Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
File: KvD7S5rcsuyisQbeCok5YVlszRg.mft (raw, json)
Hash identifier: lDMqjMW0jWhqv+uaNLT7cuNZzq+dhosDwYiuzddfhqk=
Subject key identifier: AE:37:D6:91:2A:E9:E9:DA:94:3E:50:B7:A1:10:20:A0:76:88:A8:54
Authority key identifier: 2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
Certificate issuer: /CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Certificate serial: 0194C3F5B465E51D9F20754F24710A5A1857
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
Manifest number: 0AB0
Signing time: Sun 02 Feb 2025 00:00:47 +0000
Manifest this update: Sun 02 Feb 2025 00:00:47 +0000
Manifest next update: Mon 03 Feb 2025 00:00:47 +0000
Files and hashes: 1: KvD7S5rcsuyisQbeCok5YVlszRg.crl (hash: 3GGFRjqqJceM4XUcJfm9zoCQJNVffsM7XzNaPvimpj0=)
2: zXRn6qUdykmyNBlVs8F5lijyofI.roa (hash: ocGQIF9V1x5fsDLwah9aysnQL0wM33g0zDeGg9Z68IM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:b4:65:e5:1d:9f:20:75:4f:24:71:0a:5a:18:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Validity
Not Before: Feb 2 00:00:47 2025 GMT
Not After : Feb 3 00:00:47 2025 GMT
Subject: CN=ae37d6912ae9e9da943e50b7a11020a07688a854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:55:5f:9d:af:42:51:52:02:ab:54:15:16:69:
ab:46:99:13:a9:c6:87:89:64:53:80:6e:b2:7a:be:
28:65:fb:ac:1f:89:c5:c2:92:56:49:3f:98:eb:2e:
12:50:58:a9:dd:3b:75:3e:e1:20:17:49:e0:7e:cd:
61:c2:d2:55:26:d5:9c:7d:da:2a:91:3b:ec:21:1d:
3b:fd:0a:46:a2:d1:75:34:67:75:b2:f9:d8:8a:78:
1e:90:89:bf:c9:d3:b5:f1:12:5c:65:75:27:ea:e1:
06:a0:d0:b2:83:70:54:b0:41:fa:a0:93:68:94:13:
bf:01:ac:5d:10:d5:18:d2:8a:d9:72:e5:bd:ca:81:
af:f0:15:33:20:6d:84:a2:69:52:70:93:e4:20:e7:
c6:a4:84:41:be:fa:1d:bd:aa:5d:e3:a6:fd:21:c8:
e4:3e:aa:2a:1c:6d:da:23:86:a3:bb:57:e9:59:f0:
81:84:98:d0:ee:32:8d:30:83:bf:f2:55:eb:88:33:
6a:f1:c4:28:a6:65:76:88:49:ab:c2:bb:73:66:64:
28:f0:0d:4c:e7:a4:97:51:46:2d:f9:86:5d:50:7b:
1f:8f:3e:02:b6:7a:e7:bd:0a:8b:f7:2b:65:6a:b4:
8b:88:d8:61:77:92:14:72:1a:a6:bf:68:84:7b:85:
46:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:37:D6:91:2A:E9:E9:DA:94:3E:50:B7:A1:10:20:A0:76:88:A8:54
X509v3 Authority Key Identifier:
keyid:2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:2a:c3:19:7e:fc:d0:b6:5a:ff:1b:73:93:c1:f2:8f:0e:d0:
9e:c1:a6:95:d1:6b:ab:c6:27:7e:95:98:7e:85:09:c8:80:87:
98:96:47:03:10:48:f1:13:ff:52:e9:ed:4d:bd:08:81:04:a0:
8b:4a:02:5e:b2:9e:d8:e2:91:82:5e:71:64:62:c0:93:87:08:
06:2c:d3:88:7b:a8:13:64:38:c4:35:84:68:79:df:a4:c6:50:
48:ec:6c:9c:66:b0:f3:a9:07:5f:a2:26:fc:43:1d:8d:cc:f2:
28:1b:5c:2e:92:c6:f0:13:5d:39:ad:58:df:f6:ed:80:bc:22:
91:ef:ed:ca:7b:d8:78:9b:fa:2b:e3:b7:87:47:45:4c:cd:4e:
a1:00:cf:48:c9:06:1d:b9:e1:ce:84:89:3f:70:6a:3e:e4:72:
11:74:38:95:83:b0:d6:f8:41:8e:9a:49:b0:6c:ab:cb:b3:52:
9e:cc:30:54:99:bc:e6:b5:0f:99:b1:53:ee:10:0c:83:ed:40:
fe:98:b2:6d:fe:07:97:d3:75:b6:eb:58:65:36:f6:c3:1b:73:
f9:30:c5:67:e0:20:7b:8e:dc:2a:8a:82:ac:93:41:a3:cc:0b:
b8:9e:45:03:04:5b:31:f1:d4:c1:5d:dd:2e:30:55:3c:9a:2e:
71:21:0a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:04:13 2025 by rpki-client