Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
File: rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft (raw, json)
Hash identifier: /IhwGlVFO4YhAgBKt8P9+fFHXviE4iZc1Xu1GI8Mwsc=
Subject key identifier: 6E:7A:88:D1:45:B9:7B:67:3F:22:D1:D5:75:82:7A:F6:7F:89:79:AC
Authority key identifier: AD:D9:20:79:94:BA:9C:7D:91:EA:7E:47:9F:EF:D1:B8:09:9F:62:CE
Certificate issuer: /CN=add9207994ba9c7d91ea7e479fefd1b8099f62ce
Certificate serial: 0194C3876654686AADC68BABC219E353DB19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
Manifest number: 1438
Signing time: Sat 01 Feb 2025 22:00:18 +0000
Manifest this update: Sat 01 Feb 2025 22:00:18 +0000
Manifest next update: Sun 02 Feb 2025 22:00:18 +0000
Files and hashes: 1: rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl (hash: JWXEyda/vbPyrX4BBUoCimcG/A+rOA7Y6+n/jUriCU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:66:54:68:6a:ad:c6:8b:ab:c2:19:e3:53:db:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add9207994ba9c7d91ea7e479fefd1b8099f62ce
Validity
Not Before: Feb 1 22:00:18 2025 GMT
Not After : Feb 2 22:00:18 2025 GMT
Subject: CN=6e7a88d145b97b673f22d1d575827af67f8979ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2b:69:b7:8d:c8:f7:bf:ad:4b:4a:dd:83:df:
e8:43:f1:e2:aa:e9:85:b4:b7:78:ae:e7:71:f9:0b:
2e:66:0a:a9:3c:ea:f4:c2:fa:88:e2:1c:3a:6b:c0:
4b:da:19:65:12:b1:8f:ed:d6:a6:cd:05:bf:d5:52:
82:cb:f0:20:f0:28:17:5f:34:f8:7f:f5:bf:87:c7:
e5:5e:02:f2:2c:ff:a0:77:2f:ed:a3:9d:d1:90:5f:
05:62:ee:f8:af:f6:18:43:b6:9e:8f:67:8e:4e:60:
05:83:c4:cb:c7:10:db:28:3e:da:29:86:99:74:3d:
db:ff:95:f8:51:81:50:e8:53:a5:28:4d:07:4a:af:
ab:25:d0:27:95:71:9a:7f:f8:24:65:89:47:02:2b:
6e:2c:e4:db:7b:77:27:dd:a8:42:48:00:85:7e:96:
20:85:4e:09:ff:fd:29:99:28:96:33:9e:65:a4:52:
5b:24:13:1c:81:56:be:c6:15:63:16:6e:1e:58:34:
c5:34:08:85:1c:ea:53:d2:ba:52:0b:11:b9:ca:57:
bd:64:55:6a:da:4b:d4:54:44:c3:f6:e9:bb:ec:2c:
5e:a9:68:2d:35:68:fa:5a:64:75:6d:1e:75:5f:a5:
3a:7f:7e:3c:ac:53:89:b3:1d:db:52:63:41:76:48:
6f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7A:88:D1:45:B9:7B:67:3F:22:D1:D5:75:82:7A:F6:7F:89:79:AC
X509v3 Authority Key Identifier:
keyid:AD:D9:20:79:94:BA:9C:7D:91:EA:7E:47:9F:EF:D1:B8:09:9F:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:1e:be:3b:bd:46:45:db:16:ec:f1:14:4d:fe:0b:47:e7:5e:
b3:e4:dd:b1:74:cf:83:38:b3:69:96:08:78:63:55:7b:4c:12:
4b:35:61:e8:6f:23:34:90:0e:8c:d7:38:17:03:08:8b:36:22:
b8:c6:0d:3f:6a:d0:b6:8a:ca:63:a9:52:2c:39:8d:90:90:17:
3c:b1:26:b4:87:c3:e4:b4:7b:7d:53:4b:c6:08:0e:81:fc:4f:
e5:05:ed:76:29:94:90:f8:51:5b:82:36:97:ef:52:07:62:1c:
86:98:1a:7b:68:09:46:dc:e8:b5:ce:8a:a5:02:ae:7b:48:52:
ca:c3:41:bb:85:6f:e1:30:62:4e:84:15:96:cb:80:4c:f7:2f:
29:7d:9c:05:5e:4c:be:f1:50:8e:04:5a:34:8d:2f:5e:5a:79:
cd:7a:47:f8:ec:0a:f1:9d:79:b9:bb:2a:82:48:ce:42:18:5d:
dd:49:b7:08:4c:c2:b9:12:db:db:46:4d:cf:ae:93:ac:55:ca:
2f:0b:c6:90:c0:23:46:89:81:16:a8:04:6a:85:58:43:39:a3:
a8:f3:9f:1d:00:ad:c0:ca:34:8f:a0:ff:38:85:db:b1:da:6f:
5c:1f:3a:d5:11:c7:0e:23:5a:5d:fa:76:66:a7:9b:fe:81:19:
52:cb:f2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:06:25 2025 by rpki-client