Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File: UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier: VOR6b3qmlgGl0ImI1c5c0r5pkrS0gpLHAQcREzjz7qc=
Subject key identifier: 6F:CD:44:6B:DC:84:C0:A7:7C:76:BA:A1:EB:51:8E:CD:82:D1:8F:DF
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 0194BB5FD7C6360E83D751B93351988E2D96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number: 0B11
Signing time: Fri 31 Jan 2025 08:00:08 +0000
Manifest this update: Fri 31 Jan 2025 08:00:08 +0000
Manifest next update: Sat 01 Feb 2025 08:00:08 +0000
Files and hashes: 1: BfyClB3XmviPfJ6xZ2InO7FtLcs.roa (hash: 3EeV7dZbc++zjvyl5M1yeUuYRy/Llocvb96yJLQ1iig=)
2: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: uiRC0SxkyEjdk4MNFVwWFxuVHnDNFhvaUB6d9THSXj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:d7:c6:36:0e:83:d7:51:b9:33:51:98:8e:2d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Jan 31 08:00:08 2025 GMT
Not After : Feb 1 08:00:08 2025 GMT
Subject: CN=6fcd446bdc84c0a77c76baa1eb518ecd82d18fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f9:50:32:33:70:d9:a8:73:60:76:65:b1:9e:
37:1d:d1:d7:df:7c:cf:01:2b:46:a0:26:3b:8d:69:
56:82:b5:fa:a7:30:27:fc:62:e3:9c:04:0b:45:77:
2b:20:29:3c:55:c6:78:73:c1:c7:84:7c:de:73:f9:
4f:aa:82:b2:60:c4:1f:fb:3a:0f:cc:2d:07:61:d4:
96:f7:0c:77:36:ae:6f:64:6d:03:d9:22:86:79:53:
05:ea:cf:c7:5b:b3:8f:ae:58:ee:b8:0a:e8:11:0d:
1d:77:f3:d6:23:0f:cf:fd:90:76:e0:05:a6:4c:9f:
f1:c8:d5:62:38:b9:34:24:2e:6f:da:f9:2d:ea:73:
3f:d7:bc:d5:96:07:47:a4:ea:d7:3b:0d:f0:3d:91:
3a:71:ca:02:e0:00:02:56:9f:2b:ac:04:68:26:63:
bf:2f:84:92:05:12:db:ae:61:37:c5:b4:0e:e7:c9:
91:8c:f7:6c:52:24:fe:6b:21:92:cf:bf:49:4e:36:
c8:a7:0d:48:c5:2b:fc:a9:27:99:bf:4d:a3:4a:3d:
6b:01:77:b2:ab:43:d3:c2:0e:41:bc:2c:b6:8d:bd:
d2:37:e7:e8:ef:3c:13:01:ae:e3:76:ed:33:bb:17:
9b:eb:d8:03:e2:51:bc:31:c9:9c:f2:05:c9:82:b8:
f5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CD:44:6B:DC:84:C0:A7:7C:76:BA:A1:EB:51:8E:CD:82:D1:8F:DF
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:52:e5:4d:83:0e:aa:5a:db:87:fc:21:31:b9:88:a3:e2:4e:
25:ac:0d:a9:a3:21:5e:db:b3:f9:ff:32:63:6a:40:0a:53:72:
23:79:fa:14:9e:d8:e9:f3:91:34:81:72:22:3c:ea:ce:10:5b:
27:0d:55:1b:20:bb:43:9f:c6:9e:a0:fc:39:d3:7c:46:76:49:
38:ce:de:5c:fa:39:08:62:15:fb:1e:0c:68:20:db:99:8f:db:
f6:6b:30:79:ad:39:35:0b:47:41:68:af:43:09:b3:bf:cc:04:
61:18:da:a5:31:d3:42:53:2d:c6:a4:81:2e:42:6d:32:bf:8c:
69:0e:67:98:96:45:88:15:29:c5:14:b3:bf:8e:f2:9f:e7:f2:
1a:92:a2:61:8b:0a:f1:16:48:7f:fe:c3:fd:78:a6:41:ae:32:
0b:ae:d0:70:77:10:02:ce:56:f6:11:72:bd:cc:94:e6:a4:fc:
ba:52:90:38:aa:b6:34:c0:8d:fc:b9:8a:6b:25:f3:29:6f:bb:
96:2f:88:1b:5e:f2:5c:77:a1:2f:02:e2:cc:f2:c5:b5:d4:5e:
7a:b8:ba:b5:d1:a8:c2:59:fb:9f:07:a1:51:2f:cc:cc:3c:49:
89:01:63:01:9d:9f:13:b3:af:68:a9:9a:0e:87:dc:22:f8:9d:
15:57:b4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:43:59 2025 by rpki-client on console-fra.rpki-client.org