Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
File: czaDy4VtbZ_1jih-ipBdKS3KazQ.mft (raw, json)
Hash identifier: WP9Ockz8xUgB7/hthKJQwAFV8UHodHzxZAPqIr9nCU4=
Subject key identifier: FB:9D:F0:75:B6:CA:7E:7E:C8:D5:AB:AA:C8:5F:7D:5A:73:7C:BA:7F
Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Certificate serial: 0194BBCE1FD4F60D6C466BC8DEA14B1B1DAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
Manifest number: 106F
Signing time: Fri 31 Jan 2025 10:00:35 +0000
Manifest this update: Fri 31 Jan 2025 10:00:35 +0000
Manifest next update: Sat 01 Feb 2025 10:00:35 +0000
Files and hashes: 1: 1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa (hash: hFOtYhVCGxVTmNvasMZGAdD1D7TMmY398V7CPu+M+nU=)
2: czaDy4VtbZ_1jih-ipBdKS3KazQ.crl (hash: P+YQywWzO/Zw3/x7KWus1Bq7+3Mbkc32Jl1kfZxgoi0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 10:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:ce:1f:d4:f6:0d:6c:46:6b:c8:de:a1:4b:1b:1d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Validity
Not Before: Jan 31 10:00:35 2025 GMT
Not After : Feb 1 10:00:35 2025 GMT
Subject: CN=fb9df075b6ca7e7ec8d5abaac85f7d5a737cba7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:15:13:40:fd:ba:53:90:55:2d:e5:e6:1d:
fc:09:27:3b:bf:ba:4e:a3:34:35:d0:1a:7d:6c:bb:
07:c6:c2:5e:20:67:50:12:94:62:a0:84:96:b9:0b:
00:a6:1b:db:4b:c7:16:aa:72:e5:16:83:2a:9a:2e:
d2:77:f1:5d:b5:22:58:e1:e9:fa:a5:e7:ec:9a:66:
a2:a5:7f:e7:6b:0f:03:49:c5:e4:0d:4a:7b:97:5d:
65:1a:6b:d3:5f:59:f8:8e:5a:cb:89:f9:2b:a6:9d:
cd:f2:6d:9d:28:64:f4:ff:f2:4d:40:9e:f8:d2:2c:
7b:a9:cf:7d:50:4a:69:a9:30:b4:72:03:a8:9c:15:
36:81:2d:9e:96:4c:60:34:05:a1:c6:6b:a9:5c:86:
06:92:17:59:3e:05:2c:98:ca:c3:b3:a8:50:6e:39:
b1:82:80:e1:1e:ad:fa:7e:03:00:79:98:b7:99:25:
d5:79:98:63:70:80:a8:06:de:f3:5e:98:71:b2:38:
3a:52:1e:52:1d:2a:48:68:7c:6e:8e:01:10:6f:b2:
60:0c:a6:19:f3:c6:0c:b3:75:22:e6:06:71:88:fa:
e9:99:ec:51:a7:39:39:3b:fb:77:59:85:23:61:f9:
a8:b2:70:fd:c5:98:ec:ff:dc:d0:81:91:06:a2:67:
de:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9D:F0:75:B6:CA:7E:7E:C8:D5:AB:AA:C8:5F:7D:5A:73:7C:BA:7F
X509v3 Authority Key Identifier:
keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:58:69:01:dc:19:d9:e0:68:bd:c2:9e:13:63:6d:e9:fe:f3:
07:9b:91:c8:43:49:82:fd:42:71:c7:81:09:8e:23:00:6a:04:
81:47:69:7b:1b:73:27:6b:19:bd:f4:f3:4d:9a:49:6c:52:10:
b4:35:ff:14:c1:2a:a7:86:39:76:99:21:64:40:ab:d3:75:75:
fe:91:70:46:6d:31:e1:20:88:32:7b:66:d5:05:56:31:d1:da:
16:05:18:66:5d:78:46:b4:70:db:55:4a:52:c5:1f:74:d9:68:
94:5e:96:9d:c6:ca:09:d6:37:d6:92:70:e5:fe:36:7e:e3:e0:
b7:2b:2c:e6:f3:09:34:ae:97:e7:3a:33:2a:20:0a:28:89:27:
e5:98:f7:41:ed:9c:64:ca:22:f1:96:b8:e8:14:be:d5:27:0e:
40:b0:35:fc:dd:c9:68:78:19:85:b5:94:12:0c:eb:cc:a1:23:
f5:a0:84:fe:cf:fd:f3:a8:6d:1d:f1:b7:07:ea:52:e5:10:94:
50:22:59:98:a1:3a:83:77:9a:fc:d3:79:1e:ca:72:79:51:41:
41:81:1c:4a:00:c4:a1:be:84:da:f3:78:a2:1a:9b:b3:37:19:
6c:53:b0:b7:6c:02:c6:7b:04:1d:12:cd:c7:94:3c:c0:45:1d:
a8:b8:97:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:42 2025 by rpki-client on console-fra.rpki-client.org