Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
File: BAfWwkhET2tcN42w_-wPiZJW66M.mft (raw, json)
Hash identifier: Qj3+bMApld/nSqjQJDTY1vYe/j2VRI8p7o37OyY9zcA=
Subject key identifier: 2F:03:28:28:51:2B:07:9F:1C:47:D0:BC:66:2F:BA:D8:8F:48:EF:D2
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 0194BAF27306CCD2CF695AF6590DC68C4EBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
Manifest number: 06FD
Signing time: Fri 31 Jan 2025 06:00:38 +0000
Manifest this update: Fri 31 Jan 2025 06:00:38 +0000
Manifest next update: Sat 01 Feb 2025 06:00:38 +0000
Files and hashes: 1: BAfWwkhET2tcN42w_-wPiZJW66M.crl (hash: VIkTGutCBCgtkrM954d3Q63Me2VKWoq0tTlBWivkrm8=)
2: QpIKO4ejjPjXaNQ1_KyJkWKevB8.roa (hash: e6W0MKDyzgf7+BDF2Ho9KsY3xBRYMIFdcPH8WpxhKmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:73:06:cc:d2:cf:69:5a:f6:59:0d:c6:8c:4e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: Jan 31 06:00:38 2025 GMT
Not After : Feb 1 06:00:38 2025 GMT
Subject: CN=2f032828512b079f1c47d0bc662fbad88f48efd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:00:52:6d:5d:99:74:09:d2:88:05:de:36:b7:
b7:3d:0a:09:1c:2a:07:0e:ec:37:26:13:9b:d1:38:
16:72:75:8c:98:be:42:e6:8c:fe:ca:be:4d:bb:35:
c4:c6:38:bd:75:04:f2:83:a5:3a:f4:3a:73:f4:9b:
15:29:c8:10:64:92:ca:67:09:7d:23:c5:8c:a0:40:
ac:85:32:b6:c9:99:bc:be:2c:9d:c5:08:db:f4:45:
a7:ec:ed:83:4f:80:3d:bf:fa:f3:44:4f:33:79:1b:
24:01:77:d5:2d:78:49:03:84:a1:4a:d2:5d:6b:a5:
f7:83:dd:af:9b:18:e4:ca:8b:b0:98:9d:b9:71:c7:
44:46:cb:60:3f:00:ff:34:4e:76:2c:13:e2:ff:34:
a5:24:a5:be:e5:6f:32:e8:33:f0:6a:05:23:19:36:
a2:d9:52:52:f0:58:0b:05:c8:5e:05:20:8f:48:cc:
c6:51:eb:6a:f4:e8:e9:77:66:59:41:76:68:97:2c:
aa:2a:bc:9c:b6:6e:5f:a9:5d:14:c3:c2:27:dd:a9:
11:ec:63:3c:2c:6c:be:da:26:54:3e:8c:67:80:24:
b8:e8:a2:1d:f2:2f:2d:60:2b:ff:bb:4f:b0:d5:30:
c1:bf:82:95:05:fc:1d:51:02:14:2a:dd:8f:9c:ec:
d2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:03:28:28:51:2B:07:9F:1C:47:D0:BC:66:2F:BA:D8:8F:48:EF:D2
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:eb:53:1f:93:c6:f8:84:84:32:74:b3:28:02:1c:0a:2a:bb:
31:0f:8c:31:9b:5f:fc:c8:f2:af:1d:d8:34:7d:b8:bf:73:a5:
95:37:58:4a:2f:66:df:95:2f:d5:5b:67:56:10:fb:7f:ef:b2:
fa:ef:c3:54:30:2c:70:23:9a:88:b0:cd:c7:c2:21:e7:39:87:
f4:9f:94:76:f1:be:5d:fa:ca:c9:bf:30:40:5e:68:8c:8e:34:
fd:5e:6e:b4:00:db:92:1a:d2:ef:04:58:dd:86:02:26:bf:82:
78:46:ab:76:ab:c7:3b:c4:8b:8f:f9:c5:72:dd:a3:32:8d:e2:
8a:17:e8:86:4b:a1:8c:4c:d7:6d:98:d7:a5:f9:92:67:ed:3e:
4b:e0:35:81:1b:ee:72:34:1b:dc:25:23:f9:d7:99:2d:d7:8f:
27:9c:ea:68:ca:b0:47:cd:a3:e6:b2:01:a7:90:e3:81:02:b7:
d6:d0:2c:54:65:c8:bb:ca:67:a5:25:ea:72:f5:65:57:4d:22:
f9:95:67:a4:02:61:35:b3:d5:72:9d:db:f9:28:92:dc:d9:3a:
ce:04:43:8e:be:1e:58:59:39:45:b8:06:6c:09:f9:10:07:b8:
e2:8a:cf:c5:81:fd:95:0f:d5:6a:94:c6:31:44:b8:7a:36:d7:
28:16:29:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:37:24 2025 by rpki-client on console-fra.rpki-client.org