Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
File: praJ3e9Y8KM4Pi71qjonxP5FMY4.mft (raw, json)
Hash identifier: KeTBO1DQVi0gkX1ceg4l+J7QBQQsDA4QNynQKyK2Pe8=
Subject key identifier: D2:F5:36:5E:29:56:F6:D6:DD:85:B4:1B:2F:E5:F8:29:9E:00:01:4F
Authority key identifier: A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E
Certificate issuer: /CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e
Certificate serial: 0194BB6060DEF0850552B3208FFD5FFB36AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
Manifest number: 142A
Signing time: Fri 31 Jan 2025 08:00:43 +0000
Manifest this update: Fri 31 Jan 2025 08:00:43 +0000
Manifest next update: Sat 01 Feb 2025 08:00:43 +0000
Files and hashes: 1: 1-hqyEGwonCGY9K2L38Pw7_zJV_k.roa (hash: a3BoJ3dncPr176aD5ziB0Bh5202joOPjBl2mIqn/r/0=)
2: praJ3e9Y8KM4Pi71qjonxP5FMY4.crl (hash: H4cc6dT5hBbsy3t5ZMfBicHlBsLQyhYCGVWph/j3Cuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:60:de:f0:85:05:52:b3:20:8f:fd:5f:fb:36:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e
Validity
Not Before: Jan 31 08:00:43 2025 GMT
Not After : Feb 1 08:00:43 2025 GMT
Subject: CN=d2f5365e2956f6d6dd85b41b2fe5f8299e00014f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:91:5b:70:e3:04:55:94:e7:94:08:f1:0f:
e6:e4:5c:85:8d:fd:9c:cf:7c:ee:3c:6c:98:30:50:
a8:88:be:d1:45:8c:c0:c1:50:64:f4:03:10:16:5b:
7d:f5:b1:dd:79:46:c6:d5:8f:3f:d8:d9:ab:ce:68:
5c:9c:ec:16:9a:18:c1:3f:67:31:d7:e7:d0:d4:a4:
80:0c:80:f5:a5:0b:99:6c:17:8e:75:dc:59:65:c6:
3b:3b:6f:fc:d6:16:f1:17:67:92:63:87:81:24:0a:
ef:49:6d:07:65:12:e8:3a:29:87:c8:9c:04:8c:99:
95:3b:d4:66:77:bf:d7:81:66:85:90:0d:e0:cc:28:
83:0e:c9:7b:df:5c:7b:b6:b4:cf:45:cd:56:b2:ef:
4d:af:e7:b6:64:da:99:d2:28:9f:a4:5a:e4:9b:ee:
a3:71:ed:04:5f:f2:75:6c:3f:3d:38:ca:6a:32:96:
8c:de:8d:47:ea:cc:d4:14:eb:21:35:c8:66:f7:c2:
95:8e:a9:20:6e:7a:58:f7:c3:b3:20:be:e0:75:63:
01:f6:d7:c6:6d:6d:04:a8:04:cc:88:9d:97:f5:af:
8a:09:9a:00:0a:ee:1b:7c:ab:88:d8:0e:39:a5:22:
0a:0c:6b:25:03:cb:88:12:98:08:1b:f5:0f:d2:15:
13:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F5:36:5E:29:56:F6:D6:DD:85:B4:1B:2F:E5:F8:29:9E:00:01:4F
X509v3 Authority Key Identifier:
keyid:A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:f0:e4:69:3e:ef:b7:10:fd:47:6a:a7:da:56:f0:f3:de:ce:
11:d0:47:f7:d0:c1:11:fc:51:3c:f6:3e:de:2c:5d:99:f8:d5:
56:72:5a:83:0b:23:59:e7:06:fd:b3:b1:51:38:80:f2:cb:a8:
4f:fe:12:5a:87:ba:96:15:a5:1e:7f:f9:c6:d7:24:7a:17:6f:
01:cd:c9:fb:e4:13:c8:f4:70:ce:33:ae:09:87:df:4c:fa:fd:
b5:8c:d5:00:a4:fa:40:10:b2:62:01:a5:b3:00:98:a9:19:5a:
28:5e:a9:2d:67:08:4d:35:84:9f:d1:16:d6:7e:46:43:ae:81:
a9:78:1b:5b:cd:bf:6b:60:0d:a7:51:69:a8:91:d9:d8:74:a8:
9a:19:1c:93:bc:a9:d0:e2:d9:43:ed:4a:dd:7b:0f:e8:50:ba:
bb:c4:50:fb:cc:24:b2:9a:db:f9:84:bb:c1:d9:d6:35:ad:20:
cd:7d:ab:93:aa:f2:f5:36:43:0d:11:2a:ed:f2:5f:68:c8:2b:
0a:9a:86:88:3b:60:66:e3:f9:f2:97:5b:f7:95:aa:76:62:45:
5c:ab:04:a3:0c:e9:9d:91:0c:2e:35:53:82:6c:96:4c:0e:af:
e4:7c:b9:77:c2:87:60:18:cb:0f:35:e9:85:00:ff:e1:65:0e:
f1:5e:c4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:42:32 2025 by rpki-client on console-fra.rpki-client.org