Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
File: KiZGBSRa8gGcKTw3KPal4lXYnyU.mft (raw, json)
Hash identifier: 4r1MxKBNAlg0hAfccP+0/JGfWluzqO8JmIDxgsXc98A=
Subject key identifier: A9:2C:35:1B:F0:5A:A0:23:B7:6E:9B:3C:B8:2B:3F:8A:3D:96:13:93
Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25
Certificate serial: 0194BABB716D888FC03EE0B6872C75D47D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
Manifest number: 1429
Signing time: Fri 31 Jan 2025 05:00:33 +0000
Manifest this update: Fri 31 Jan 2025 05:00:33 +0000
Manifest next update: Sat 01 Feb 2025 05:00:33 +0000
Files and hashes: 1: 3KSN_k3KfyRIpkOpKsbbz9Bqq5E.roa (hash: iHgOduhUsida+9pHg8iFsStpH/s/1dREHiJkoJW0aww=)
2: KiZGBSRa8gGcKTw3KPal4lXYnyU.crl (hash: 5jKZv8z0NSC94Zs8rrL1TxYq8fvMXGskNcNlP1KaRgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:71:6d:88:8f:c0:3e:e0:b6:87:2c:75:d4:7d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25
Validity
Not Before: Jan 31 05:00:33 2025 GMT
Not After : Feb 1 05:00:33 2025 GMT
Subject: CN=a92c351bf05aa023b76e9b3cb82b3f8a3d961393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:40:41:6c:db:44:9b:74:c8:0b:67:ab:2c:86:
fd:f3:a0:01:6f:f3:52:3a:23:a6:ee:52:5c:54:63:
11:33:96:8a:46:9a:b8:a5:18:7b:a6:fc:12:31:e6:
b7:c2:d8:91:24:7c:45:b0:e6:a1:fa:d9:11:67:5f:
f4:98:39:e5:7a:42:4e:f4:6b:13:f9:4f:0e:99:b7:
7e:4d:46:f5:bf:61:28:20:51:e2:41:56:9d:db:7b:
26:cd:5d:ef:a6:56:c1:7f:c0:06:ff:32:ad:a2:33:
a8:ab:9d:4e:a6:86:eb:b4:dc:30:9b:03:38:88:e5:
ae:61:87:53:66:fa:55:34:56:10:a3:bb:4c:23:55:
36:c8:4f:bf:86:d3:45:f3:0e:24:ce:b9:c2:ff:be:
34:bf:26:13:af:f8:17:f1:0b:3e:4d:77:7e:2a:4d:
c0:b7:a6:13:ea:58:74:a1:2c:b2:32:ed:d5:b1:e4:
59:e9:80:c5:4d:7b:d7:fb:90:69:c6:ba:ed:9b:d4:
17:27:20:a0:66:83:da:8d:eb:d3:28:53:41:c1:76:
ad:fc:73:ea:85:83:13:a4:0a:50:f9:a0:59:7c:fd:
da:36:f3:4c:bd:59:6a:49:a6:4c:1c:78:17:31:30:
5d:46:ad:3a:fe:af:ef:d3:1c:44:96:0c:1f:1a:7f:
82:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2C:35:1B:F0:5A:A0:23:B7:6E:9B:3C:B8:2B:3F:8A:3D:96:13:93
X509v3 Authority Key Identifier:
keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:7d:05:99:ab:58:12:28:ce:af:89:ec:f0:f8:16:bf:cf:0c:
05:10:84:51:e0:84:80:ab:53:f1:52:f5:2f:2b:64:12:cc:80:
59:aa:0b:1e:c3:97:2b:af:a3:97:d4:86:db:9e:5b:f3:82:a8:
8a:52:77:1a:fe:67:5a:f9:44:21:d1:ff:c1:42:91:a3:22:b1:
a9:18:a9:c3:f9:dd:5f:1b:e7:df:41:0a:e3:7b:dc:29:99:3e:
e9:27:ee:b5:89:3b:51:37:6c:f6:94:8c:ae:53:04:ce:01:45:
60:66:b4:7a:05:ee:08:e2:e1:40:2b:c6:48:40:fc:4b:7d:29:
cf:ca:53:b6:d5:04:bd:d3:2f:3b:51:ff:bf:84:81:ae:ca:9c:
d8:4e:02:90:68:dd:e4:50:50:ff:cd:cf:fe:d1:47:78:15:1f:
35:c1:f5:5b:34:83:3d:ff:45:28:ff:e6:6b:c3:5d:57:13:ed:
8c:73:8d:6c:a4:ff:17:7f:69:e1:64:7e:1f:71:67:2f:13:a9:
1c:e2:d3:8a:e1:9e:e8:b3:11:af:08:39:e0:10:2e:b1:91:85:
c8:2c:67:ae:2b:a9:9d:59:2e:03:3c:71:16:1a:41:d6:fb:c3:
0e:89:66:1f:92:ba:30:ed:fc:53:5d:2f:d0:a2:72:77:fb:74:
1f:5c:41:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:22 2025 by rpki-client on console-fra.rpki-client.org