Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
File: bhWkM20vXhvWBzfelXlomSp0cOk.mft (raw, json)
Hash identifier: 30zMxJVTgvYOQ2JnY47xsAAyVkPaX16kvmq5z9TV69k=
Subject key identifier: 10:B2:A3:CF:07:E4:83:BE:E6:78:05:CA:EE:FB:FB:0E:BE:1D:37:ED
Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Certificate serial: 0194BB29370A5EB05E83E5F584BB15D90174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
Manifest number: 142A
Signing time: Fri 31 Jan 2025 07:00:27 +0000
Manifest this update: Fri 31 Jan 2025 07:00:27 +0000
Manifest next update: Sat 01 Feb 2025 07:00:27 +0000
Files and hashes: 1: bhWkM20vXhvWBzfelXlomSp0cOk.crl (hash: UPi0CZVbvAUuVaXysMT9FWR/TiV3J+/ZCPbPsbkvsdA=)
2: zgsEDv3otZRAtHyWvGAv7rzQjXg.roa (hash: ZyzEtsDUzNfUy6YLDq0VYYYmMcE0twVe+0tLjGTigwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:37:0a:5e:b0:5e:83:e5:f5:84:bb:15:d9:01:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Validity
Not Before: Jan 31 07:00:27 2025 GMT
Not After : Feb 1 07:00:27 2025 GMT
Subject: CN=10b2a3cf07e483bee67805caeefbfb0ebe1d37ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cd:d6:dc:67:f7:84:69:0b:e9:53:50:bc:41:
b8:50:09:ee:bf:19:dc:ae:4d:03:af:c7:72:39:83:
ad:0e:0b:e4:de:d3:a4:98:a7:39:b7:1b:16:69:77:
aa:1b:2f:81:8a:cb:52:f9:2c:ff:f0:c3:b5:c3:22:
8b:8e:ac:ad:05:91:60:35:37:34:67:33:a3:ac:da:
a8:c4:18:3c:c1:0a:b6:87:16:04:e7:a5:a4:da:78:
75:85:fc:44:a2:59:63:28:10:47:8f:b2:d7:7c:73:
97:0c:44:1c:cd:c8:76:04:ce:9a:5b:1d:60:33:42:
cb:75:e4:63:83:7d:d2:2f:bb:85:3b:47:90:08:cc:
50:53:90:1e:1a:87:7b:06:ec:80:a9:7c:c2:2f:e5:
98:9c:c3:93:e6:9b:a9:54:07:cc:ff:90:b9:d8:36:
1d:55:cb:48:88:70:35:c8:76:61:e8:36:70:65:77:
e1:65:94:94:8e:da:9d:17:31:fa:81:6c:97:b2:0d:
cd:48:d0:27:8e:ff:20:78:dd:fd:54:ca:e3:86:79:
19:51:5b:93:cb:88:af:e2:2a:09:82:e4:00:4a:a2:
17:ff:96:36:da:55:c5:f6:3d:51:3f:13:f3:ef:37:
5a:c1:16:02:33:a3:19:06:20:37:55:95:79:a4:d0:
f0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B2:A3:CF:07:E4:83:BE:E6:78:05:CA:EE:FB:FB:0E:BE:1D:37:ED
X509v3 Authority Key Identifier:
keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:45:9a:60:16:4e:8c:d7:8d:f2:6b:0b:b8:b0:1f:4c:32:02:
26:ce:46:1e:64:a0:46:fa:86:5e:c1:91:02:d6:56:10:e3:cb:
2d:be:1f:be:8b:7a:3b:68:d8:58:bc:c0:47:f5:06:5e:71:4b:
c2:a8:1a:6c:ad:b9:68:da:e2:92:d6:ea:9c:59:34:1f:51:96:
62:85:0d:56:0d:c0:7c:98:29:05:06:61:60:d9:a0:82:ee:4e:
b3:69:79:74:2c:48:2f:6b:16:7c:3d:38:7d:d9:73:78:5b:92:
ce:ed:78:70:06:df:41:c5:55:f2:cc:b9:66:b8:6b:f6:e0:15:
ef:54:f0:de:74:52:50:8d:c5:eb:47:3b:f1:be:11:65:4b:b2:
55:9f:38:2f:9f:5d:8c:59:42:10:9a:82:27:60:58:56:3c:42:
bc:a0:51:62:ad:7d:85:58:13:c0:60:44:99:a0:ef:dd:cc:be:
69:40:9f:03:13:1f:38:ae:e8:51:13:ab:7c:4a:af:cf:45:ef:
28:f4:02:e4:c2:57:5e:c1:3b:6d:6d:19:c5:3a:24:d6:9a:4c:
4a:d0:46:d7:54:ba:97:7e:78:30:c5:21:25:f2:9e:2e:bf:83:
9a:be:95:3a:3f:8f:e5:05:ac:63:6c:7f:69:2d:2f:0c:ca:41:
3e:c0:73:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:48 2025 by rpki-client on console-fra.rpki-client.org