Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: Ytm/nmHKNBJQYiJOntgAmDwWZx8jlCyvpahrdg16Gm0=
Subject key identifier: 6B:52:AF:29:E0:02:16:CF:D7:B8:CE:83:6B:6E:F0:77:D8:70:87:13
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 0195124747EE91D7C64CEA1A9CCC74A54ECB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0CEB
Signing time: Mon 17 Feb 2025 05:00:16 +0000
Manifest this update: Mon 17 Feb 2025 05:00:16 +0000
Manifest next update: Tue 18 Feb 2025 05:00:16 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: xdB112fA+abJQzx9affFIFAppboCkefNXHGugHN3Ros=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:47:ee:91:d7:c6:4c:ea:1a:9c:cc:74:a5:4e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Feb 17 05:00:16 2025 GMT
Not After : Feb 18 05:00:16 2025 GMT
Subject: CN=6b52af29e00216cfd7b8ce836b6ef077d8708713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5a:ee:c2:49:d8:3a:d2:0b:06:51:bb:f5:f3:
97:aa:26:47:bc:0e:00:26:a1:f7:50:66:44:ba:d5:
97:a1:71:6a:c9:44:4d:80:3e:a9:0f:f3:0c:9a:98:
7a:ac:8c:dc:80:2f:fb:ac:b1:f9:98:4a:37:dd:b0:
17:07:a9:f8:71:f2:1b:fa:07:04:5a:5c:11:29:0a:
5d:65:40:10:d2:78:46:00:8d:c9:07:a1:0a:fb:12:
a2:24:29:91:73:44:12:5c:6f:27:76:fc:bc:92:24:
0a:4c:b5:fa:d1:2e:68:fe:a2:bd:77:8d:ba:3b:52:
ba:77:1f:02:70:64:20:3d:ff:5b:e0:24:e1:1d:ff:
5c:f5:8c:31:52:5e:6a:3e:ad:5b:66:78:e8:3e:2d:
3a:f5:52:19:f9:3c:66:04:79:7e:d7:ce:d4:9f:ee:
17:0a:7e:1d:d6:25:7a:d4:20:6f:06:7d:c9:c5:55:
f5:0e:a9:db:91:87:67:d0:f7:4a:5f:a7:8d:85:ba:
3b:3a:63:99:d7:6f:6d:0b:db:4e:f8:75:4b:5e:e0:
4c:ae:e2:ad:8e:78:cc:87:48:d6:b0:87:62:74:83:
50:6d:a0:24:b5:c4:df:74:c9:de:c8:9b:d7:14:4b:
86:0b:7c:22:42:6b:2a:a6:f4:3f:e8:a2:ee:4d:17:
c7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:52:AF:29:E0:02:16:CF:D7:B8:CE:83:6B:6E:F0:77:D8:70:87:13
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:b5:21:90:28:1d:7a:e1:06:8b:b1:7e:a3:ee:42:a3:94:01:
7d:95:93:cb:f2:5e:f0:ff:fe:28:69:9a:b5:8e:0f:14:6e:9f:
e0:3c:19:d6:54:6d:c0:f4:7d:98:a5:db:f5:a6:d4:05:d4:68:
bf:11:d0:29:62:69:b8:d2:bc:68:7a:5b:42:1f:26:35:fd:f8:
f3:da:dc:af:21:f6:6b:65:0e:ec:f2:eb:65:57:94:ea:8c:d0:
65:7a:7d:3d:c2:27:28:ca:2f:fe:5a:00:de:f8:f4:31:ed:31:
25:e1:1b:26:b9:1f:c6:85:ea:c8:b1:44:c7:38:70:66:36:5f:
b6:53:75:6a:16:03:76:ab:67:3b:11:b6:a5:01:5a:9b:8a:03:
3e:53:57:d1:1f:cd:ff:ea:59:4c:4f:8a:14:9a:bb:0d:f4:b2:
3b:c6:a4:e9:00:63:1e:a0:df:00:96:8d:3b:14:b3:f8:aa:8f:
21:a2:b1:f3:cc:32:06:c9:6b:60:ae:84:4f:5a:74:e2:23:0b:
9c:98:fb:a1:2c:07:91:4e:d8:cd:cb:81:47:0f:13:9d:81:7a:
cd:0e:49:bc:bd:8b:c5:3c:62:63:69:ad:d7:b6:fd:c8:cc:64:
5d:6e:fa:0b:0a:eb:5e:89:51:22:e1:6d:65:ae:c5:3b:24:37:
09:a1:0e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:42 2025 by rpki-client