Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: 7XEW0FzvqslOcK6W5C2ExDwPoqNiBAeVZ36seJ0i2TQ=
Subject key identifier: 8D:26:98:1A:ED:99:17:0A:54:3B:8C:D7:83:7B:BA:B0:9D:02:D2:BC
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 0194BB9744CCB117BDDF151C0C744A08280E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 142B
Signing time: Fri 31 Jan 2025 09:00:40 +0000
Manifest this update: Fri 31 Jan 2025 09:00:40 +0000
Manifest next update: Sat 01 Feb 2025 09:00:40 +0000
Files and hashes: 1: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: ytd5O+r9aFBpHP/r7bnLO2YhHFnxwQeZLQlDGj3aTzo=)
2: dQsBPqZMKH6daF7X2f5XYU6EMvg.roa (hash: Ttxj5IHhlmThO1pUjygA+meVozoZQIr1J0wnK4d0fqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:44:cc:b1:17:bd:df:15:1c:0c:74:4a:08:28:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Jan 31 09:00:40 2025 GMT
Not After : Feb 1 09:00:40 2025 GMT
Subject: CN=8d26981aed99170a543b8cd7837bbab09d02d2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e4:9a:f0:ef:2b:5a:c2:83:50:e1:09:92:ae:
a3:92:20:af:73:26:eb:8a:85:38:45:71:d3:b7:a5:
0d:3e:1c:ae:8a:56:59:b3:0c:c3:67:60:fa:06:9e:
ea:03:f7:51:1e:6e:1b:f7:30:7b:a8:e6:cc:f0:db:
62:29:c1:da:c8:bf:54:30:f3:2f:ef:0e:b9:fc:9d:
d2:b0:06:23:61:db:cd:cb:17:9c:17:52:46:4d:69:
23:a8:41:90:28:13:f8:5b:2b:32:e4:73:fd:f6:a8:
b6:72:15:a1:09:6b:fc:a5:46:c3:b1:e3:c0:9d:f2:
72:d7:a0:cd:30:e6:1c:1c:53:f9:cd:08:d9:4a:ae:
a7:33:4b:b0:00:32:a5:7f:a2:f4:80:50:c9:10:81:
81:22:db:cc:bc:14:fe:35:12:ed:ba:00:4f:b2:26:
f3:b7:8d:20:44:62:af:16:fa:d2:45:5b:eb:3e:9f:
5a:ed:87:4c:57:10:51:86:ce:7d:84:3b:5d:95:27:
93:98:97:68:a3:b1:22:14:04:ae:0e:b2:d0:93:c3:
7a:97:dd:d9:3b:04:15:1d:98:66:2a:86:c8:c7:e1:
91:71:cb:29:5f:c1:ba:3d:37:f8:07:d1:bb:d5:ad:
da:74:6d:94:ca:1f:a8:a5:a5:d5:13:32:cb:7d:a3:
8d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:26:98:1A:ED:99:17:0A:54:3B:8C:D7:83:7B:BA:B0:9D:02:D2:BC
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:2d:7a:0b:f8:88:b3:80:23:7a:68:37:e1:14:d8:f4:1b:0f:
94:3b:ba:27:2c:6d:4e:c9:89:9a:9f:f8:75:d4:6c:35:de:b5:
2c:ba:90:6a:d3:50:e6:a1:d3:28:ec:6a:74:80:89:75:d3:62:
7b:ec:f9:a8:ef:1d:2c:6c:fd:11:37:24:a5:54:54:05:a6:9b:
17:22:a4:29:ce:3a:de:f3:ea:9e:0e:32:80:75:19:d3:be:fb:
b8:27:72:13:00:6b:48:f3:2a:ce:88:e2:fe:14:55:56:66:9f:
e4:93:53:ea:e9:18:38:c6:5a:a9:53:91:df:d4:62:a3:7c:87:
e0:7c:85:e0:21:48:47:65:e5:c9:9b:8f:ca:67:3b:48:a0:07:
62:a9:a6:fe:98:4f:0a:8c:4d:01:58:44:d3:1b:00:23:63:46:
4d:8e:54:3f:42:9d:d7:46:88:94:6c:ac:fc:80:b2:db:f8:b9:
a0:7d:56:40:10:ec:fb:45:fd:b5:38:73:7d:5c:a4:31:5c:0d:
98:c4:42:d7:7e:a0:30:e3:48:33:1e:44:ff:e1:9d:a9:03:d0:
0b:09:ff:37:f3:39:7b:c4:cf:cb:c3:a4:4a:70:2e:65:be:ea:
97:c3:a3:2f:37:7c:98:72:8f:0a:ef:27:67:26:c3:96:51:7a:
39:58:ab:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:40:27 2025 by rpki-client on console-fra.rpki-client.org