Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
File: Ihm1ncLp80slUjDlYqPMph2usVU.mft (raw, json)
Hash identifier: uauBuK/AOkCVb4YAtpvkJ744g6Dmc29C2P+EwYBVSiU=
Subject key identifier: 60:8D:83:4A:0B:EB:7B:90:25:3D:2B:81:D3:71:6E:B4:C2:FD:1B:17
Authority key identifier: 22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
Certificate issuer: /CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Certificate serial: 0194BB291ACF4AC2E53620C1F7AE24B12D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
Manifest number: 10FB
Signing time: Fri 31 Jan 2025 07:00:20 +0000
Manifest this update: Fri 31 Jan 2025 07:00:20 +0000
Manifest next update: Sat 01 Feb 2025 07:00:20 +0000
Files and hashes: 1: Ihm1ncLp80slUjDlYqPMph2usVU.crl (hash: tH3/Glz6sV6v0sH9Z4IFC+hdHQcvPjh5Lca595D1oM4=)
2: Nk1hjqrpzwcKxMs_ejWJ395qXXo.roa (hash: uRWV+NR8DLzCaelMu4ig9EBtvA2PkzEXB7bjRzj91IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:1a:cf:4a:c2:e5:36:20:c1:f7:ae:24:b1:2d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Validity
Not Before: Jan 31 07:00:20 2025 GMT
Not After : Feb 1 07:00:20 2025 GMT
Subject: CN=608d834a0beb7b90253d2b81d3716eb4c2fd1b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:19:ed:c8:2e:4d:72:dc:1f:d6:3f:52:be:
73:02:2f:95:ac:aa:33:e7:19:8e:4c:c6:f2:2d:d2:
79:5a:e2:fa:74:8e:77:f1:7e:6d:ae:dd:61:3c:e1:
31:7a:7e:01:7e:ad:ce:3a:7f:fb:78:b3:c7:dc:19:
19:fd:0c:03:c3:60:6c:53:db:7b:56:01:19:47:51:
04:e7:90:bb:b0:2c:4e:dd:dc:54:98:1a:68:f4:ea:
10:bb:e8:45:70:22:45:4a:2f:5e:9b:14:be:fa:5e:
04:9a:8e:18:2f:70:6d:38:40:8c:b7:98:c6:a8:81:
7f:bb:41:dd:22:9b:3e:30:5c:84:bc:3e:46:7e:71:
56:dd:c2:d2:92:be:6f:b7:8c:3f:36:7c:97:4b:30:
c3:70:2f:d5:78:91:bc:17:13:44:9e:31:c4:a7:ef:
5a:24:35:3f:e7:12:44:d2:0f:89:f6:89:27:97:dd:
57:24:3c:1a:83:a2:3c:bb:ae:01:a1:ed:84:c8:ed:
aa:56:3e:7b:d7:92:ff:69:25:a1:53:49:c9:a1:f1:
df:96:3f:10:85:99:03:bf:38:fd:ed:3f:30:53:65:
12:d2:65:d8:4c:79:9a:f8:c8:d8:89:98:c7:15:e9:
ee:e0:cc:03:2f:29:ad:7a:93:dc:01:06:5b:61:74:
a4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8D:83:4A:0B:EB:7B:90:25:3D:2B:81:D3:71:6E:B4:C2:FD:1B:17
X509v3 Authority Key Identifier:
keyid:22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:3a:9c:0d:c8:cd:33:0f:66:6c:4f:4f:b7:fd:32:4c:10:5c:
ce:0d:d0:74:bb:47:3b:81:6a:c8:31:2f:e7:9e:5b:a5:be:50:
9c:bf:75:ae:ca:93:2b:dc:ca:36:d2:57:82:a7:d4:0e:c2:63:
ff:60:1c:3b:e1:53:7d:d2:ac:ff:e0:4c:30:3a:4e:53:41:32:
12:77:5b:8d:f7:2a:ad:83:a0:08:7e:d4:68:f1:db:7e:40:fe:
86:3d:61:a4:e4:e9:9a:71:b9:f4:3b:ff:fb:57:29:08:62:0e:
7b:4f:b5:67:42:e1:64:5f:e1:e2:e8:12:47:c8:a1:01:63:02:
76:5f:65:14:59:03:9f:fa:fd:21:ac:31:e2:4b:69:45:94:86:
8e:b5:4e:06:ba:15:55:ea:1a:88:78:90:57:6c:68:33:02:36:
23:84:37:1a:42:5a:94:82:65:42:d1:ee:84:cd:d7:a5:83:2c:
49:54:0b:8f:44:67:02:eb:0d:54:66:54:f8:eb:d7:fe:ab:9f:
30:57:a7:89:f4:46:1e:ba:47:73:8c:78:c6:b9:32:22:de:c4:
ca:ca:3d:c5:b8:70:c6:82:3b:de:72:24:88:15:69:04:f4:24:
01:3d:e7:59:53:63:85:4e:e7:98:4e:79:fb:29:44:9a:16:11:
30:b8:0f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:59 2025 by rpki-client on console-fra.rpki-client.org