Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier: cki2/dXOUv7y1x4ZWbieVPgj61/0rru1CDnYOOFsCqY=
Subject key identifier: D9:6E:5A:1E:24:DF:5C:BD:BB:85:FD:3E:02:82:E4:9A:00:34:4B:D9
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial: 0194BA84AE9B4FCE61DA98EE9E92185DDFD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number: 137E
Signing time: Fri 31 Jan 2025 04:00:45 +0000
Manifest this update: Fri 31 Jan 2025 04:00:45 +0000
Manifest next update: Sat 01 Feb 2025 04:00:45 +0000
Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: Vfo+tbySvG97DObKCr8mwbcS1AuAt6NtB/mXiFKZdwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:ae:9b:4f:ce:61:da:98:ee:9e:92:18:5d:df:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Validity
Not Before: Jan 31 04:00:45 2025 GMT
Not After : Feb 1 04:00:45 2025 GMT
Subject: CN=d96e5a1e24df5cbdbb85fd3e0282e49a00344bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:09:e7:0e:22:3f:7d:a4:7a:25:d9:47:55:
97:a2:20:1d:4c:6d:ed:72:5b:bb:d1:01:c7:26:0c:
65:48:c5:9a:a3:ab:55:1d:eb:8d:aa:d5:ce:a8:eb:
43:d8:a6:11:29:ef:95:4c:e4:e2:aa:af:73:b2:1c:
dd:d5:4b:de:cb:57:01:ba:69:d4:3d:73:1e:bb:ad:
d2:97:0d:87:1d:29:eb:61:1a:56:4d:5a:61:b7:96:
09:4d:65:9f:9e:44:aa:e4:ae:be:29:e3:7e:29:aa:
f3:a8:ad:5f:1b:b3:31:94:16:9f:03:2a:0b:70:cf:
df:14:81:2d:24:b5:72:a4:52:97:23:e7:b8:ab:5a:
18:8d:64:43:02:6a:a6:86:8c:72:b5:62:35:f9:00:
61:b0:b5:50:8e:4a:54:11:bd:29:aa:63:0c:27:33:
1e:94:c6:99:0f:c0:2d:ec:15:0a:d4:98:7c:a0:92:
ca:96:89:53:fe:4e:1a:cf:d2:96:a3:b7:79:d2:83:
1b:03:fa:2e:6f:e8:6e:d9:b7:8c:bc:a3:f4:ee:0d:
7d:35:19:e8:f5:4d:f2:63:5d:df:d7:8b:d6:93:2b:
64:bb:da:55:8e:9c:a3:8f:48:48:13:07:77:c6:ca:
c2:58:a1:e4:63:08:9c:21:47:43:3e:03:04:f4:f6:
d4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6E:5A:1E:24:DF:5C:BD:BB:85:FD:3E:02:82:E4:9A:00:34:4B:D9
X509v3 Authority Key Identifier:
keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:20:c9:ba:98:35:45:d4:01:50:c0:88:d9:5c:e2:db:62:45:
62:37:00:07:33:b5:2d:27:c8:0e:01:eb:a9:72:de:84:e9:0d:
95:d8:f6:49:af:1d:e5:d6:f9:88:eb:74:54:b2:c4:65:9c:df:
10:9f:8a:38:f0:75:8f:26:a8:19:43:4a:4e:52:e0:d1:39:a8:
dc:ed:01:d0:7e:be:69:cb:24:23:0c:07:91:6e:85:0e:03:21:
ee:55:b5:db:bf:c3:69:1d:42:f5:2f:f0:77:d1:ad:ec:b0:4f:
6b:4e:5f:3e:25:c3:b0:c9:7d:54:80:aa:d3:db:5a:07:c1:7b:
d7:2f:ae:bf:55:ff:aa:c5:17:b3:b8:ca:43:00:d2:76:5f:24:
85:2c:ed:b7:0e:f3:ea:94:cf:1b:1e:06:72:2b:3a:69:6f:ff:
27:06:7b:5f:c7:91:d5:96:30:b1:9f:c2:9e:4f:be:dc:f2:6f:
e0:84:5b:00:b7:96:e5:46:9d:9e:28:eb:3a:4e:3f:54:5e:41:
a4:23:81:97:f3:a1:23:08:ee:c1:38:1f:b3:f0:28:e9:a8:6d:
b8:7d:c8:21:92:2c:a5:81:b7:01:b4:50:9d:46:c8:38:f7:0d:
1b:48:eb:3f:b5:a4:b0:ec:93:8e:85:ea:47:52:23:86:2a:97:
ed:60:4a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:33:42 2025 by rpki-client on console-fra.rpki-client.org