Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: q9csOFTy1lhrNAleU5UwQ7dvcHZ69/ezpHzglU5lZ1s=
Subject key identifier: D5:95:A7:A8:47:7F:10:0A:B5:D3:7F:CC:A4:A3:82:20:5A:CC:96:30
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 0194BABB10BC91274E9DADAC66F86B5789AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 0EEC
Signing time: Fri 31 Jan 2025 05:00:09 +0000
Manifest this update: Fri 31 Jan 2025 05:00:09 +0000
Manifest next update: Sat 01 Feb 2025 05:00:09 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: 3/MjQnPgiDxkZ0Mg9q2tRps+E4W0S2k4YSyGN07hSxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:10:bc:91:27:4e:9d:ad:ac:66:f8:6b:57:89:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Jan 31 05:00:09 2025 GMT
Not After : Feb 1 05:00:09 2025 GMT
Subject: CN=d595a7a8477f100ab5d37fcca4a382205acc9630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5b:48:c5:ed:bb:5d:a8:44:1d:1f:31:f1:c7:
b2:8a:87:88:c5:ae:a4:2b:8f:2b:9a:e9:7e:ef:72:
f9:ba:77:dd:5c:78:e7:59:0d:8b:b7:86:3e:61:32:
3d:7a:40:a6:f3:ed:0d:8e:5d:55:7c:57:af:b0:b9:
85:a3:70:58:fe:07:19:ee:09:17:c1:9c:ab:9c:f9:
44:cd:17:b5:1c:8b:e8:5a:fc:a0:4e:cd:18:b3:87:
3a:37:8e:0d:2c:ce:2b:4f:e8:f5:17:6d:47:07:5a:
58:46:08:4c:09:e0:a3:ab:9b:8a:c4:e8:6e:be:64:
db:5a:0e:fc:a9:46:bf:bd:f7:c7:76:6d:cd:7a:ce:
65:c8:57:44:0f:6a:13:27:94:c2:83:fb:73:25:78:
c8:95:32:03:e0:66:b2:b7:f0:d3:82:07:ad:8d:62:
59:3d:7a:d2:52:3e:e8:e5:ac:bc:fb:42:03:27:b3:
03:ae:0f:d8:08:77:31:b9:e6:e8:ae:2a:e1:94:04:
87:54:26:c9:50:36:fe:b4:ca:f5:2f:00:f7:64:b2:
e6:e6:56:33:af:a9:41:c1:d9:2e:0d:74:1c:8d:05:
82:27:1f:1c:10:3e:5f:f8:e0:50:0d:26:3f:ea:7a:
9e:72:f2:0d:09:67:dd:bb:41:a1:3b:a0:21:f4:e3:
48:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:95:A7:A8:47:7F:10:0A:B5:D3:7F:CC:A4:A3:82:20:5A:CC:96:30
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:fe:b2:73:1a:42:f4:64:0f:59:6c:36:14:03:4f:4e:db:cf:
c1:5d:a3:c5:e8:1f:96:fa:78:18:84:74:43:3e:76:dc:36:13:
e9:83:0a:e0:d4:5f:35:e1:5e:f5:70:9c:b9:30:19:92:1f:0c:
d4:34:4f:a9:28:ba:9b:00:be:1e:b4:84:42:86:ed:46:31:b6:
ce:9a:37:e9:92:85:d9:4f:99:22:d1:2e:0f:0e:a5:f4:0e:e7:
a6:85:16:5a:47:cc:be:8a:95:52:a5:60:d7:4a:49:ef:51:a0:
70:41:68:06:70:f4:40:d6:b6:62:5e:23:5e:ca:6a:65:69:24:
34:b5:21:ff:86:d3:e6:fa:7f:4b:31:a3:79:f2:26:6c:d3:f8:
a6:de:55:7b:da:fc:a9:b4:b0:38:78:14:8d:43:dd:ec:e4:bf:
c9:da:06:79:f5:e4:bd:b5:c5:b8:b0:cd:7a:46:80:e1:04:6c:
71:9f:ed:7e:43:32:7b:f3:f3:50:60:40:84:2b:21:6c:68:23:
c8:e7:50:48:b4:73:84:2e:20:b7:bf:eb:db:d2:cb:18:06:eb:
e1:68:1e:f9:03:ab:39:3b:f5:1f:c6:8f:14:66:1b:90:04:a8:
a5:a5:eb:f5:c3:a5:49:2a:64:aa:e0:f2:86:b5:ba:ea:f4:46:
1b:03:f6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:39:49 2025 by rpki-client on console-fra.rpki-client.org