Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: 6VYpU0sDoPtVKTKXENRuWCu2mic80HFiPvml/oIYUfY=
Subject key identifier: DE:F6:FF:87:F9:E5:D1:4D:79:A5:EC:19:76:81:3B:7E:BC:89:39:62
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 0194BABB6448FD9AE19A41C35784508AED2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 08B9
Signing time: Fri 31 Jan 2025 05:00:30 +0000
Manifest this update: Fri 31 Jan 2025 05:00:30 +0000
Manifest next update: Sat 01 Feb 2025 05:00:30 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: He8/V398S2MNHvL3rMA78QCOW88imnKBQitgpwrp9YY=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:64:48:fd:9a:e1:9a:41:c3:57:84:50:8a:ed:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Jan 31 05:00:30 2025 GMT
Not After : Feb 1 05:00:30 2025 GMT
Subject: CN=def6ff87f9e5d14d79a5ec1976813b7ebc893962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:0b:b7:40:16:1d:ec:e4:99:fa:33:5a:21:
4f:80:4a:db:b1:bc:88:f7:25:2c:6a:3b:74:89:ab:
0d:87:d2:da:21:a1:79:bf:5d:f3:ae:0f:90:eb:30:
de:cd:90:dd:80:94:89:44:a9:66:5f:d7:c0:df:c7:
ab:49:bb:b2:e2:b6:20:c9:62:95:00:9b:23:11:ca:
cb:f7:4c:34:e6:29:97:6f:b4:db:cb:53:12:00:98:
1c:ea:69:e1:3d:5d:c5:1c:03:77:e9:6a:c8:51:be:
75:37:c7:9f:d0:c9:ef:dc:75:b1:1d:dd:75:fb:a3:
17:27:f9:9f:77:49:6e:de:8d:55:d1:81:f6:10:ad:
f7:85:96:75:d0:a3:8c:46:43:f3:93:e5:93:e8:61:
d2:cb:7b:94:dc:00:50:30:5c:a8:29:55:3a:91:92:
6e:98:a9:9c:d5:06:01:1b:17:57:37:97:0b:07:d6:
64:f0:33:3a:23:a2:45:77:e4:e8:17:48:94:94:98:
7f:99:f1:0c:c8:b3:80:a0:ff:09:09:dc:b0:61:62:
84:99:61:4c:ae:40:1b:ea:9b:8b:74:31:91:6c:f6:
af:7d:97:63:ed:18:2b:04:68:c8:d5:e6:d4:05:c4:
8b:6e:e8:fd:d3:22:19:0d:08:8d:f2:fb:dc:3f:2f:
df:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F6:FF:87:F9:E5:D1:4D:79:A5:EC:19:76:81:3B:7E:BC:89:39:62
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:06:35:22:26:86:d6:d4:f2:e9:0f:cb:26:15:65:26:1f:88:
75:64:8c:e6:2e:f2:19:ab:70:ff:30:96:f9:ca:f0:21:86:77:
ef:50:be:59:fd:4e:e5:65:29:a8:1c:17:ae:b7:71:eb:03:3f:
b3:1c:ee:52:88:4b:bf:23:d7:66:75:f9:4a:cc:aa:2c:23:60:
4b:de:c7:af:5e:01:f8:5c:09:6d:04:1d:0e:47:1e:ce:ee:e9:
03:69:9a:ef:d2:b7:cc:37:51:cd:20:4b:4b:a5:22:57:55:3e:
08:69:b0:12:d8:3f:4c:99:de:5a:56:d9:d7:00:ee:1e:f9:e3:
bd:69:ce:51:4d:4c:fd:3b:15:4f:8d:c3:68:f3:54:33:ed:3b:
f0:17:11:b1:e0:62:52:30:1e:af:39:88:e5:34:f3:db:8a:dd:
f4:c4:96:74:fe:65:de:e8:39:40:2b:dc:5d:85:53:0e:a2:41:
ce:00:7c:ad:83:c2:1c:88:b9:6b:2d:1a:f1:34:89:f8:2a:23:
09:95:ae:2a:98:7e:93:75:4e:10:b1:f9:cf:50:94:b9:bf:8c:
9e:e3:e5:c8:3b:5b:a6:cd:7f:51:a0:b7:81:14:61:41:95:5c:
40:e0:ed:2e:c0:50:98:ba:35:96:0c:b6:97:1f:ed:10:7f:37:
37:40:29:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:51 2025 by rpki-client on console-fra.rpki-client.org