Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: qFVVmHniYJDmSZ4NXKzfAr3IjCMxQ//dx/XcDe4ydKk=
Subject key identifier: DE:6E:5A:34:11:F9:E6:07:E8:36:04:EC:14:F1:BF:5B:C8:E4:A3:AF
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 0194BA84B4B273EE40C3C9EDC0787FEC5F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 0746
Signing time: Fri 31 Jan 2025 04:00:46 +0000
Manifest this update: Fri 31 Jan 2025 04:00:46 +0000
Manifest next update: Sat 01 Feb 2025 04:00:46 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: dytluhELNBE2z9KimrbKg21Tmb1d6iotH9KQ69ScrCE=)
2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:b4:b2:73:ee:40:c3:c9:ed:c0:78:7f:ec:5f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Jan 31 04:00:46 2025 GMT
Not After : Feb 1 04:00:46 2025 GMT
Subject: CN=de6e5a3411f9e607e83604ec14f1bf5bc8e4a3af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:89:cd:6e:46:ea:bf:49:2e:24:44:6f:cf:
e5:a4:5e:d3:bc:69:27:e7:2f:df:2a:f4:83:5b:92:
13:0a:1c:03:e7:8d:6c:d7:16:f4:ca:c9:0a:27:bc:
7d:ee:1e:3d:70:a0:29:a9:ea:57:18:cf:64:c5:ab:
27:8d:e1:f2:e0:a9:c1:5e:e7:66:4f:a3:10:e5:44:
6b:de:0d:8e:db:aa:62:84:2d:d0:ed:ba:1c:02:76:
52:8a:c3:d5:b8:8d:45:15:56:38:23:0d:36:3c:d5:
69:a6:ba:84:a4:09:7d:e5:4e:86:0c:17:19:28:98:
61:0e:52:bb:33:64:57:27:82:08:e7:3b:a1:4b:36:
18:4d:dd:df:f3:43:da:26:6f:e6:c4:ad:0a:25:eb:
b9:92:61:2c:25:60:82:54:31:7c:68:7c:2f:5a:aa:
03:fa:04:c6:df:7e:fa:70:75:3f:6c:f4:94:be:e7:
dc:7d:59:eb:68:bc:3d:0b:35:54:e4:c3:ee:b4:a3:
64:00:63:54:a4:07:35:24:79:8c:3b:17:54:41:d2:
f3:5c:05:c6:27:b0:27:22:12:20:89:ea:7e:8a:38:
55:f1:36:80:fe:ac:65:aa:91:ea:48:4e:df:de:89:
3b:17:80:a0:e3:7a:d8:03:bc:87:8a:6f:d4:b5:5e:
90:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6E:5A:34:11:F9:E6:07:E8:36:04:EC:14:F1:BF:5B:C8:E4:A3:AF
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:f7:68:77:82:a2:63:10:34:a1:26:95:08:79:a6:35:96:38:
48:a5:4b:e4:23:5b:1f:10:9f:c6:29:ac:40:be:37:1c:77:08:
e3:00:e2:26:24:52:4b:a3:96:7c:7c:42:e8:b5:25:cc:03:c2:
1d:7c:4d:97:49:29:1c:c8:74:e5:5c:d6:23:31:84:d1:9b:a8:
b4:74:cc:6a:e1:20:fa:ef:0d:e9:6f:4d:aa:6b:26:7b:a3:ad:
a8:b2:bd:38:7b:9a:0e:1d:73:38:82:2f:8d:0d:17:66:5a:9a:
85:28:c5:0f:6f:2f:af:90:76:b8:22:48:73:2c:bd:8a:d3:a8:
bd:97:c6:30:8e:af:29:eb:f6:97:c8:5a:28:73:48:15:f7:ed:
97:ad:d5:07:28:b2:72:02:ec:d2:11:90:08:96:fc:4c:8b:e8:
84:7e:78:f0:7a:77:10:4e:5e:ee:b0:48:0a:aa:e9:78:b2:c9:
c0:ef:30:98:f2:8c:09:58:80:c3:75:90:8a:05:bc:74:bd:6a:
73:81:c0:65:e6:b3:1a:cf:2b:83:68:f2:a2:b0:2e:79:03:3d:
c0:d7:16:4b:9c:78:8f:85:4e:dd:d5:fd:1e:6e:68:28:16:cd:
fc:e5:06:3f:6d:14:d0:c0:87:7d:4d:b2:ad:cf:af:0e:78:39:
73:4e:d7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:58 2025 by rpki-client on console-fra.rpki-client.org