Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: LGuiol9EhL9AJamxSXHqK/egRrbdQHJFrlKSiRY+nmQ=
Subject key identifier: 8D:D1:1D:7A:B9:43:FB:F2:8D:B3:AE:06:E2:10:46:88:50:21:1B:C3
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 0194C3F5B3B1C888BE1FD4ABC5B73BE54F6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 0CF3
Signing time: Sun 02 Feb 2025 00:00:46 +0000
Manifest this update: Sun 02 Feb 2025 00:00:46 +0000
Manifest next update: Mon 03 Feb 2025 00:00:46 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: Fv3LyGQ3WxRztqWt7RRHmMVFxMSdcDcSwbC03LnxZVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:b3:b1:c8:88:be:1f:d4:ab:c5:b7:3b:e5:4f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Feb 2 00:00:46 2025 GMT
Not After : Feb 3 00:00:46 2025 GMT
Subject: CN=8dd11d7ab943fbf28db3ae06e210468850211bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:29:11:d2:0b:77:fc:30:18:7c:49:e2:89:bc:
a4:24:19:11:55:b2:16:11:1e:62:14:4d:d3:e7:4b:
bb:2e:95:72:56:c2:4d:8f:ed:09:98:b4:41:83:15:
0d:0a:ad:64:85:14:ec:ca:8e:41:87:0e:6f:5e:e9:
51:a8:4e:e8:97:15:71:d5:2a:39:76:6d:8a:44:71:
c6:aa:af:a8:a9:50:73:26:b1:e5:53:40:99:80:01:
9b:1b:bd:cc:93:a0:5d:0e:f0:2e:5c:42:c1:3d:a4:
28:3d:af:c6:3e:a3:c0:b5:c1:39:ed:8d:02:4a:c9:
cd:a7:74:17:ce:a4:ae:e0:2a:77:bf:ca:25:a9:3d:
b6:ec:b0:47:cb:50:72:2a:5a:2c:b9:c0:2b:f5:59:
a7:61:a2:6d:96:5c:f0:37:83:12:af:0c:6b:30:2c:
d1:27:a1:80:45:59:ae:00:db:68:4e:cb:6b:61:80:
4a:4c:c8:d5:0a:f3:87:f0:3d:8c:ee:e7:69:82:43:
94:30:a8:cd:98:1e:a6:1c:8d:0d:cb:49:45:0a:d3:
07:07:29:f0:7c:56:6a:74:9b:b6:2f:48:6c:ba:d1:
c9:ed:b2:d7:15:ed:19:8f:06:21:56:77:da:98:08:
9a:ce:36:04:a9:4b:60:52:2b:03:74:d4:da:ee:d6:
f6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D1:1D:7A:B9:43:FB:F2:8D:B3:AE:06:E2:10:46:88:50:21:1B:C3
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:94:30:db:60:37:e9:d1:e0:6f:28:7d:43:da:3f:75:da:a7:
92:76:70:1f:d7:cc:bc:2d:96:ac:83:94:dc:de:5a:ee:51:58:
7c:f1:c0:c7:2f:30:11:a3:37:2a:b9:0a:37:c9:fe:b4:cc:4d:
d9:9b:45:cb:a2:03:5e:df:4b:ec:9e:6c:91:58:8e:fe:2e:f8:
8e:30:3f:67:9c:5f:bd:4a:9c:c7:a8:9e:6e:1a:18:74:b7:d1:
38:fb:39:67:37:f7:d2:d8:46:a4:0a:f4:e3:6f:c4:e2:7d:5a:
aa:2f:bc:41:5f:21:c9:41:b6:88:e0:7e:1f:33:3e:11:e0:04:
06:bf:a8:86:c1:fb:e5:91:98:73:ec:ea:81:be:55:a9:3d:82:
eb:88:6a:bd:80:85:9f:49:b0:ad:b7:00:de:6b:01:31:41:a2:
b5:14:e3:ad:86:7b:a1:12:4b:79:af:0e:e9:f0:62:34:e4:1a:
49:bb:38:32:b5:83:ae:6b:91:03:87:cb:b2:fc:45:22:6e:2e:
97:21:ae:74:e5:44:39:55:a9:3f:e2:40:12:32:61:70:1c:79:
2c:4b:37:a8:1e:c9:cd:17:31:19:ec:bb:60:dc:e6:45:99:c0:
05:f5:ad:33:47:a3:fa:42:ae:26:a8:d2:ca:99:af:cd:16:fc:
51:e6:2e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:42:40 2025 by rpki-client