Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: nxtIICn0NBjiR2NMDAcq+Q7sJCbhDiHfa5S3LGS2Nmc=
Subject key identifier: 37:DF:18:6C:70:5B:73:6A:9C:75:E1:20:2C:8B:1D:07:49:C1:7C:20
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 019512102CA149CA0E34B486828AF5771ACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 1454
Signing time: Mon 17 Feb 2025 04:00:04 +0000
Manifest this update: Mon 17 Feb 2025 04:00:04 +0000
Manifest next update: Tue 18 Feb 2025 04:00:04 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: gxy0+obJGBkS7KmhRKQ3TSChycLPSkSzCc6mxPZgrQw=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:2c:a1:49:ca:0e:34:b4:86:82:8a:f5:77:1a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Feb 17 04:00:04 2025 GMT
Not After : Feb 18 04:00:04 2025 GMT
Subject: CN=37df186c705b736a9c75e1202c8b1d0749c17c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cb:68:65:80:9e:9d:c4:41:d4:86:1f:ca:01:
5a:5c:e6:81:92:af:40:3f:02:71:9d:04:ae:98:d8:
c5:de:6a:12:fe:40:de:61:12:47:3e:af:1b:fd:fa:
d5:97:e6:ba:9f:6e:f3:a6:d7:7b:b4:8f:2b:b5:53:
f9:f9:3f:84:e3:c7:4a:75:bb:b2:b9:07:0e:05:08:
c0:ea:49:ff:da:40:5c:ae:f3:8f:a9:7e:48:eb:fb:
d1:7f:f2:79:86:76:38:ed:7d:6a:50:24:6f:b9:e5:
95:95:8a:e1:4e:41:32:da:b1:74:8a:8b:6f:4a:e2:
ea:99:ca:a1:50:e1:ab:f4:29:49:8a:ab:ef:cf:70:
d2:0d:7b:0a:9d:5e:fa:ea:07:2b:c2:d2:8a:4d:19:
19:cb:bd:96:74:d0:94:76:cb:ba:fd:2a:03:ee:49:
f9:a4:29:43:8e:3d:c0:bf:b7:d8:c3:c5:ce:95:59:
64:70:6c:d8:45:2f:48:7c:9f:91:4f:b3:96:0b:f4:
7a:fe:14:3a:6f:56:e0:32:24:00:46:f8:59:2f:bb:
22:22:b0:fe:7b:4a:39:4a:93:24:37:c7:df:fc:50:
d1:80:f7:57:b7:d1:73:c7:92:1b:93:3c:39:35:c6:
5d:9e:fe:32:1f:6f:d8:d8:38:47:2c:3a:f1:9f:21:
74:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DF:18:6C:70:5B:73:6A:9C:75:E1:20:2C:8B:1D:07:49:C1:7C:20
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:98:d4:52:17:9c:70:21:d2:0d:62:0d:2f:0a:83:be:14:ea:
2f:05:a9:6b:33:15:1b:f5:4a:65:f1:75:31:89:c1:aa:d0:71:
fc:03:f5:b4:af:6e:5c:43:1d:16:53:94:c1:b7:43:21:91:e1:
72:82:50:25:fb:f7:6f:8e:2c:06:bf:a3:53:08:19:76:6a:6d:
a6:95:69:f7:0a:d1:f2:73:e3:86:e4:e1:15:10:79:db:d7:8d:
51:11:e5:3d:65:ea:59:60:f4:07:8c:95:88:c2:23:8d:a4:a6:
d1:ea:49:5f:db:f6:14:8d:19:57:05:95:01:e0:c5:2d:05:b1:
33:ad:18:3e:67:19:26:06:0c:5d:66:eb:a4:d2:c8:c6:3c:9b:
e6:ac:a5:0b:b8:30:5e:2b:77:d7:d9:37:2d:63:33:ee:af:b1:
46:86:d7:1b:15:3c:4e:63:fb:9f:db:34:53:6a:1d:74:a8:1e:
82:09:de:7f:8c:49:43:9f:e7:65:2f:62:da:33:3d:a5:75:c9:
0b:62:c8:69:33:0a:f8:be:97:01:7e:1f:31:5b:79:98:b3:fe:
cb:46:3e:b7:a1:05:60:87:9c:7a:80:48:6a:6c:8d:91:1a:7e:
dd:16:23:07:d7:03:60:02:8f:05:59:e0:53:45:de:7a:68:70:
24:13:e3:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:16 2025 by rpki-client