Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
File: qQ2awu8R1UaTddbebGv3IRKeO3E.mft (raw, json)
Hash identifier: XdASYe9RFoy6NXA5jdYh5/kIEPgo9gxksFKTZudvrxQ=
Subject key identifier: BB:E1:FB:EF:EF:69:8C:0D:B8:78:E8:37:30:E5:E6:89:34:0B:74:41
Authority key identifier: A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
Certificate issuer: /CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Certificate serial: 0194BAF289B66950C81D3F6E03A6A03BA788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
Manifest number: 1369
Signing time: Fri 31 Jan 2025 06:00:44 +0000
Manifest this update: Fri 31 Jan 2025 06:00:44 +0000
Manifest next update: Sat 01 Feb 2025 06:00:44 +0000
Files and hashes: 1: qQ2awu8R1UaTddbebGv3IRKeO3E.crl (hash: OeViLE4KSnpz69qDmMH/QzqfP+ar9I80ELfCUAoddGE=)
2: yuW5WVwgNaxBxObKx0w_CE3bdf0.roa (hash: bxzeDx/FJJDZscd0BPoaz8SHe0rmx/Qll6/QwchRolI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:89:b6:69:50:c8:1d:3f:6e:03:a6:a0:3b:a7:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Validity
Not Before: Jan 31 06:00:44 2025 GMT
Not After : Feb 1 06:00:44 2025 GMT
Subject: CN=bbe1fbefef698c0db878e83730e5e689340b7441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a5:5f:27:a5:11:b0:16:09:30:d4:6a:6b:f0:
ea:7e:ed:47:6c:0e:60:ba:fd:26:74:2a:23:21:e7:
aa:25:62:b5:fe:cc:3f:93:16:da:f7:5a:79:3f:80:
99:f9:3c:73:c5:9b:0f:2a:13:e6:23:0c:e6:f1:07:
40:8c:4d:cb:d6:f4:a0:68:5e:cd:3d:e5:f7:06:63:
cb:84:5c:38:8e:98:19:f3:e7:87:af:e9:35:95:7b:
93:a6:2f:5b:00:3e:ce:ec:2f:27:16:b6:be:1b:aa:
55:3a:c4:31:33:60:ba:83:35:38:45:5e:b7:a6:f0:
ad:96:08:41:d6:78:c1:13:a5:3f:52:9e:1d:45:a6:
5c:b9:95:74:e6:22:91:75:14:25:99:ea:b0:b5:08:
32:dd:b2:c5:80:bd:4c:ae:9f:84:c7:86:1b:52:82:
37:0a:8e:28:fd:f2:26:b3:7a:71:b7:fc:8e:73:0b:
b8:61:de:13:0f:2a:79:6a:2a:d7:94:55:10:33:e6:
83:57:ab:e6:3d:cb:f0:ab:3d:ae:05:e4:0e:74:91:
46:99:f0:25:af:f2:74:e2:59:7c:8c:d9:18:38:40:
fb:53:a1:df:d2:db:b5:08:8f:88:67:d6:e5:68:75:
85:26:f8:8c:a0:ea:aa:73:25:1a:12:42:7b:ec:b5:
87:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E1:FB:EF:EF:69:8C:0D:B8:78:E8:37:30:E5:E6:89:34:0B:74:41
X509v3 Authority Key Identifier:
keyid:A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:18:69:0b:68:8f:72:62:88:33:7a:76:97:8d:72:3c:2b:aa:
fc:ef:51:6b:45:ec:2b:8a:d7:9a:fd:cb:cf:1c:ea:c1:ec:24:
f0:f4:cf:69:60:1f:4e:12:63:d4:61:0b:b7:86:59:e1:99:81:
f6:78:d5:c2:61:35:60:45:92:95:53:d3:9f:19:40:d5:a3:e0:
c6:8f:74:01:1e:81:52:c6:9b:af:df:94:ee:0d:ae:9f:81:f1:
d3:76:06:0a:5a:59:83:08:de:57:a3:03:ef:3f:45:18:0b:43:
c8:32:6e:e4:fe:b5:fa:f2:f2:4a:3d:e9:f4:74:16:0a:af:1b:
03:d1:c1:0e:af:e7:cc:a3:b9:2d:0a:51:53:ac:4d:bf:6f:2e:
50:ce:d5:99:00:99:36:28:44:4f:89:ef:0d:d3:fd:59:ac:80:
b9:12:0b:13:75:11:46:a2:5c:04:73:f1:96:ca:96:38:d4:db:
e7:6a:58:9e:5a:4e:67:5d:9c:92:36:bd:29:42:d6:69:5c:11:
8b:3b:cb:9a:ea:96:ee:11:99:7c:fe:11:ed:f0:c8:89:3f:84:
61:5a:33:5d:df:b8:51:c7:7e:8d:34:fb:da:6c:29:3d:c5:e6:
11:29:f3:9d:4f:b1:c7:19:d5:5c:02:03:c7:42:b2:ab:eb:6d:
92:1d:a4:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:31:25 2025 by rpki-client on console-fra.rpki-client.org