Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
File: S21-pBAzg38IwoxHQphLgrj0Q98.mft (raw, json)
Hash identifier: rvuLyTGAgBiSeE5lHeZj8R0eWBa3EZYdmA3zGsZTvSE=
Subject key identifier: EE:0B:0A:15:C4:15:D9:F1:EB:0B:7E:04:03:B4:E7:D0:72:72:B5:A1
Authority key identifier: 4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
Certificate issuer: /CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Certificate serial: 0194BB291010C687410C699622C8B919A7D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
Manifest number: 105A
Signing time: Fri 31 Jan 2025 07:00:17 +0000
Manifest this update: Fri 31 Jan 2025 07:00:17 +0000
Manifest next update: Sat 01 Feb 2025 07:00:17 +0000
Files and hashes: 1: R0-_LF6KU0ufBdJHLr5D2OsCZsM.roa (hash: 9atL02W0zWCgguNUrFQhgbOUdRY0kP2jIZbv6fAlg2k=)
2: S21-pBAzg38IwoxHQphLgrj0Q98.crl (hash: 9t9QtMr7o1IifzYKwzfVM8V1YsID7NaGepaKD1i+FJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:10:10:c6:87:41:0c:69:96:22:c8:b9:19:a7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Validity
Not Before: Jan 31 07:00:17 2025 GMT
Not After : Feb 1 07:00:17 2025 GMT
Subject: CN=ee0b0a15c415d9f1eb0b7e0403b4e7d07272b5a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:74:44:81:b1:d4:00:6b:dc:a1:01:c9:95:27:
31:c2:a4:c5:59:48:42:bd:f1:a2:4f:a1:d4:df:cf:
35:f6:f6:5f:aa:82:5e:a3:af:df:f1:b1:c9:a3:96:
0d:1d:bc:2c:ed:39:1e:ef:ea:fe:c7:25:81:2b:e8:
3e:1d:8c:bd:0f:82:f1:7f:5f:bf:79:e5:6b:41:22:
e9:ab:38:10:8c:7f:d2:ac:37:b6:45:1b:be:f6:42:
b8:bf:e2:26:35:b5:92:66:65:18:fa:ad:bf:9d:7f:
2a:e7:91:60:84:3b:36:45:81:54:e1:92:fc:4b:83:
c7:72:c1:fb:d4:eb:6f:23:5e:46:2b:15:d6:62:07:
1f:97:39:03:55:da:99:43:67:6c:9b:3e:8e:2a:6b:
a9:b8:80:ac:11:9f:bb:34:b9:8a:60:62:9b:8c:eb:
05:82:bd:b8:84:1f:fc:22:39:d1:db:93:48:03:cf:
41:a2:d3:8e:dd:49:cd:0e:3b:ef:58:a8:70:09:0f:
5e:77:af:04:7b:2c:21:ad:e5:8b:6a:64:e2:61:af:
0f:e6:03:5d:f5:db:4e:fb:77:af:ac:58:a4:43:31:
dc:6b:93:02:26:7b:f4:a6:57:b3:3d:34:4c:17:4e:
cd:ad:3a:44:44:a0:54:d8:9c:21:e2:1f:a3:cf:29:
15:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0B:0A:15:C4:15:D9:F1:EB:0B:7E:04:03:B4:E7:D0:72:72:B5:A1
X509v3 Authority Key Identifier:
keyid:4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:19:51:ce:60:6e:d5:cf:dc:0f:96:2a:75:61:cc:f7:43:03:
bc:d7:12:f9:ff:d4:53:98:04:5c:09:c0:3e:c6:0f:e4:e0:d6:
9d:53:70:57:8f:7f:a6:8a:35:55:30:e0:68:7e:60:3e:a1:45:
fc:16:4d:91:98:e9:b5:b7:a4:e9:3f:e7:ca:11:18:65:58:8a:
12:bf:6d:0e:20:ff:fe:62:bf:84:91:5c:3e:e9:d8:62:72:de:
27:27:f4:bc:64:dd:93:a6:14:c5:30:72:0a:99:8b:86:5c:38:
30:97:58:4a:bf:6a:56:79:98:46:24:e2:22:ab:8b:dc:a6:67:
9a:0f:2b:1e:14:96:4a:64:94:fc:54:09:60:06:29:35:09:0f:
9e:9d:9b:dc:3a:95:82:22:e8:6d:0f:9d:a6:f6:9e:f8:17:cb:
72:fe:5a:66:bf:9d:cd:3e:aa:5e:5d:e5:87:db:e0:9b:3f:74:
e4:5e:d9:62:4d:d6:84:ea:d9:be:a9:55:14:0f:e1:1d:dc:c0:
31:8e:a5:6e:75:60:ed:d4:e4:9b:fa:d6:c8:0a:2a:90:1b:d9:
27:e5:64:f0:d6:a3:a8:8b:67:e6:22:b6:6c:64:66:54:f4:6e:
57:b0:03:5f:1f:7d:a1:08:40:c0:30:a2:bc:ca:f0:cd:78:c7:
34:0a:55:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:45:10 2025 by rpki-client on console-fra.rpki-client.org