Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: am7CoOwZ5xmFyiB5lPpsIAFezWsX6jVVKX5UMzQsJSE=
Subject key identifier: 20:A5:6B:06:9B:A8:9F:6F:78:D4:90:1C:13:2F:37:DF:C1:71:B6:EA
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 0194BB5FE54751AA9A442E2F3E0A1A6925ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 08:00:11 +0000
Manifest this update: Fri 31 Jan 2025 08:00:11 +0000
Manifest next update: Sat 01 Feb 2025 08:00:11 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: CrGuHMuplQY+uVOwaj7Delj9ecsN7Q1MUagReakR5UM=)
2: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (hash: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:e5:47:51:aa:9a:44:2e:2f:3e:0a:1a:69:25:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Jan 31 08:00:11 2025 GMT
Not After : Feb 1 08:00:11 2025 GMT
Subject: CN=20a56b069ba89f6f78d4901c132f37dfc171b6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:1a:85:cf:ff:dc:89:0e:e1:16:8a:c2:a1:
94:dd:8e:31:93:d2:90:0c:71:43:fb:d6:0c:64:29:
b2:76:5a:e9:6a:8a:24:25:69:d3:30:17:06:cc:5a:
a5:cf:3c:f0:b2:cc:64:90:4b:9a:eb:25:c0:d9:3a:
45:32:94:3f:49:b4:ad:e6:b4:8e:3f:48:39:e9:f2:
ac:3d:83:a6:ce:5c:c7:cc:b7:ed:a1:61:58:5b:c0:
92:01:2b:6f:76:cf:f2:91:c7:f1:bf:15:9d:47:ae:
79:b7:7e:af:1d:25:78:60:68:3d:50:37:05:28:e4:
15:ff:63:7f:18:bf:6c:19:32:48:74:c9:65:4b:b6:
b9:f8:6a:4d:a7:8b:91:7d:6c:13:2f:04:c6:0f:4d:
52:4f:d6:35:ab:e1:a5:f7:1a:69:9e:fd:d5:b1:a4:
11:69:35:4d:ec:c6:37:df:a6:41:cb:c2:c3:73:70:
46:76:38:28:97:e4:d7:75:d6:c6:3e:85:e8:88:64:
e6:bd:6c:2c:14:e1:1e:09:de:91:bc:5b:e9:bf:1d:
c1:b2:3c:80:ad:98:53:5b:71:97:5e:e3:32:07:83:
30:47:23:bf:8a:07:9a:8f:5a:cd:4f:1a:68:4f:29:
9a:87:18:78:7d:3e:a0:f6:e0:2c:23:c5:25:b6:72:
2c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A5:6B:06:9B:A8:9F:6F:78:D4:90:1C:13:2F:37:DF:C1:71:B6:EA
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:a6:00:ba:63:53:cd:b8:79:27:a1:8a:93:95:49:38:4d:48:
8b:81:b9:7d:6f:86:75:d5:b9:b3:d2:73:f3:91:81:68:7f:84:
c3:06:6e:80:6e:41:9f:18:f6:3b:6f:d2:13:76:39:79:b8:9e:
22:64:d2:23:50:55:25:df:b3:09:9c:17:66:33:e1:2e:7b:3b:
61:c2:94:c4:27:4f:aa:09:84:42:08:ab:4a:b0:5d:c6:80:8a:
9d:31:68:36:a1:b0:e2:46:c1:cc:19:11:ef:14:a5:c9:7d:9a:
6f:12:c5:00:7e:4f:e9:56:cd:bf:a6:d0:06:4a:87:57:fb:86:
e8:df:20:68:b3:52:9a:78:fd:a7:bf:ad:9c:9f:34:f3:11:5f:
57:e4:b3:6d:2a:01:77:9f:84:8b:9c:83:e5:2f:0b:11:04:8d:
87:f7:4f:62:6a:70:ab:c6:3b:c7:2d:f8:3f:44:72:47:31:db:
4a:ed:82:70:dc:22:06:05:40:b1:a1:bd:ea:4d:bf:e6:ed:55:
aa:f3:b4:d2:4f:f9:a5:d1:67:78:26:b9:7b:5e:5c:2f:31:b6:
c2:d8:b1:30:fa:3e:9d:d4:e5:cf:51:9b:ac:57:1c:12:4c:30:
8b:96:62:e5:5b:bb:6a:b3:85:97:18:21:a0:3a:51:b9:4c:30:
cb:ed:dc:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:01 2025 by rpki-client on console-fra.rpki-client.org