Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
File: zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft (raw, json)
Hash identifier: 7jVIqUnF7mH9k6Wmx5lvsFA7M/LrsMCoIF8DTa+Go6E=
Subject key identifier: 3D:77:11:54:1A:F2:F4:95:7A:AC:14:C2:B4:05:32:2A:19:D5:99:AA
Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Certificate serial: 0195127E8FC0C045FB299D636C2F40C0BD59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
Manifest number: 0DD5
Signing time: Mon 17 Feb 2025 06:00:39 +0000
Manifest this update: Mon 17 Feb 2025 06:00:39 +0000
Manifest next update: Tue 18 Feb 2025 06:00:39 +0000
Files and hashes: 1: 1r-YWbxqyiaEeQQe7XhCESQq4-A.roa (hash: whgT3ej9YeVcd8f315sOoiAQXSfv+O+qM97fjItvC5w=)
2: zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl (hash: +TM2ayh1u1Etf7a7BgE/RplCvlY6Z1kUtgVVSIFUIXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:8f:c0:c0:45:fb:29:9d:63:6c:2f:40:c0:bd:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Validity
Not Before: Feb 17 06:00:39 2025 GMT
Not After : Feb 18 06:00:39 2025 GMT
Subject: CN=3d7711541af2f4957aac14c2b405322a19d599aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:69:48:16:43:eb:90:13:d5:63:7c:a1:b2:26:
67:0c:59:52:6f:7b:6b:54:7f:c2:05:84:f4:2b:4d:
4b:fb:a7:c1:0e:1f:8f:e1:00:8e:f9:04:d4:f3:78:
1f:75:ea:47:a7:4e:b2:a8:69:54:47:7d:dc:58:1f:
02:d6:7e:d2:6d:15:0e:56:28:11:6e:ba:39:4e:53:
2f:5a:de:a7:95:bf:93:c9:4c:26:b9:88:dd:85:43:
54:36:4b:74:66:1a:4a:f9:c5:42:3f:a5:6b:3c:0b:
08:5f:dd:2b:2d:c5:93:25:08:6a:c0:a1:aa:d1:9f:
fb:dc:8f:e9:aa:24:e2:58:8d:52:d5:77:36:a0:95:
99:75:7b:01:90:74:be:ce:50:7e:51:18:b8:52:c8:
74:f0:91:6a:0e:6b:cd:c8:c8:a3:42:3e:ab:b6:49:
04:4c:0f:2a:bd:d1:57:2f:a5:0f:5c:c6:72:2a:9a:
d9:84:42:31:2f:e2:2d:d0:d0:71:89:1c:b0:cf:6d:
60:cb:79:06:ab:80:00:63:76:8c:de:79:0f:9e:96:
de:36:02:d0:74:80:e0:64:0d:50:19:a2:0e:04:ad:
5f:5b:3e:41:69:e6:12:d0:ce:00:75:40:ca:94:70:
6f:50:b4:ab:a8:21:b2:d5:86:6a:0b:24:c8:1d:3e:
98:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:77:11:54:1A:F2:F4:95:7A:AC:14:C2:B4:05:32:2A:19:D5:99:AA
X509v3 Authority Key Identifier:
keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:0b:be:90:9f:53:f0:08:92:e4:1a:a4:fa:c8:98:33:de:9e:
5e:9b:a6:2b:14:42:7c:d2:4f:23:61:94:01:30:db:74:22:a9:
9a:13:58:98:69:8b:61:b7:66:6f:ab:f7:7e:10:69:23:39:04:
7e:ae:f4:d0:b7:dd:30:df:9e:0d:af:88:2a:7b:7b:fe:cd:2c:
f0:b2:6b:04:80:23:17:11:d5:c1:c3:07:a2:a9:7f:29:78:b1:
13:65:23:37:54:a6:38:f4:8c:b0:eb:74:77:34:3d:47:28:9f:
a8:d8:ae:6f:48:41:b8:9d:79:46:60:6f:93:32:5a:c4:d6:03:
ea:b8:7d:9d:53:67:2b:e1:36:b3:4c:05:94:23:94:eb:70:4d:
6f:cd:55:7a:26:dc:0e:29:c0:6e:5f:eb:49:61:96:55:d7:fa:
c5:1d:21:da:ed:96:5d:bb:68:03:a1:80:a5:5e:9a:23:1f:91:
71:ea:00:25:5d:e5:0c:df:f5:24:ab:9b:f4:7f:e0:ad:18:8c:
f0:f7:ac:29:fe:85:1b:2b:b7:fc:0e:db:11:4a:e6:b6:6e:ff:
b8:6a:f9:0a:87:18:c5:d7:d7:15:fd:6f:90:11:35:1a:cc:4b:
91:20:34:22:26:e1:35:39:7e:2e:38:dc:fb:d1:a4:9c:68:65:
f2:85:f0:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:46 2025 by rpki-client