Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json)
Hash identifier: sNMbkXZeePKakyR0IKY1YLr48RlZzYjayvotT7B654U=
Subject key identifier: 08:49:51:18:A4:D8:05:E8:91:74:24:6B:CB:09:6C:6B:B0:92:ED:14
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 0194BB96D40D09CE08000F0E23DFEA1FA2B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
Manifest number: 10AC
Signing time: Fri 31 Jan 2025 09:00:11 +0000
Manifest this update: Fri 31 Jan 2025 09:00:11 +0000
Manifest next update: Sat 01 Feb 2025 09:00:11 +0000
Files and hashes: 1: AbAz97rI6RXbeaGg0ju1UGvv4xM.roa (hash: 6SJubAUNhK59Bg5EEa587Nx4giyrDXi2DFXXzhtFznQ=)
2: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: OLd5flE5ZF/5toara6VQ/U8KyeKnfwDnDtwK4+YB78A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:96:d4:0d:09:ce:08:00:0f:0e:23:df:ea:1f:a2:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Jan 31 09:00:11 2025 GMT
Not After : Feb 1 09:00:11 2025 GMT
Subject: CN=08495118a4d805e89174246bcb096c6bb092ed14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0d:8e:63:3e:5b:4d:54:6f:4c:c0:49:91:92:
02:ae:c2:0f:99:17:3f:f0:90:d1:30:7b:0c:7f:2d:
64:be:c2:5f:8f:63:04:d2:eb:d2:56:5b:5a:f3:1f:
ce:99:f9:95:d1:de:e6:87:be:68:0c:5c:42:b4:7f:
21:ae:3c:e0:98:30:59:2b:89:dd:4b:d8:f3:6b:10:
a0:fd:4a:d5:f1:1d:01:77:d9:01:a4:57:a0:bc:ad:
21:d0:61:13:a6:67:de:12:44:01:68:22:fd:de:35:
a5:1c:3c:9a:c1:c5:6c:de:74:dd:02:95:9d:aa:6a:
6c:c1:95:c8:d7:f8:46:43:f9:2e:26:bf:cc:2f:a6:
cc:a2:24:23:fa:dd:c0:01:c0:6b:d5:40:e1:54:f3:
90:ce:30:9f:f6:51:1c:bc:51:0b:c8:85:76:7f:73:
0a:ae:ff:7c:b1:4e:a8:a7:b0:d8:65:c7:d9:69:c6:
cd:7c:d8:ab:6d:63:61:ed:b9:cb:01:6b:e0:d7:47:
fd:43:03:95:06:bf:ee:f9:46:ad:c9:7a:4c:a2:1f:
ef:1b:36:c1:a5:d3:f4:c8:d5:48:b3:b0:5e:0e:7b:
5a:47:92:9f:ae:a5:45:4a:b2:68:56:e2:0c:23:89:
0f:46:99:ca:8e:db:e2:4c:d7:38:ac:67:98:cf:12:
bf:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:49:51:18:A4:D8:05:E8:91:74:24:6B:CB:09:6C:6B:B0:92:ED:14
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:ab:b0:b0:6c:74:f2:f6:b6:df:39:bb:cc:c6:a3:cf:f6:d0:
43:fc:cb:d7:c2:9f:cd:d7:2a:b7:a9:04:91:20:f6:84:ce:0b:
d5:35:51:38:52:c7:84:3f:ed:3f:42:9d:51:d0:76:c6:ca:95:
c8:2e:cc:42:d1:ed:d4:38:1b:c6:6c:a7:f4:49:6b:64:57:36:
78:35:70:5e:da:2b:5c:85:41:da:91:5a:e2:98:94:d7:4c:ec:
c9:04:a3:c9:1c:3e:35:ae:39:d2:69:75:9a:51:2a:4c:18:d0:
08:b2:97:2d:69:4d:d4:9c:1b:ab:20:9a:57:3b:4c:18:a1:12:
8f:64:9e:41:d0:67:89:46:ce:33:12:2d:48:a9:3e:63:79:7b:
11:32:42:d3:0e:82:56:1b:55:af:88:85:aa:fe:6f:4c:6a:14:
22:19:32:50:96:80:3e:16:7f:e8:89:c4:b0:ca:c6:e9:52:16:
de:fc:77:4c:c0:26:27:48:fb:c7:61:3d:a7:b3:61:a3:dc:ce:
04:ee:72:1e:fe:3c:8c:60:42:f9:59:ab:65:1b:7e:d7:fe:4d:
0a:77:4d:00:a4:ce:34:ea:90:4d:64:b9:0c:0c:55:88:d0:69:
35:a7:1c:fd:2b:a7:8b:7f:54:0c:70:e2:a1:b5:32:57:e4:87:
36:37:1b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:05 2025 by rpki-client on console-fra.rpki-client.org