Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: ZPudUaK2eGXoNokz6d3FFDkQzDAU42iOu5eZ7YUx1Vs=
Subject key identifier: 9A:C0:99:CD:FA:20:43:4C:BF:38:F7:15:BA:23:97:75:33:3F:B3:63
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 0194C3F5C7DC749B81EA82C355C6F4DB4587
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 0FD4
Signing time: Sun 02 Feb 2025 00:00:52 +0000
Manifest this update: Sun 02 Feb 2025 00:00:52 +0000
Manifest next update: Mon 03 Feb 2025 00:00:52 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: MQS9L+GpJKmGs65XG3N+6LtvAB9KIb4lCPBhPWhy6Qs=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:c7:dc:74:9b:81:ea:82:c3:55:c6:f4:db:45:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Feb 2 00:00:52 2025 GMT
Not After : Feb 3 00:00:52 2025 GMT
Subject: CN=9ac099cdfa20434cbf38f715ba239775333fb363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8e:23:f6:2f:88:7e:fc:ea:8a:e9:9e:52:de:
ba:c1:d1:bc:1f:33:8a:92:95:73:83:06:10:0f:27:
83:50:82:75:6d:f3:90:16:69:08:13:2e:17:8e:aa:
78:1b:d6:f0:88:c4:41:ef:8f:c6:65:74:4d:62:d0:
5d:26:10:ef:f3:f4:ad:ce:a2:bc:43:df:61:fa:15:
73:f2:19:5a:5d:1a:b7:fd:52:54:59:5b:dd:d4:bc:
c6:7d:76:54:05:90:fd:a7:44:b9:e8:b7:36:ea:bf:
42:81:80:8b:2e:83:26:1d:53:a6:7d:97:ba:1d:f9:
32:80:23:a4:93:b3:54:63:a6:9a:b0:eb:9b:94:1a:
7d:4b:47:2a:89:b0:d4:87:b0:ff:df:a2:ae:8a:c7:
56:0d:60:fd:53:53:ca:e9:6a:7e:c3:82:ec:cd:99:
c1:32:a0:ee:d0:d9:87:eb:59:fa:36:02:60:f0:3b:
50:21:f3:6f:fd:1e:3a:b3:77:b3:ff:9f:a2:dc:8c:
64:55:9a:eb:c1:4a:23:42:f2:f0:48:b9:cf:53:d6:
f0:c7:14:2a:da:a3:00:89:20:4a:75:c5:65:54:18:
05:13:b6:d0:3b:1b:83:88:4e:03:ad:eb:5d:14:22:
37:59:59:db:1e:dd:63:91:7e:dc:56:bd:d6:05:53:
36:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C0:99:CD:FA:20:43:4C:BF:38:F7:15:BA:23:97:75:33:3F:B3:63
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:20:11:8f:87:96:13:c8:29:ba:e7:ad:d8:29:d2:bd:7e:81:
5c:72:ef:cf:e7:6c:ef:ab:10:ae:c6:1c:00:a5:35:49:b3:85:
82:7a:14:8d:a5:c1:a9:0b:f1:62:d2:13:d4:0e:e5:50:61:24:
3b:24:66:b1:26:9b:c0:ba:87:20:e8:10:ac:08:9d:6d:8f:27:
e8:8a:f1:77:b8:25:e9:5b:69:81:f0:1c:ec:f8:b7:43:9e:04:
10:b4:90:3c:51:17:fd:a9:81:d3:80:ee:9f:d8:73:58:01:ed:
0e:1e:6e:bc:96:61:c7:17:2a:5d:b7:c4:db:05:00:be:13:09:
cc:89:87:ed:ee:a9:dc:ed:2c:cf:65:d6:4b:8d:6b:4d:17:5a:
d6:37:b2:34:7c:63:86:c1:6e:09:ff:1f:0f:79:3c:99:16:a4:
76:83:37:2a:23:1d:13:2d:fa:f2:4f:73:eb:ac:10:86:d1:87:
a9:0c:86:33:4b:a1:37:51:cf:9b:16:57:2d:58:e0:4e:56:82:
c4:7c:66:67:1a:6c:f6:92:f3:28:f0:07:41:21:bb:45:42:39:
19:e6:7f:95:f9:08:5e:ad:06:c7:c8:52:a3:50:88:8e:21:3b:
50:ce:60:5e:88:fe:4a:17:c3:f0:d5:fa:13:92:00:41:0c:e6:
cb:49:19:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:06:40 2025 by rpki-client