Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: gzBgh8xb9gY93lnxicqaYadxsL4fxU9gnFgCdLFhOVM=
Subject key identifier: D0:95:01:D2:B4:10:E0:43:B8:02:90:D6:FC:AD:AB:08:08:C9:88:38
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 0194C4D1332674E2C802119988D32FFB7E9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: B2
Signing time: Sun 02 Feb 2025 04:00:31 +0000
Manifest this update: Sun 02 Feb 2025 04:00:31 +0000
Manifest next update: Mon 03 Feb 2025 04:00:31 +0000
Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: 4Ql4FbzmDbC/PxVAQ8v+BLQ3UpJdvGNRLd16rFAPDw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:33:26:74:e2:c8:02:11:99:88:d3:2f:fb:7e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Feb 2 04:00:31 2025 GMT
Not After : Feb 3 04:00:31 2025 GMT
Subject: CN=d09501d2b410e043b80290d6fcadab0808c98838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b9:ad:25:bc:10:66:a7:08:d5:ae:81:d0:d0:
7b:a5:39:98:05:24:6e:e3:a9:7b:9c:93:e2:81:20:
a4:ad:b6:58:68:aa:40:02:41:4a:5b:a5:c6:27:01:
cc:4c:75:00:cd:8c:9d:a0:d6:31:0e:a3:74:1e:f3:
d8:42:ce:94:34:98:f1:a3:45:37:09:a2:3b:e8:dd:
48:f9:0f:23:4b:58:0f:01:21:27:f2:f7:8e:0d:ef:
67:65:6f:28:2d:0c:15:78:28:03:cc:4a:50:ca:b1:
d3:e4:b2:63:8e:a8:7f:17:50:3d:c8:5d:1e:a6:ac:
f9:f1:44:2b:48:05:bc:c3:aa:0a:40:d1:f6:52:55:
a7:ed:a5:72:2b:13:63:c6:e1:8f:bd:c6:db:62:ae:
ee:bb:0f:71:29:1b:13:5f:da:eb:0a:6e:c1:ca:92:
df:67:4c:5c:ce:70:be:a4:77:66:c5:36:22:6d:c4:
69:6b:18:63:87:8f:0a:86:4a:25:27:49:f5:52:9a:
68:7e:76:03:e3:82:76:84:ce:2c:56:ab:17:5a:1a:
c8:bd:24:96:93:4f:d9:05:4c:20:da:df:15:84:74:
14:38:84:26:07:48:3f:65:7e:61:66:93:d0:d8:d8:
75:79:c7:49:0d:51:e4:6b:b0:82:b4:c2:35:c6:48:
61:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:95:01:D2:B4:10:E0:43:B8:02:90:D6:FC:AD:AB:08:08:C9:88:38
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:e6:69:59:14:2e:0a:05:c4:4c:be:66:fd:0e:1b:c3:79:26:
e5:ea:7f:f9:d3:7b:91:cc:e2:f6:c8:f8:53:36:f4:14:cd:d3:
0f:de:ea:63:44:9e:e4:09:36:3d:9d:e5:ad:ef:2a:e5:f0:40:
c6:f0:ac:8a:85:16:e1:42:a2:8d:94:89:02:03:c6:e0:82:6d:
5c:8f:95:c2:e5:1c:ea:6d:5f:8a:41:25:2b:c3:17:2f:98:4b:
3c:22:87:b5:cb:75:80:93:be:01:39:c3:d9:0c:f2:d5:d4:e3:
75:46:dc:d0:63:e0:27:99:98:3d:e5:b7:56:d5:04:86:be:1b:
66:72:a6:3f:4c:c6:d6:9c:c9:0b:37:ce:be:54:82:f7:4f:5b:
28:f0:72:99:52:3a:1c:42:04:79:2f:24:73:5e:37:70:1f:f8:
67:d2:8c:fd:ff:4c:e1:dc:56:f5:85:43:3c:57:ad:68:9d:1b:
70:dd:bd:3b:e9:27:02:45:a3:ba:19:af:9b:7a:ac:08:8a:7a:
2e:86:4b:6d:8b:db:24:c6:e4:10:70:7d:c6:ef:a8:75:01:7a:
9b:30:7a:c5:3a:02:dc:e0:6e:aa:18:c4:a1:37:c8:7d:a3:33:
80:2d:81:2f:d5:98:3e:ac:5a:4c:6f:bd:2f:22:07:f4:b9:1c:
b8:24:c6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:57:00 2025 by rpki-client