Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft
File: H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft (raw, json)
Hash identifier: 3htVGT2bVPFrv/uAiQgsdimT8ouf6NKaxNfYdOTwr78=
Subject key identifier: A6:FD:62:0C:55:DE:47:11:FC:C7:88:23:8E:18:E8:EC:28:12:43:58
Authority key identifier: 1F:89:7D:BF:F0:1A:FD:9D:1E:77:B6:F9:FE:08:D9:77:42:F5:6D:32
Certificate issuer: /CN=1f897dbff01afd9d1e77b6f9fe08d97742f56d32
Certificate serial: 0194BB2933E071FA852C289F3A70BD29F433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft
Manifest number: 0198
Signing time: Fri 31 Jan 2025 07:00:27 +0000
Manifest this update: Fri 31 Jan 2025 07:00:27 +0000
Manifest next update: Sat 01 Feb 2025 07:00:27 +0000
Files and hashes: 1: H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.crl (hash: /jvZhBJ5XfjAboFJhZLvFFqSrc5LbZGrPPtggDtUeeI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:33:e0:71:fa:85:2c:28:9f:3a:70:bd:29:f4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f897dbff01afd9d1e77b6f9fe08d97742f56d32
Validity
Not Before: Jan 31 07:00:27 2025 GMT
Not After : Feb 1 07:00:27 2025 GMT
Subject: CN=a6fd620c55de4711fcc788238e18e8ec28124358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:93:12:ee:2e:f4:2d:b6:16:5c:39:3c:5d:4b:
8b:7c:62:f4:2c:f8:20:be:10:ea:e3:f3:3a:5d:32:
0a:ea:57:9b:58:3e:98:3b:56:d4:dd:d4:97:bf:a3:
e6:a9:72:12:d1:22:c5:2c:e4:2e:c1:a0:5c:a7:07:
1a:2c:e4:47:a3:f1:a2:78:72:a5:1f:b7:97:0b:36:
0f:f7:18:e3:f6:4a:93:28:7a:2d:e0:60:1f:fb:98:
df:3c:85:7b:23:a9:bf:dc:1b:b4:82:a0:62:ad:2d:
29:29:ed:55:d9:77:f7:d8:48:1e:b9:d5:25:3c:35:
fc:94:2f:a2:f7:c0:97:45:c7:c3:e3:16:d2:54:f3:
4e:f7:66:48:99:5d:57:17:fd:dd:b3:f9:c0:49:02:
d8:40:83:46:01:1c:66:b9:56:bf:f7:29:0d:a4:00:
45:1e:ab:cd:99:36:55:76:c9:98:44:c5:47:fc:f0:
44:bc:67:65:4b:da:97:2b:f4:09:90:17:f2:aa:0d:
b4:d7:0b:68:8c:f1:de:c0:80:e6:ca:66:c7:93:8c:
e4:8b:f9:8d:44:bc:0a:f2:3c:e4:22:da:87:ae:18:
51:1e:4f:d0:f8:35:82:1a:55:88:61:04:f0:5f:42:
5e:f9:95:15:b6:b1:0e:60:8c:d9:5b:53:46:8f:3c:
15:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FD:62:0C:55:DE:47:11:FC:C7:88:23:8E:18:E8:EC:28:12:43:58
X509v3 Authority Key Identifier:
keyid:1F:89:7D:BF:F0:1A:FD:9D:1E:77:B6:F9:FE:08:D9:77:42:F5:6D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:86:f8:11:1e:b5:66:1d:3d:97:e3:e5:82:69:c3:d9:a3:ab:
4e:40:58:a4:a1:fa:a3:80:38:ea:6d:d9:c8:9e:22:3e:35:3d:
0f:7a:17:18:44:5a:bc:55:12:eb:64:c8:c2:b9:1b:47:ac:ed:
8e:38:3a:d9:1d:8e:32:bb:b2:c9:58:57:5a:60:94:5c:a5:74:
a1:4d:be:c7:97:84:77:a5:92:a9:8a:d7:d7:2a:18:bc:da:a0:
24:f3:e3:34:4d:7f:4e:85:a4:ed:d2:f0:38:cb:f7:e5:db:c2:
9e:d7:5a:14:06:4f:eb:c1:52:16:24:58:df:05:de:14:eb:0a:
e2:29:1e:2b:f1:2f:04:ce:2b:c4:a7:ee:d8:38:fa:44:df:f5:
e4:83:ed:1d:6b:7d:eb:1d:4b:22:de:f3:e8:ec:d2:7e:ca:43:
45:c4:89:48:23:97:d0:02:96:e9:83:dc:69:45:28:a3:32:cb:
db:4a:1a:3e:cf:44:c6:ce:e1:99:62:a1:37:3e:f5:ab:9e:e2:
01:22:26:e3:2b:d9:89:b8:c6:0b:89:21:9e:6e:42:93:ae:35:
3a:c5:39:02:d4:6e:de:6a:4b:12:78:f0:61:02:ac:d2:74:83:
d0:6e:e8:bb:a9:46:2d:3a:c8:96:bf:15:99:f9:eb:e0:18:bf:
14:c5:b3:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:36 2025 by rpki-client on console-fra.rpki-client.org