Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json)
Hash identifier: lhsz/Nmg+u4BDPrqNN13fC0qLQFxCLjZ9WWzD5shZ7c=
Subject key identifier: FC:D9:77:58:64:3E:DC:E2:CD:96:23:7C:62:E6:CB:D9:D6:AD:FD:F8
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 0194BB5FF0EDA81DC6CD8E945ABF50B42070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
Manifest number: 0895
Signing time: Fri 31 Jan 2025 08:00:14 +0000
Manifest this update: Fri 31 Jan 2025 08:00:14 +0000
Manifest next update: Sat 01 Feb 2025 08:00:14 +0000
Files and hashes: 1: DkmUUaZoynIEdlR9hMmyYSS3NfA.roa (hash: JaWDKrMwIijsWs6TG8arC0MUQjJ3dz0V76FJO19Gqec=)
2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: emE2iPt9zqSdjM5/KDDN/lUOPLe1sJzofR1/z9hjImI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f0:ed:a8:1d:c6:cd:8e:94:5a:bf:50:b4:20:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Jan 31 08:00:14 2025 GMT
Not After : Feb 1 08:00:14 2025 GMT
Subject: CN=fcd97758643edce2cd96237c62e6cbd9d6adfdf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:94:df:09:68:f8:75:a8:40:6c:b5:c6:74:a2:
c1:86:5d:bd:04:1e:47:8a:74:cf:37:ec:23:35:44:
60:34:bf:73:fb:24:ee:f5:70:d9:18:be:d9:f9:29:
58:e1:9b:b4:43:bd:0c:f4:c4:16:a7:8b:f0:fb:00:
1a:05:5c:4c:0a:dd:63:0a:f3:8a:8b:9c:96:e9:84:
1f:bb:cc:3f:e9:29:83:40:d7:67:0f:a3:ec:0c:d1:
a2:3e:9a:41:2e:28:4c:b4:e3:29:58:20:50:c5:88:
e6:dd:82:54:3a:97:99:fe:ef:1b:b7:25:03:d0:a2:
2f:de:8d:a4:28:da:61:63:74:60:2f:fc:01:42:98:
3e:10:34:b0:04:70:9b:97:d8:db:ac:5f:9c:d9:ac:
50:1e:d3:31:8a:89:3f:56:7a:f8:6b:25:bf:27:13:
20:32:38:97:56:91:32:c0:b2:ca:16:d7:67:a3:17:
ac:6b:4b:e7:7d:ba:44:59:02:ba:58:78:f1:8b:08:
f6:24:06:12:09:cf:10:bb:eb:64:99:31:2b:0f:40:
9c:2e:df:29:8c:2f:16:44:74:8a:22:77:e3:96:6e:
4f:71:22:b1:e7:d1:c1:4c:67:c8:84:63:b5:e7:7e:
60:3b:28:19:43:74:61:60:e5:ff:d1:a1:71:ae:31:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:D9:77:58:64:3E:DC:E2:CD:96:23:7C:62:E6:CB:D9:D6:AD:FD:F8
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:f0:47:28:7e:02:99:44:12:d1:12:6c:fd:3c:fe:ea:bc:57:
b6:ad:5f:2b:83:40:5d:ca:7c:57:15:c0:aa:cb:bc:51:7b:44:
1b:86:95:ea:2e:ec:e5:55:56:63:ee:53:05:65:6c:c2:39:a4:
58:46:64:4d:91:91:37:b0:35:80:ad:00:98:e5:ed:8d:11:76:
ad:59:c3:ad:fc:11:48:84:64:94:1c:64:01:f9:c7:00:fe:61:
7b:26:76:d2:9a:ec:ab:30:73:a7:54:17:bd:ed:4e:a6:98:4b:
07:f9:59:58:05:cb:81:9c:da:2d:46:f3:b6:02:6f:32:4c:db:
1a:9a:e8:06:7c:b0:81:9c:90:54:75:44:03:f0:aa:c9:40:dc:
bf:6b:29:e0:1e:ac:56:a8:2c:cc:61:66:36:8b:80:46:fc:f3:
0e:70:1e:b9:8b:ff:78:db:79:83:0c:ee:71:39:1c:08:b8:b1:
0e:8d:d3:8d:31:98:0d:bb:dd:1a:1f:87:9a:ec:2f:42:3a:0e:
2c:03:4a:4b:74:dd:8e:59:af:76:17:d0:f5:7d:8f:b1:89:23:
84:46:6f:8d:b2:d9:ac:06:2f:4b:9f:c0:d1:2d:8f:bc:91:3b:
9c:12:29:29:19:2b:5d:1a:38:f7:c5:95:0f:07:d0:a6:bb:9c:
2c:f1:3d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:39:34 2025 by rpki-client on console-fra.rpki-client.org