Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
File: czFVtC-vxzVab8gJx9nM9bL4zcI.mft (raw, json)
Hash identifier: MY03BfAywmD7HIuFN5D3or39ULxox13QR0vVHiEmrN8=
Subject key identifier: BA:24:65:65:13:BF:32:EC:38:3F:DF:8F:59:49:C4:CE:20:C4:41:3F
Authority key identifier: 73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
Certificate issuer: /CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Certificate serial: 01941F6197FC50C4721B839C675C8AD12740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
Manifest number: 0300
Signing time: Wed 01 Jan 2025 01:01:17 +0000
Manifest this update: Wed 01 Jan 2025 01:01:17 +0000
Manifest next update: Thu 02 Jan 2025 01:01:17 +0000
Files and hashes: 1: JG6S1TbKenqMlHIvvP_hUs9fL7U.roa (hash: /PPy5b3fj0mbRIV64NNb/EtcTgZW9/kCakhPMI4goho=)
2: czFVtC-vxzVab8gJx9nM9bL4zcI.crl (hash: HY+RY5QjQ/cF91ToIJ7/L5SPDPFsff+9nX+kq/bCx7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 Jan 2025 01:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:61:97:fc:50:c4:72:1b:83:9c:67:5c:8a:d1:27:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Validity
Not Before: Jan 1 01:01:17 2025 GMT
Not After : Jan 2 01:01:17 2025 GMT
Subject: CN=ba24656513bf32ec383fdf8f5949c4ce20c4413f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:35:6f:44:6b:69:aa:8e:69:c8:d0:45:8c:ba:
67:f7:62:d5:9c:5b:ec:3b:9b:47:e0:1b:88:8a:a2:
97:8e:ee:3a:ea:7d:b8:4f:3e:86:b8:b0:f0:d4:17:
a6:8f:d1:35:56:9d:c5:f7:6a:ad:79:13:86:89:f4:
5a:73:60:52:b7:b5:f8:df:8a:54:05:bc:a2:b1:f8:
a0:b1:a6:9d:f2:d9:03:31:9d:9c:2b:1d:35:72:bf:
ae:39:95:6f:80:87:78:b6:30:65:e0:37:f5:a9:26:
ba:23:a0:27:85:e7:8e:b8:3e:e3:fe:14:de:f9:d9:
a0:ff:b3:9b:c5:47:c6:43:3c:30:0e:1a:5d:67:8b:
83:d4:f1:b9:6b:68:61:4f:07:0b:dd:91:ac:c2:8f:
41:b0:8a:95:ce:c8:14:3f:50:15:59:8b:b6:91:d1:
d0:af:34:2a:4a:1c:82:d2:9e:75:f8:df:4c:ad:2e:
6e:1a:64:a0:92:df:d7:57:f0:d9:59:3e:6d:07:c1:
3c:6c:e9:be:2b:08:9b:69:13:ea:68:7f:92:72:91:
98:f3:d1:6c:4b:e2:00:10:59:f1:ae:ec:b2:fd:80:
63:ac:07:c5:3e:72:44:fe:fd:ab:47:84:9e:3c:78:
fb:05:c6:69:26:ec:ea:c6:df:1b:71:36:77:9d:06:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:24:65:65:13:BF:32:EC:38:3F:DF:8F:59:49:C4:CE:20:C4:41:3F
X509v3 Authority Key Identifier:
keyid:73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:a8:fc:25:8d:b4:df:28:c3:16:43:5a:47:78:04:03:71:18:
61:d6:6e:fb:59:45:c6:6d:1f:44:a1:37:15:1e:9a:b7:ba:a1:
1d:c2:66:62:70:d1:0c:a9:90:4d:d9:4a:67:78:3e:80:5e:77:
e5:1d:51:d5:bf:b6:9c:98:6a:f0:43:0a:f5:46:2b:8e:ea:85:
10:e0:31:dc:71:de:ec:45:77:bd:f0:63:24:64:f5:17:69:78:
75:13:92:f1:d6:e9:03:e7:4c:a2:5b:ba:ce:f3:8d:0c:7e:05:
de:3f:2f:f3:ab:c3:66:21:23:87:fd:d8:96:6b:05:21:52:30:
ee:c6:03:dd:b7:08:92:85:08:0c:2c:24:bb:a0:df:08:47:6f:
d3:ac:eb:b6:1d:c5:67:f7:db:43:5a:8e:93:75:1a:31:96:f2:
e1:04:8b:76:4b:ef:fb:3d:65:ae:24:3e:29:ee:8c:6d:93:d7:
4f:78:f1:41:ed:3d:f9:2f:8e:ac:5a:cb:5a:dd:3c:36:3b:cd:
16:04:e8:ff:43:47:78:9b:a6:bd:bf:9d:a1:08:3f:ed:ee:df:
74:3e:f8:f4:c3:11:c7:3c:05:cd:ff:0d:60:af:dc:f2:fe:ca:
a6:c9:ec:2c:7f:cd:7c:96:63:d2:43:cb:fc:fc:08:6f:fb:a4:
1f:ed:69:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 1 07:05:42 2025 by rpki-client on console-ams.rpki-client.org