0f:ec:48:01:c7:72:
a1:8a:18:03:5b:b2:37:52:6c:ac:25:74:f9:d7:ce:51:ac:8f:
9b:0f:d8:d5:f1:40:01:e4:7a:2c:f2:0e:aa:70:64:ed:4b:fb:
04:1d:3a:af:e7:d1:97:ef:ef:d9:48:f2:65:8d:d6:08:e0:35:
07:bf:7f:46:b7:5a:14:2a:47:bf:25:37:e9:bb:16:65:1d:f3:
9f:85:49:b2:01:ef:5d:c9:25:b2:65:9f:bf:d9:c8:33:5b:79:
45:9e:f8:d5:a7:46:a4:de:73:fc:00:e3:53:c4:dd:2a:16:86:
09:0e:35:d1:5c:a3:75:94:90:8e:26:c3:19:9e:b6:8a:e8:3e:
0b:13:c7:a7:5c:e8:df:84:4d:f8:37:80:4b:70:cb:46:3f:bb:
00:09:3f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:23 2025 by rpki-client on console-fra.rpki-client.org