Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
File: ofM7gYxgo6zGnzmgsuDuqrttk-A.mft (raw, json)
Hash identifier: 3XPQY+HOG6CSmc1c8JPxlca52w/ctSuUa5a180snvNo=
Subject key identifier: F8:4C:0C:D2:28:10:88:D3:55:BB:F3:DF:39:B0:93:05:C0:85:6D:22
Authority key identifier: A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
Certificate issuer: /CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Certificate serial: 0194BB28E6677F4930686D477D1A20CD3EF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
Manifest number: 1070
Signing time: Fri 31 Jan 2025 07:00:07 +0000
Manifest this update: Fri 31 Jan 2025 07:00:07 +0000
Manifest next update: Sat 01 Feb 2025 07:00:07 +0000
Files and hashes: 1: ofM7gYxgo6zGnzmgsuDuqrttk-A.crl (hash: 3VKFi1bB8LDpWJr2dmPMfcRI6x7VsM/nO2yRlxjUzLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:28:e6:67:7f:49:30:68:6d:47:7d:1a:20:cd:3e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Validity
Not Before: Jan 31 07:00:07 2025 GMT
Not After : Feb 1 07:00:07 2025 GMT
Subject: CN=f84c0cd2281088d355bbf3df39b09305c0856d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:6e:83:4e:f5:0c:33:51:68:88:be:79:b2:b6:
72:f4:13:5a:50:59:08:1c:eb:d0:49:d2:99:3c:c2:
c9:ca:0c:80:ed:b5:76:e4:15:de:8c:3e:c6:50:0e:
15:43:49:0c:aa:f2:fd:db:f5:85:57:01:82:17:a3:
ba:bb:89:0b:8f:51:b1:5e:8a:6a:22:ba:44:25:e4:
cc:5b:fa:62:66:f7:ce:91:d8:36:0b:b6:d5:7f:a6:
ec:b5:57:bf:09:64:c9:58:0b:dd:ec:74:ab:66:ef:
03:1a:75:32:78:98:17:f5:08:e1:98:40:21:6b:f1:
ad:5b:75:94:11:7c:b7:f6:95:54:1b:a4:23:a2:b6:
c9:7c:45:c4:f8:86:0d:d5:1b:48:7a:72:df:e0:d9:
5c:31:54:a0:29:2a:59:7a:a8:80:96:ec:55:79:82:
bc:ae:cc:fe:ee:81:f7:60:d6:58:c0:de:e8:2b:4b:
ab:1e:89:d6:60:39:10:ac:8c:db:0f:0a:22:ce:b0:
a6:e7:b4:77:97:d9:5e:4e:09:fb:90:79:24:d0:6e:
7e:4c:45:40:9c:50:7f:11:ee:dd:bc:54:0d:50:22:
e2:df:ff:ec:69:34:22:0b:8d:b2:e8:50:7e:13:ed:
0a:df:e5:d5:34:86:30:71:38:6e:e4:eb:ad:37:08:
a5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4C:0C:D2:28:10:88:D3:55:BB:F3:DF:39:B0:93:05:C0:85:6D:22
X509v3 Authority Key Identifier:
keyid:A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:22:e8:ca:68:a5:6d:c6:29:f4:db:ec:dc:9c:a5:2d:d0:c5:
55:e0:96:d3:6f:61:a3:f6:9e:d8:19:fc:03:d1:80:73:c4:c4:
2f:45:7d:4c:b1:60:3e:c9:2c:ae:28:b9:ee:e5:65:89:37:d9:
76:e8:5c:bb:4f:a1:63:ed:62:63:7b:bd:c4:1f:7d:a8:81:58:
6e:0c:bc:3e:3a:fb:7f:69:6f:41:85:26:f6:60:4e:82:63:d1:
3a:8e:0a:59:b0:2b:22:64:b6:79:68:1d:af:fe:57:6d:19:76:
70:29:66:50:7c:fd:3a:4c:d8:05:42:b2:ec:2d:93:b1:e1:01:
04:d2:ff:ff:24:b5:4b:12:83:b6:f0:8b:ca:e4:6f:42:44:ff:
33:84:91:27:09:d6:57:e8:5d:94:65:c3:47:61:f4:f3:86:d2:
af:03:a2:4b:8c:26:3f:47:7d:23:db:06:2f:74:00:a8:fd:3a:
83:cc:61:57:7a:de:6f:fe:55:61:85:16:79:34:10:f6:92:20:
21:1a:75:7e:cf:64:64:db:7d:84:9c:ec:da:22:45:7d:cb:79:
7f:76:25:6f:42:60:0c:a8:9b:78:af:60:6c:e7:a2:87:c9:a7:
6b:14:3f:4a:bf:63:0f:7d:7e:61:99:56:fc:84:74:d7:d1:43:
04:af:b5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:44:59 2025 by rpki-client on console-fra.rpki-client.org