Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
File: rh967y8S0HaqitWli8uNyvPwvUw.mft (raw, json)
Hash identifier: jjsmomgpWKbHAUyF10N7cmze5NilVHREq2wCYQPATD8=
Subject key identifier: 2A:7F:8C:3A:AE:7D:36:CD:34:77:3B:12:06:D8:1E:6D:8A:91:92:A3
Authority key identifier: AE:1F:7A:EF:2F:12:D0:76:AA:8A:D5:A5:8B:CB:8D:CA:F3:F0:BD:4C
Certificate issuer: /CN=ae1f7aef2f12d076aa8ad5a58bcb8dcaf3f0bd4c
Certificate serial: 0194BA8443039A810B5C23EEF05E4881C014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
Manifest number: 0F78
Signing time: Fri 31 Jan 2025 04:00:17 +0000
Manifest this update: Fri 31 Jan 2025 04:00:17 +0000
Manifest next update: Sat 01 Feb 2025 04:00:17 +0000
Files and hashes: 1: rh967y8S0HaqitWli8uNyvPwvUw.crl (hash: zFQxtz69yxh4gCRUVj9lEMgE8eHw1V9nJrB5PWl9/0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:43:03:9a:81:0b:5c:23:ee:f0:5e:48:81:c0:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1f7aef2f12d076aa8ad5a58bcb8dcaf3f0bd4c
Validity
Not Before: Jan 31 04:00:17 2025 GMT
Not After : Feb 1 04:00:17 2025 GMT
Subject: CN=2a7f8c3aae7d36cd34773b1206d81e6d8a9192a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:ca:5b:85:7b:a2:48:c5:dd:84:ff:35:68:
18:b8:2f:f3:39:dc:63:09:84:40:6a:3d:89:d3:a0:
69:3f:1f:4f:f2:4a:04:7e:9e:2d:b0:92:69:d1:89:
ba:42:1b:42:39:43:e0:8c:3c:d1:5b:e7:fa:2d:2d:
ef:25:cb:17:d8:72:fc:57:86:ab:b6:6f:13:b8:65:
f7:0d:44:f8:13:84:9e:c1:13:47:b9:e3:4f:42:1c:
a3:1b:aa:78:08:cc:f6:58:b6:5c:c8:56:39:31:87:
d4:cc:71:60:89:48:8c:a1:6d:1c:fd:57:1c:ef:e1:
ef:f1:5f:80:ea:e7:b5:af:8d:ef:7f:e2:7c:30:c3:
ba:67:9a:fb:42:b0:0f:89:78:1a:02:14:c7:97:2c:
fe:a6:82:1f:a8:f3:af:23:0c:9e:d0:fb:80:d0:c6:
b8:74:a9:12:5d:fd:a8:9a:ce:25:14:ed:fe:ab:f2:
18:70:39:39:de:58:96:66:56:26:78:d4:f8:92:e5:
80:77:1f:c8:cb:99:35:09:33:0f:51:7d:2e:47:0f:
fa:bf:6b:f7:8b:65:3a:1e:65:ca:e3:2b:c1:31:9b:
0f:e5:d6:55:91:34:5f:31:f9:3e:eb:b8:73:62:e1:
61:47:a0:6d:22:c1:dd:8a:71:32:92:44:9f:19:dc:
0b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:7F:8C:3A:AE:7D:36:CD:34:77:3B:12:06:D8:1E:6D:8A:91:92:A3
X509v3 Authority Key Identifier:
keyid:AE:1F:7A:EF:2F:12:D0:76:AA:8A:D5:A5:8B:CB:8D:CA:F3:F0:BD:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:89:02:8c:d8:9e:9f:6a:2c:11:57:f6:75:2b:e3:79:b3:8a:
dc:ea:cc:a9:81:54:80:91:a1:04:d0:14:9f:2c:2f:e9:01:5d:
45:65:9e:89:af:8c:19:ca:ad:4a:2b:16:e5:6c:6b:43:5b:b9:
8a:0c:a1:b7:f1:9e:5c:1c:2f:3e:32:d5:f2:d1:09:66:14:5d:
84:9a:fc:a9:35:92:b5:6d:c7:92:04:3e:28:fa:07:df:e7:50:
e2:a1:cf:1b:e2:4b:ef:78:a1:a1:25:bc:80:9c:fe:db:36:9e:
f7:20:f3:e8:1c:68:28:d8:4e:ed:2f:28:af:9e:11:62:ce:41:
0a:ef:a0:87:61:5a:44:01:76:97:26:66:1f:87:8e:e5:da:42:
3c:1e:b1:52:26:ba:b1:fa:80:3b:98:52:57:68:ff:4c:ee:82:
6a:95:da:fd:09:a9:ab:83:db:39:bc:39:58:ac:15:d3:2b:76:
9d:b2:01:7b:04:3f:4d:83:25:a6:1b:43:26:a7:de:7e:93:9b:
4f:c6:9e:97:26:a7:8f:db:1a:34:66:29:8f:88:73:68:9f:d0:
ed:3c:d4:1c:4c:97:d2:ea:d1:5a:9b:dc:40:98:7d:aa:87:4c:
ab:a5:4f:b4:be:04:f8:9e:77:c6:ae:c5:7b:15:0d:c8:c5:ab:
2e:85:c6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:40:03 2025 by rpki-client on console-fra.rpki-client.org