Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: gTmu/tKsVRvUpjbIUgHxF3cw8Ad5NSASdqRq/vfGDKk=
Subject key identifier: 85:30:34:6B:08:C0:43:C1:D0:D2:D1:4C:D9:68:6B:54:49:43:52:3A
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 0194BB5FF72A497AEB2F9B92BFF0918E5881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 0F0E
Signing time: Fri 31 Jan 2025 08:00:15 +0000
Manifest this update: Fri 31 Jan 2025 08:00:15 +0000
Manifest next update: Sat 01 Feb 2025 08:00:15 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: O8fLCMFxigvh0bFv7qCOa1/rh7pg4NWEbyngAe3wiiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f7:2a:49:7a:eb:2f:9b:92:bf:f0:91:8e:58:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Jan 31 08:00:15 2025 GMT
Not After : Feb 1 08:00:15 2025 GMT
Subject: CN=8530346b08c043c1d0d2d14cd9686b544943523a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d5:a9:c5:42:0e:6c:ff:ab:23:cd:12:11:19:
93:29:8d:df:9b:23:fb:ef:2e:4e:d8:b0:30:b5:f3:
49:97:eb:69:c9:21:85:7d:03:56:8e:19:88:fc:23:
0f:46:78:45:0a:41:51:0a:9a:f8:c1:39:95:41:f2:
86:c3:a6:65:27:96:7f:c5:69:fb:09:e0:57:3e:45:
14:54:86:ca:23:c0:81:45:04:55:9d:29:8f:06:96:
10:85:91:a0:50:0b:5d:5f:83:17:cd:c3:a7:22:35:
8b:0f:81:f6:72:e7:2e:87:a9:a1:35:23:7b:cd:80:
6d:33:5a:6e:de:05:ea:11:db:c1:7e:75:e0:0f:89:
10:e8:60:96:0c:aa:51:37:7f:44:65:02:9f:09:f6:
20:d1:8a:ed:43:dc:ab:99:42:b2:f6:ef:1e:88:1b:
af:4f:ea:76:92:f9:24:60:f4:af:cc:43:8f:b4:59:
89:bc:57:aa:57:54:c1:88:18:bb:25:01:d9:c0:dd:
86:90:71:2c:e0:83:b2:ac:18:d0:c4:18:69:27:ed:
6e:b1:b4:9d:9d:11:b8:4a:c9:21:6e:32:14:5b:cf:
6c:d2:6e:69:99:3d:7d:4a:61:e6:f0:a7:64:e9:6c:
53:44:2e:0b:4f:c4:fa:83:96:1e:d3:fc:31:ba:03:
a1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:30:34:6B:08:C0:43:C1:D0:D2:D1:4C:D9:68:6B:54:49:43:52:3A
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:16:ca:62:49:fc:59:f2:a3:ee:b4:bb:f5:73:4e:67:b9:3a:
13:54:3d:61:f5:3f:03:51:73:65:57:84:d7:13:dd:c6:75:ad:
9b:3d:a5:a5:2f:12:35:b9:4d:14:ac:85:00:87:1e:b1:c2:0d:
4c:7c:3d:ba:da:e8:3b:c2:a0:ec:a6:f8:ef:84:7d:c9:db:30:
37:d4:d4:32:71:ca:2b:3c:78:18:25:ab:95:98:e7:ac:ad:d3:
1a:cc:6f:a5:b9:13:50:e8:1a:89:68:31:09:ee:b4:59:a9:a3:
c9:b4:f0:f0:fd:82:46:e9:7f:00:ce:b9:81:e9:cd:9f:d5:ba:
53:24:80:8d:88:2b:12:e4:fb:c9:7f:e4:58:46:0c:75:9c:51:
29:98:c1:c6:e5:8e:b5:46:cd:25:6f:3d:5a:90:7b:b3:fb:76:
47:a3:f9:bf:fd:60:88:3a:22:5d:d8:2c:f7:53:50:e3:65:08:
c3:d8:dd:01:e8:b4:ad:4c:c3:2c:0a:35:b1:17:10:a4:64:1f:
50:38:0f:98:62:bd:a6:f8:73:d8:a1:56:97:22:09:1c:d6:a0:
e2:17:19:06:5d:29:7e:bd:ba:4b:b3:f2:47:f8:43:54:db:22:
d0:6a:0b:8b:1e:41:e9:77:34:3a:71:73:e5:2c:d2:0a:18:b9:
10:7d:53:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:37:12 2025 by rpki-client on console-fra.rpki-client.org