Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: znx7DVEJwRUAtTMsUF0TjA75OJnsXNbrf+noFnV4ZcA=
Subject key identifier: 78:57:CB:F2:59:B0:92:3E:3C:3A:20:47:48:86:B5:E7:88:A0:9C:1E
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 0194BB5FF41A92A3DB49EAF46C3DF04027FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0CBE
Signing time: Fri 31 Jan 2025 08:00:15 +0000
Manifest this update: Fri 31 Jan 2025 08:00:15 +0000
Manifest next update: Sat 01 Feb 2025 08:00:15 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: b4V67fxe9HS3ZwSKzTMPIAL3WuMkEaFMMcxQ2JZUy9Q=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f4:1a:92:a3:db:49:ea:f4:6c:3d:f0:40:27:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Jan 31 08:00:15 2025 GMT
Not After : Feb 1 08:00:15 2025 GMT
Subject: CN=7857cbf259b0923e3c3a20474886b5e788a09c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e3:3e:8e:79:5c:b3:54:22:ad:12:31:b6:1d:
ea:9b:f7:fd:87:c3:39:ef:f5:52:ae:df:99:76:49:
a2:81:5a:98:0c:b5:38:d1:6e:47:b4:30:9d:91:e8:
d7:6e:70:e1:7e:0a:49:2b:33:3a:63:60:97:cc:d4:
35:4d:6b:5c:47:1b:76:26:c2:90:2e:16:c6:ef:49:
49:da:0d:7c:20:12:6e:a6:b3:bd:14:91:81:66:39:
d6:16:97:fb:19:40:33:04:12:f6:3b:67:32:d5:b1:
14:d4:23:c5:be:9c:5a:f1:44:72:17:9b:ea:01:29:
b8:b5:5b:af:f9:b4:5f:e7:1e:f8:ff:a2:22:b9:74:
32:dd:74:6a:63:65:3a:c7:5b:0a:98:cb:5b:20:af:
86:94:3b:5e:3c:e6:9b:43:30:c6:51:3d:ab:e9:4b:
fe:f8:8c:30:33:2c:2f:94:5d:c3:1b:57:9b:9d:de:
a9:7e:4d:63:c5:af:68:59:b8:f0:af:5c:ee:84:38:
14:f4:8e:2a:80:25:f0:b6:23:76:07:11:e2:58:e1:
ae:b8:b2:51:03:bc:ee:02:d9:42:f4:5c:d7:e8:5d:
1b:a0:c1:b5:52:bf:20:a9:a8:5a:80:32:7d:9e:0f:
88:b0:95:81:12:b5:21:3a:9f:91:cf:46:1d:55:b2:
38:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:57:CB:F2:59:B0:92:3E:3C:3A:20:47:48:86:B5:E7:88:A0:9C:1E
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:2d:66:d0:a4:71:87:57:81:39:8d:30:da:d7:51:1c:1a:99:
bd:5d:b3:b3:c5:0d:02:f1:93:3d:96:16:9a:33:d0:8e:db:4f:
c7:fb:49:ce:69:0d:d1:d1:dc:29:7c:b4:1e:87:27:b1:1e:e5:
55:01:4c:7f:3c:51:aa:0c:f9:58:41:cf:34:43:66:2d:87:a3:
29:33:b3:5e:4d:8a:75:7b:3f:9b:61:9f:80:ad:6e:05:85:67:
c6:f7:ea:a5:e4:b3:cb:12:bf:45:c9:c0:dd:b9:f5:76:25:6e:
72:a7:92:34:16:5a:73:db:63:4b:6b:15:da:9b:c8:0e:1d:e3:
19:66:53:02:6a:50:34:aa:76:e4:e2:b2:dc:84:ee:50:be:b6:
6e:71:1f:0e:8c:48:b1:5b:b5:01:66:69:bf:b2:d0:e7:69:2a:
80:81:ac:58:52:af:b7:8b:9b:0d:9d:b2:39:8c:18:75:7d:b9:
63:ed:3f:08:8d:e9:66:5a:32:eb:32:5a:dc:5b:00:22:04:11:
88:06:bd:27:12:ee:e5:15:cf:3d:8e:15:a2:71:f6:a3:d5:09:
1c:52:29:80:ed:be:5f:39:16:6b:0b:39:63:1a:4b:55:69:21:
aa:c2:2a:c1:78:1b:fe:5e:a1:27:88:28:88:25:a1:1f:39:0c:
07:33:1e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:06 2025 by rpki-client on console-fra.rpki-client.org