Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
File: ZKDbECcDCCx8pVSrtbInYAGNVj8.mft (raw, json)
Hash identifier: 2Qc3YgmJqkGIXH8q21gScjs7Ctl3KwFaATP/d6MZDJw=
Subject key identifier: E0:00:5E:C8:22:C1:C7:4F:C0:80:43:D6:16:E2:68:6F:2D:02:8B:BE
Authority key identifier: 64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F
Certificate issuer: /CN=64a0db102703082c7ca554abb5b22760018d563f
Certificate serial: 019510FDF0EA81FFF2015F65FCB20BA6646A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
Manifest number: 1457
Signing time: Sun 16 Feb 2025 23:00:32 +0000
Manifest this update: Sun 16 Feb 2025 23:00:32 +0000
Manifest next update: Mon 17 Feb 2025 23:00:32 +0000
Files and hashes: 1: ZKDbECcDCCx8pVSrtbInYAGNVj8.crl (hash: jgJ4946r+o7dffgS2zfCEWaj+Np2sjYUM++5sL7Ez4Y=)
2: tClIzpB8AXYvJfeCisA8HxpOd74.roa (hash: sXbqNinLjTETFbK42QOaktsLVCyYHDlotZvPtCRaxBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:f0:ea:81:ff:f2:01:5f:65:fc:b2:0b:a6:64:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a0db102703082c7ca554abb5b22760018d563f
Validity
Not Before: Feb 16 23:00:32 2025 GMT
Not After : Feb 17 23:00:32 2025 GMT
Subject: CN=e0005ec822c1c74fc08043d616e2686f2d028bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ae:48:a0:3c:3f:99:84:37:48:29:db:85:ec:
44:4a:ee:cc:28:61:4f:8e:99:4e:7f:62:13:8f:bc:
ae:17:e0:a5:19:82:83:ce:9c:10:b3:b2:29:72:04:
b5:d7:d0:ff:62:3f:b6:8a:a6:cc:dd:60:51:d4:c2:
ec:2f:b4:51:74:05:eb:b2:44:45:17:4c:a6:61:5c:
b8:25:42:40:f0:17:70:c9:d0:80:34:30:66:75:66:
e1:20:a6:b5:9c:4e:13:0f:87:22:55:3c:2b:9e:3b:
7b:6c:8d:7b:b2:90:45:72:ea:d8:02:fd:3e:23:6f:
b5:28:03:55:28:50:cb:ad:bc:19:02:4b:14:3f:27:
c0:6c:11:d2:18:0f:a6:e8:5e:9e:f9:4b:05:d9:64:
53:d3:19:22:60:40:d7:07:7c:54:e4:8a:29:7f:37:
b9:5e:77:0c:ef:a9:63:37:98:54:9b:63:32:5b:eb:
26:b4:e4:f7:74:b8:ba:63:4f:e5:e0:ba:e2:4a:34:
87:a8:52:c4:79:2b:a5:d2:1a:a7:55:0a:ac:71:83:
5e:ef:04:18:13:d2:0a:05:4e:93:b6:74:cb:8a:34:
60:a5:46:1b:d1:e3:9a:60:ba:0f:98:18:da:62:8a:
59:b4:cb:ef:bc:59:b6:23:b6:2d:54:e4:4d:bc:37:
ea:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:00:5E:C8:22:C1:C7:4F:C0:80:43:D6:16:E2:68:6F:2D:02:8B:BE
X509v3 Authority Key Identifier:
keyid:64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:98:3b:c0:d2:a6:ee:75:73:d6:99:51:b3:b7:58:44:40:22:
30:c2:a2:36:e7:4b:c7:df:da:53:0d:9d:4a:0f:80:ac:9e:9e:
de:5d:eb:3d:a4:e1:82:3b:38:cb:3b:f3:df:ee:50:3f:82:f7:
42:82:5e:69:12:26:9a:62:44:b9:f2:d1:ba:ff:f0:f3:98:33:
11:b8:ab:eb:01:88:c7:23:5e:a9:4e:b1:97:41:6e:08:4a:4d:
cc:51:56:1f:ae:66:ad:89:3f:e9:d6:fa:4f:71:10:02:ae:55:
a5:fa:f9:0d:41:69:17:4d:8b:0b:a6:e6:71:f8:b5:a8:bc:c1:
ca:ba:a4:0b:c6:ac:33:e1:b4:78:5a:10:80:12:4f:81:f6:82:
52:c9:f9:42:ca:e5:dd:bb:8d:8a:26:ec:b0:b8:0b:96:a3:63:
51:16:88:b8:30:32:cd:ec:3d:bd:21:f7:6c:4b:ab:ef:12:f7:
36:63:97:2f:ae:49:34:22:18:61:ab:81:33:d0:aa:71:5a:b0:
af:8f:ac:b0:fe:c5:81:79:5e:62:56:be:e9:5e:67:f1:93:50:
f9:fe:0c:6a:41:7a:d2:a1:22:00:34:33:b1:83:88:15:bb:33:
75:1e:63:57:8d:59:23:e8:41:06:9c:97:ef:83:d6:ee:3b:cf:
c7:b2:a3:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:18 2025 by rpki-client