Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: zoxtYH2gs2SM4HNSOO4Ro6Ny2eIIGTzOacf/wyK5TWU=
Subject key identifier: E9:2E:A3:AC:FB:9D:D7:8F:83:F5:33:31:A9:14:9A:28:91:FB:17:93
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 0194BB970AC333AF3A459E65F786ABB41BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 09:00:25 +0000
Manifest this update: Fri 31 Jan 2025 09:00:25 +0000
Manifest next update: Sat 01 Feb 2025 09:00:25 +0000
Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: fTnWs2rnFhM6QyW+eHB+BEGk6WkjQgZnGfErX4dtV3c=)
2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:0a:c3:33:af:3a:45:9e:65:f7:86:ab:b4:1b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Jan 31 09:00:25 2025 GMT
Not After : Feb 1 09:00:25 2025 GMT
Subject: CN=e92ea3acfb9dd78f83f53331a9149a2891fb1793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:23:61:4c:ed:8c:d7:ff:c6:b4:e2:a0:08:16:
5d:43:6a:d6:e6:ce:7a:5e:d9:a8:be:7d:05:a2:7d:
3a:22:bc:6c:b1:d6:25:ba:e5:46:6d:2b:7b:3b:5f:
84:6c:e9:cf:4b:55:5e:07:58:d1:53:95:75:75:e6:
ff:d8:be:af:fb:5a:7b:68:4b:b4:ef:69:40:70:0f:
2e:f9:b5:f8:40:07:7f:50:de:d8:7b:e4:47:e7:6f:
f5:e0:71:c4:4e:9b:48:e1:21:dc:e6:b4:d9:e4:7e:
04:de:4d:59:40:63:03:44:e5:aa:08:b5:09:64:df:
b9:8b:c3:02:fe:1e:69:1f:1e:ee:0d:94:5d:21:ca:
f1:69:67:f4:3f:b6:48:9a:35:09:0c:94:28:ff:99:
20:7b:19:3b:74:df:d5:1a:ff:09:8b:56:37:a4:38:
8a:b7:60:26:fc:e9:0d:53:c1:a2:92:8b:9b:2a:ac:
2b:c1:65:a6:83:22:f7:5c:f0:64:0b:55:99:75:0a:
06:be:60:83:88:ae:9e:bb:e8:a4:ac:ac:f2:06:b8:
f8:47:04:34:e7:10:c0:fd:39:9b:f0:e0:7a:ae:97:
7e:8a:0e:d0:b3:2a:ce:54:ac:17:22:4c:06:8e:15:
36:f9:17:51:89:2a:d2:70:6f:20:9b:4a:2c:3b:93:
ac:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2E:A3:AC:FB:9D:D7:8F:83:F5:33:31:A9:14:9A:28:91:FB:17:93
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:1e:73:28:9c:df:3e:bc:18:83:2d:bc:7f:77:ae:e9:ef:7a:
0d:d7:be:0a:55:76:f6:bf:a3:26:0d:8d:71:75:30:fb:ad:d0:
4c:d6:9e:83:99:12:b9:35:1c:31:27:29:e7:2b:53:44:87:05:
12:41:52:f0:7b:fe:69:07:b8:81:29:03:f7:46:79:19:d4:e7:
41:f3:20:47:07:28:70:4b:e4:4d:90:99:45:2b:af:fb:3e:f1:
23:ab:99:fe:b9:38:7a:cd:5b:90:26:e5:9b:d2:e3:cb:15:e6:
52:b9:56:a3:d1:c5:17:e9:84:f5:d7:26:8c:ae:16:00:f5:09:
ed:37:18:a5:ac:dc:97:9c:26:f0:ef:b5:e9:28:a5:0e:59:4d:
f4:43:8d:c0:4c:c1:69:6e:ac:ac:bc:a6:df:3b:13:7b:6a:d4:
ad:7e:63:e0:60:92:fb:ca:18:08:b4:63:37:b1:39:9a:bc:6f:
1a:14:96:7c:a3:46:b9:85:50:79:4c:35:33:37:4d:bf:2e:11:
5e:23:e4:f1:6f:f8:56:a3:3a:c5:dc:57:e8:29:bf:53:72:21:
db:bb:63:bd:f7:ab:7b:c5:49:0e:a2:5e:10:ba:3e:1c:d2:f8:
ed:7c:f9:a5:f4:5b:6a:01:28:e1:ab:7c:87:36:db:d0:ec:a6:
ae:03:16:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:32:22 2025 by rpki-client on console-fra.rpki-client.org