Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
File: iqaY-D40KcieNMjy77WxIBoY_Pc.mft (raw, json)
Hash identifier: i50xbQR+9QVeT7nItc38T7+ZG5MrpKibiaEpRAftdNU=
Subject key identifier: C8:A0:39:C4:3A:8B:84:98:BF:4D:CE:33:B5:49:32:41:24:E6:84:FF
Authority key identifier: 8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
Certificate issuer: /CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Certificate serial: 0194BB290D9EB2852C6EC5BC65E2E0FCEE1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
Manifest number: 142D
Signing time: Fri 31 Jan 2025 07:00:17 +0000
Manifest this update: Fri 31 Jan 2025 07:00:17 +0000
Manifest next update: Sat 01 Feb 2025 07:00:17 +0000
Files and hashes: 1: Eklv5iMrpdIb57nofb-2LDtZiMo.roa (hash: yKALUmc+NQQTzWDEWN3x1mf1BWmjZYZaxlqX1YAmy08=)
2: iqaY-D40KcieNMjy77WxIBoY_Pc.crl (hash: nqnld3VipfUivP0pflQCgzKjoHaGaqXWNEblS8tEdZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:0d:9e:b2:85:2c:6e:c5:bc:65:e2:e0:fc:ee:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Validity
Not Before: Jan 31 07:00:17 2025 GMT
Not After : Feb 1 07:00:17 2025 GMT
Subject: CN=c8a039c43a8b8498bf4dce33b549324124e684ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c8:7e:c5:98:97:ec:54:d0:64:46:1b:e8:8c:
c9:85:f7:d0:78:2c:cf:ae:ae:ee:c3:f1:6b:64:4b:
c5:02:89:fd:4a:c7:53:da:6f:ae:6f:b3:64:91:47:
33:f4:59:ea:df:66:b7:00:9a:c3:ee:57:62:33:71:
c0:d5:15:f5:d8:57:35:49:9c:af:42:c7:c8:f1:7d:
57:0c:0d:5e:47:01:75:17:f3:b4:24:43:97:fa:64:
7f:8d:89:54:9c:95:bb:bb:82:5f:e2:52:c3:2d:87:
e0:8e:9f:90:a8:19:06:fa:07:79:41:bc:89:41:d6:
c4:15:30:eb:1d:9d:95:c2:4e:fd:06:0d:1f:23:e4:
c4:b7:e7:57:7b:1b:d1:ce:9e:6f:fc:82:cc:e0:fb:
a4:5b:3b:8e:c4:0b:b4:ff:71:2c:8b:18:1d:5d:68:
0f:cd:a0:d5:5d:51:88:00:78:2d:29:77:71:8d:95:
46:5c:46:ee:c4:28:d8:de:76:2d:f8:f0:1d:2f:7e:
34:1c:20:a1:0e:6d:e7:dd:bd:0d:4f:bf:02:7a:5c:
a5:dc:99:88:33:cb:43:2c:81:bc:55:90:47:8d:f0:
9c:e8:04:93:55:d3:89:de:4f:82:5b:ac:8f:9b:ac:
65:8a:0d:19:a0:81:b1:91:74:5b:f4:63:c0:e4:11:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A0:39:C4:3A:8B:84:98:BF:4D:CE:33:B5:49:32:41:24:E6:84:FF
X509v3 Authority Key Identifier:
keyid:8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:0b:75:c3:28:82:6f:bd:ab:5e:16:f3:c3:0b:3f:63:60:8b:
36:c2:af:c8:cf:64:06:0c:69:76:29:d1:68:d0:2b:51:a7:63:
c5:8f:da:3e:33:8d:4f:56:e7:b2:a0:9d:d3:7a:50:63:87:06:
d2:0e:6e:53:13:c2:45:94:6b:6d:e0:15:0f:1c:e5:0d:c2:89:
ae:70:ca:00:96:82:04:73:b7:60:e6:ff:d1:6e:21:48:ba:d5:
1b:97:52:c9:13:c3:eb:8f:af:64:46:90:a6:db:58:7d:49:9f:
8e:4d:7f:58:57:0a:1e:90:f0:89:4e:88:11:d1:4b:8c:e1:0a:
b0:99:45:eb:29:67:3c:22:5f:d2:73:23:05:a0:9c:d7:0d:b6:
dd:87:cd:44:d5:f0:21:39:49:a7:04:80:92:f2:da:6d:55:8d:
92:e9:9d:b9:0a:3e:bc:35:30:ee:87:eb:96:4a:35:80:b5:de:
17:fd:7a:f0:c2:09:10:a3:5d:8c:d8:40:1b:99:91:03:eb:fb:
ad:6d:c7:65:5f:10:5c:f3:d0:a2:a7:2a:19:57:ac:18:b4:65:
9e:ad:57:51:65:42:16:58:7d:4d:85:f4:50:33:3b:3b:42:67:
3c:90:04:a8:40:3a:17:02:8c:8d:eb:ac:73:e5:60:e0:30:2a:
22:fc:3e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:37:12 2025 by rpki-client on console-fra.rpki-client.org