Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
File: tznE4_6GnZeDui2t9mDczQ-lNwc.mft (raw, json)
Hash identifier: KTuI5EYJBWHOWQOezWrYM1De2Qhzo6tyM40W8U+0vuA=
Subject key identifier: 4E:D4:63:59:95:66:F8:D9:04:0C:58:F1:1C:40:61:8F:68:3A:5D:42
Authority key identifier: B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
Certificate issuer: /CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Certificate serial: 0194C507DA7BDCFC0BA4680E136DC044460B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
Manifest number: 0E7A
Signing time: Sun 02 Feb 2025 05:00:13 +0000
Manifest this update: Sun 02 Feb 2025 05:00:13 +0000
Manifest next update: Mon 03 Feb 2025 05:00:13 +0000
Files and hashes: 1: XSeQzzLzaRiIssAEaH8bFHtmW3c.roa (hash: 5lhi1fFGQ5t288ymZ18SpahB86WMGs7YGo9rolcKH9c=)
2: tznE4_6GnZeDui2t9mDczQ-lNwc.crl (hash: Gc5BNgOzB5rPqe9S7EudiztudpDHR0NKtHXusqrsLzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:07:da:7b:dc:fc:0b:a4:68:0e:13:6d:c0:44:46:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Validity
Not Before: Feb 2 05:00:13 2025 GMT
Not After : Feb 3 05:00:13 2025 GMT
Subject: CN=4ed463599566f8d9040c58f11c40618f683a5d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4c:15:18:49:01:ee:b2:5e:72:23:22:57:76:
36:c5:f6:19:75:c8:56:7c:80:8f:90:b7:64:91:f3:
3a:db:48:39:41:4b:33:69:47:0b:24:b0:ec:3f:ca:
09:c2:4a:03:d8:5b:24:96:5a:e9:77:91:7f:5f:1c:
06:b9:4a:1a:07:61:d8:5f:ff:0a:23:00:f9:e7:5f:
10:10:f1:72:05:32:88:65:98:be:1d:57:20:ef:9a:
5e:66:7e:ff:d3:00:50:b4:81:4e:db:b0:13:75:87:
77:3d:2c:d8:25:00:92:c5:d1:66:06:a6:db:c3:3f:
78:f2:81:fc:4b:e4:10:4e:6f:bb:0a:50:e7:d9:af:
09:88:e4:39:ce:e7:ca:5a:54:fb:0d:15:7c:95:90:
48:d3:eb:b1:05:3d:28:4b:8d:90:0e:5f:65:9d:8b:
93:72:e7:24:91:8e:7e:a3:d5:23:5c:90:36:7c:df:
d3:79:18:30:f1:c7:95:db:6f:c8:ac:40:73:5a:09:
77:ad:58:4e:23:bb:df:f7:58:fd:e6:ec:dd:24:13:
de:3c:87:f5:be:18:e2:74:57:69:06:59:fd:1c:3e:
1e:be:14:64:78:39:e0:c7:75:be:f5:e5:83:2c:25:
4e:cd:52:f7:74:5a:ae:3b:b7:c9:59:46:d8:4c:ab:
cb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D4:63:59:95:66:F8:D9:04:0C:58:F1:1C:40:61:8F:68:3A:5D:42
X509v3 Authority Key Identifier:
keyid:B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b8:16:ea:9b:96:b5:bc:80:17:e3:bb:e1:d3:40:54:22:2f:
00:66:7f:0f:ee:a6:86:aa:2d:b1:a3:b6:96:48:ab:34:09:31:
66:fa:90:27:6b:c5:8f:98:8e:d5:d5:1c:84:b8:64:72:da:0e:
be:3a:85:b0:73:f1:69:a3:61:10:92:9a:16:7e:5a:4d:c2:ab:
08:4c:33:f3:f0:0c:f2:d9:75:f2:d1:33:54:ed:9f:b3:33:7e:
da:4d:90:49:49:c7:3f:26:40:c6:07:3d:19:21:02:45:9f:bb:
2a:18:09:7f:66:8f:c1:0a:c7:0a:2a:57:05:1d:08:b2:9e:94:
49:d6:1b:ba:08:15:9d:3e:50:f7:bf:15:40:97:ec:65:8b:8a:
9e:e2:ba:89:16:c4:e7:51:52:12:a1:f5:67:97:9b:55:44:bb:
50:a5:d0:b9:7a:6b:2f:fd:50:ec:71:e0:f9:56:9b:7b:b1:32:
7b:1c:8d:96:b9:fc:6b:21:b8:7c:cb:4a:d1:e1:13:5e:a2:8e:
24:be:89:ca:c3:bf:ef:07:f9:38:ce:cc:db:55:09:24:46:0b:
09:ab:0c:9f:a4:a2:f2:9e:5f:29:a4:e0:ba:40:23:3b:75:fc:
95:62:13:89:e7:c6:2e:7b:5f:a0:8c:bd:73:19:c9:46:aa:8f:
4d:55:07:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:44:05 2025 by rpki-client