Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
File: zxNuAf-vhT27Klz8_l0bZ9IMILU.mft (raw, json)
Hash identifier: Ar2++ZG6eFOw7h8Xmi7CBD+E99htK2y/3erZiruFCUY=
Subject key identifier: 95:73:76:4B:12:F7:31:EB:5E:5C:DC:E8:AE:75:7C:E5:97:35:06:70
Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Certificate serial: 0194C42C36D3BDB6FF1EFEBD47F0A90F2FD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
Manifest number: 0EB8
Signing time: Sun 02 Feb 2025 01:00:19 +0000
Manifest this update: Sun 02 Feb 2025 01:00:19 +0000
Manifest next update: Mon 03 Feb 2025 01:00:19 +0000
Files and hashes: 1: OmwRoJ3JPu5X08Xp_X1_3qE1I7k.roa (hash: Adg8t51EAwBbzjl4kDJAi92mlZw1Om+k918pc8UAy2M=)
2: zxNuAf-vhT27Klz8_l0bZ9IMILU.crl (hash: VlyXZzIyi3SE+1KWpoghsqX6k4Uqq/xYgbEa7idA6Cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:36:d3:bd:b6:ff:1e:fe:bd:47:f0:a9:0f:2f:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Validity
Not Before: Feb 2 01:00:19 2025 GMT
Not After : Feb 3 01:00:19 2025 GMT
Subject: CN=9573764b12f731eb5e5cdce8ae757ce597350670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c4:27:1b:15:6b:7a:d3:bd:55:d6:a9:59:12:
3b:44:fd:a5:95:43:41:39:d1:f8:c0:7e:83:2d:1c:
cb:21:06:22:bf:4a:b1:0a:e7:ad:ee:38:ea:33:05:
8b:6c:8d:bb:a0:e6:4b:4c:4e:30:bf:77:9d:2f:a2:
3a:e1:9c:5d:04:de:9d:10:e2:79:48:36:e2:ba:fe:
59:6c:f3:33:a0:76:59:91:aa:b0:19:c1:9f:4b:74:
c2:1d:19:f8:0f:74:13:6c:37:b7:77:75:96:d3:23:
34:cf:01:8a:f8:1f:59:82:f6:27:68:b2:fa:8e:bb:
cf:1d:fa:01:9d:db:17:14:c8:25:b4:d1:7f:9e:5a:
01:2f:96:75:03:d7:9d:e2:2c:3e:5b:64:ab:f8:0a:
1f:7d:ba:9c:82:a9:a0:0a:5e:12:f8:18:06:45:99:
b0:a7:fd:a4:34:0c:b1:0c:c7:9d:23:f1:32:60:81:
16:d3:f8:83:71:58:48:c4:e9:62:24:e8:00:64:df:
f4:b7:96:8c:97:90:fc:6a:7f:e3:e9:f0:88:12:b4:
ab:5c:42:95:c5:be:41:32:52:ec:44:1d:02:31:f7:
bf:54:52:e7:ed:8f:4a:f2:63:f0:fb:17:ef:a4:8e:
fc:64:a5:60:a5:8f:6c:ad:d6:8a:14:9e:ba:50:49:
e1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:73:76:4B:12:F7:31:EB:5E:5C:DC:E8:AE:75:7C:E5:97:35:06:70
X509v3 Authority Key Identifier:
keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:e5:b7:80:5e:43:34:71:41:38:f8:73:c2:64:e7:e9:d8:07:
66:26:55:34:e9:e7:80:20:0f:60:ca:c6:fa:e6:a6:6b:c2:37:
4a:25:ee:00:68:b7:7f:2b:99:50:8a:20:2c:58:a7:68:36:73:
57:50:dc:86:3e:3f:a6:bc:ab:75:49:55:13:cf:cb:48:ce:45:
10:d0:18:9c:db:e6:92:d8:ff:35:8f:1c:8a:1b:d9:10:64:12:
7c:42:a7:68:46:f2:f5:ca:07:f2:4b:09:45:bc:24:86:e9:55:
cc:e3:d8:f6:50:f3:3c:5c:b6:6a:9b:1e:c1:80:9e:19:cf:9d:
89:90:fe:94:48:f8:39:15:e7:fa:74:46:33:c2:47:02:a9:a8:
21:be:04:09:66:50:3a:fc:98:80:13:09:32:f1:40:09:e9:7e:
86:9f:05:e4:88:a9:b8:92:92:f8:72:7d:11:5c:ef:99:24:da:
4a:55:ee:ec:4f:4d:fa:03:58:27:99:04:c0:72:9d:85:a6:ff:
c3:a0:15:cb:7c:c0:98:42:1d:43:65:ac:26:79:58:9b:59:c4:
8f:86:94:eb:43:55:80:1f:6a:5f:20:94:cf:1c:a3:90:55:99:
6f:da:3c:ea:da:07:21:88:cd:48:58:75:95:9c:dc:55:c7:93:
ff:d5:9d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:04:00 2025 by rpki-client