Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
File: xPLYuhsZIR-p-cDbVRVFEzECzLs.mft (raw, json)
Hash identifier: jafW6+86+CyT4BRsbu8jIy+rM2DPbh+2qskNfhGiqQA=
Subject key identifier: 13:A7:99:48:4A:76:2A:EA:1F:75:FE:37:67:82:21:71:91:3B:62:6E
Authority key identifier: C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
Certificate issuer: /CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Certificate serial: 0194BA84B7ACA3066115F3CBEDF77A3B6AD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
Manifest number: 12B3
Signing time: Fri 31 Jan 2025 04:00:47 +0000
Manifest this update: Fri 31 Jan 2025 04:00:47 +0000
Manifest next update: Sat 01 Feb 2025 04:00:47 +0000
Files and hashes: 1: 1-p8tFLtNjdsD9js8JfdcaeXLbes.roa (hash: SGKnAN0Wd2NDfYevBBpaQsdqn+ofJ6GFHE9Wy8o0+BA=)
2: xPLYuhsZIR-p-cDbVRVFEzECzLs.crl (hash: yIcKBIXbxTW4io64DivaISYXoBtKK+3vI8zE8KWlsnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:b7:ac:a3:06:61:15:f3:cb:ed:f7:7a:3b:6a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Validity
Not Before: Jan 31 04:00:47 2025 GMT
Not After : Feb 1 04:00:47 2025 GMT
Subject: CN=13a799484a762aea1f75fe3767822171913b626e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:db:2c:cb:8e:63:f7:81:9e:cd:53:c2:d0:5d:
27:64:dd:f9:eb:b2:9d:39:62:73:a0:4b:88:45:f9:
d6:57:97:58:c4:2d:be:8a:55:3b:98:12:30:5b:ff:
25:97:e8:e5:8c:79:42:ff:d3:8a:ab:b2:2b:33:aa:
08:32:c6:65:57:17:8c:44:21:25:a5:5c:c3:17:60:
b8:78:96:31:2f:50:d6:27:c2:ca:89:79:98:a9:b2:
cf:46:ea:3f:ec:b8:eb:48:44:a8:df:67:73:2a:2c:
db:73:e3:2a:08:51:c1:2d:ab:de:65:41:64:b7:77:
fc:b7:cd:93:eb:24:5f:01:09:18:7e:71:81:91:48:
df:d3:0c:de:12:1f:05:81:1d:ef:86:19:fd:23:c2:
cb:e5:65:fa:de:f1:11:1a:dd:23:57:34:80:07:77:
75:6c:8b:96:b8:65:ff:55:84:c5:d4:ca:74:9e:6d:
6e:df:e7:eb:d0:6f:1c:2c:88:09:55:75:58:e9:0f:
fe:74:49:2a:9d:a1:d0:d2:11:4e:2c:97:ad:9d:a0:
a5:b1:0d:ee:1c:e8:f8:05:a1:e7:34:58:a1:11:56:
fe:b2:45:29:73:75:8f:db:af:40:00:ac:fd:87:d4:
b5:4c:ab:80:64:a2:ae:a7:15:93:8e:3e:63:65:03:
06:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A7:99:48:4A:76:2A:EA:1F:75:FE:37:67:82:21:71:91:3B:62:6E
X509v3 Authority Key Identifier:
keyid:C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:78:76:07:80:c0:d2:1b:fb:1a:ab:e3:3c:71:2f:64:1f:1d:
02:81:31:55:7d:d5:ec:79:0a:28:3f:44:49:32:f1:90:44:6b:
03:2a:a9:e4:fc:0e:10:f8:35:68:a4:9c:f7:5d:42:d4:a7:ec:
64:fa:f6:fc:fd:91:a0:f6:6d:f1:3d:a3:e7:b8:e5:d0:1f:52:
cd:a8:c5:df:ff:12:f5:b9:b8:6a:c2:e0:9f:5e:d9:7f:18:27:
5f:76:63:6c:6f:42:e5:c3:e2:a1:ec:aa:d5:87:18:12:8b:3a:
f0:ff:ea:0c:2f:0b:41:12:73:4d:66:a8:3c:f7:5f:cc:54:5e:
7e:2b:59:48:3e:5a:16:bb:69:2d:ba:fc:0e:c8:67:9c:3e:6b:
55:24:ac:b5:3e:19:86:97:af:de:cc:c0:1f:4d:34:7b:4b:79:
c4:9f:52:a2:d2:09:ea:15:51:6f:fe:f6:04:81:07:98:1f:22:
d4:3b:bd:13:8b:6a:ac:88:b9:f0:b9:b9:7e:19:6b:b1:d1:b0:
38:dd:37:ed:e8:10:d1:67:4f:41:57:31:b1:13:62:ae:7e:c1:
ca:90:6b:b3:d7:28:38:d0:29:3b:6d:82:32:96:37:01:a7:ef:
bd:c7:09:6a:2a:9c:28:82:3e:37:43:7b:41:f1:cc:60:fc:83:
f6:5f:77:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:30:16 2025 by rpki-client on console-fra.rpki-client.org