Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: 2HCMmp+88nMCCjuYORCdTBH/eAXGNc1IIPmN0YFxrU8=
Subject key identifier: 33:E7:BD:E2:FF:77:85:65:75:05:24:25:0C:2E:43:DD:34:3E:A1:2A
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 0194BB96FC139BF961A88477C7DCC59707B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 142B
Signing time: Fri 31 Jan 2025 09:00:21 +0000
Manifest this update: Fri 31 Jan 2025 09:00:21 +0000
Manifest next update: Sat 01 Feb 2025 09:00:21 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: Efg6Fyirp2luNdxfYOnZ6ikAfUBPfG/UXZ0BI2HER6s=)
2: 4RiMrm8aaExTJ5NxhFCCQc-LTfQ.roa (hash: xT77mBm76fvxQ/4syBVoQsoquUiDMD7RefgDewlMNII=)
3: O84I_LAanBtJYvSSTZhnAsP3iQA.roa (hash: 6ivMoGITrJjRBuEurkZGNP+0M6whX3cvNI3NRDFJ7b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:96:fc:13:9b:f9:61:a8:84:77:c7:dc:c5:97:07:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: Jan 31 09:00:21 2025 GMT
Not After : Feb 1 09:00:21 2025 GMT
Subject: CN=33e7bde2ff778565750524250c2e43dd343ea12a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9e:ba:86:f1:54:a5:f5:f4:ad:7c:be:5d:dc:
c9:5c:4e:10:22:42:32:9a:99:cb:97:b4:bb:1a:69:
15:bb:a5:e7:85:3d:73:c9:61:0d:4f:c7:76:65:5f:
2d:55:96:03:14:6f:52:be:9d:14:50:88:61:f6:c0:
17:9f:10:fb:ac:73:92:df:78:5e:0e:6d:25:e5:a2:
af:85:12:2f:1d:97:78:25:77:53:d9:95:be:88:b3:
ff:85:e0:cd:20:d9:bb:d1:4a:b8:e6:05:2f:96:0c:
b6:0c:d5:c5:2a:9b:8e:77:f1:9b:82:ea:c1:2f:0e:
1a:3e:99:90:21:b0:7f:32:c2:c0:d8:09:8f:ac:9f:
be:d3:e2:d8:67:d9:e0:0d:d6:4d:a0:69:64:e5:a1:
c2:99:08:d1:39:ef:40:a3:3c:55:75:11:10:c1:38:
c8:85:df:db:ef:ed:a7:35:1b:41:42:d5:7f:c0:98:
10:97:fa:03:ae:ae:e7:01:79:dd:f3:68:c3:48:70:
90:44:38:fa:8a:07:e8:96:45:0b:79:ae:fa:1b:d6:
47:d5:cb:d0:66:de:7f:c6:71:0e:43:59:da:9b:b5:
c1:23:db:c5:28:42:da:b6:04:62:da:96:0a:f5:cc:
4e:3a:d5:5b:8d:e8:ee:89:e5:d7:f7:d3:07:43:65:
99:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E7:BD:E2:FF:77:85:65:75:05:24:25:0C:2E:43:DD:34:3E:A1:2A
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:a6:38:d1:09:13:52:a5:db:99:89:a9:84:17:78:95:80:21:
d7:8c:88:fd:2e:2e:08:64:fb:44:ac:41:1d:4c:5c:e2:ab:08:
eb:1c:9b:15:ca:a1:57:8e:62:a8:b9:74:c3:83:3c:13:81:4d:
11:97:6a:fd:4e:fc:24:79:97:4a:4a:57:32:bb:1d:7a:b8:8f:
34:66:3a:ad:14:0b:47:e2:b9:be:b4:e3:75:d6:95:64:e9:0b:
c6:76:0a:9f:2a:19:60:d7:34:bc:7a:1b:24:86:ca:2d:9f:ff:
f1:8f:eb:73:1d:78:60:09:45:ea:c8:5d:81:78:3a:ba:60:1e:
c6:ff:0f:0e:7c:86:42:1b:f0:b7:a1:7f:f3:f1:d7:cf:06:37:
ed:c9:ba:b5:09:17:8a:ea:e4:bb:80:35:82:fa:7e:50:82:3b:
7f:7a:2a:b0:a6:0b:db:1c:17:aa:90:34:d8:bb:24:c0:42:f1:
d6:c5:5c:b3:3c:25:af:e8:01:76:7b:b8:59:02:22:aa:a0:99:
db:4f:e9:1a:43:1c:47:0e:d0:c5:7e:0f:bc:8b:c6:83:55:47:
38:b1:99:b2:73:82:88:af:ec:b5:c3:d9:71:2a:88:68:3d:70:
c2:0d:18:be:be:be:04:b2:37:ea:52:0a:13:d2:b7:ad:c8:68:
22:d0:d3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:41:21 2025 by rpki-client on console-fra.rpki-client.org