Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
File: zy7ueKAITYMd4aJQAYPhZIlRbM8.mft (raw, json)
Hash identifier: NjadMtdbd8A7BZ3Qgm8z4+e/ya2AAu5frbTrTzbBIIA=
Subject key identifier: 7A:4F:BE:87:94:6F:9F:71:9B:5A:83:B6:2E:5C:24:A9:BA:8F:F6:0B
Authority key identifier: CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
Certificate issuer: /CN=cf2eee78a0084d831de1a2500183e16489516ccf
Certificate serial: 019510C6CF1DC78CCDA523341051517C0DBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
Manifest number: 0D5A
Signing time: Sun 16 Feb 2025 22:00:19 +0000
Manifest this update: Sun 16 Feb 2025 22:00:19 +0000
Manifest next update: Mon 17 Feb 2025 22:00:19 +0000
Files and hashes: 1: DoG2UFHCOj7zOTIUPjjt5XZyaMI.roa (hash: o5jRgA59QPQWDTQLvIg+41ICmEKRDLb8Qb3vB5Fkcs4=)
2: zy7ueKAITYMd4aJQAYPhZIlRbM8.crl (hash: kc8vK6L1WxLVYD3r1Uvc2m0yKIC5QBghDDgwo2LsHe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:cf:1d:c7:8c:cd:a5:23:34:10:51:51:7c:0d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2eee78a0084d831de1a2500183e16489516ccf
Validity
Not Before: Feb 16 22:00:19 2025 GMT
Not After : Feb 17 22:00:19 2025 GMT
Subject: CN=7a4fbe87946f9f719b5a83b62e5c24a9ba8ff60b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9e:a6:b2:b1:ce:1d:3b:c2:aa:11:5f:63:8d:
99:84:8d:d7:8c:4d:33:99:90:9f:23:8e:c1:2b:c2:
45:bb:3e:c8:a1:fe:62:3c:0e:52:79:07:b7:0e:5a:
63:57:fb:8a:e4:31:da:27:76:80:72:c9:d6:a4:7e:
38:9f:3b:14:b3:d5:9f:81:b5:db:ad:39:7b:89:b2:
7b:c1:d3:2f:e3:4c:27:cc:cd:21:7d:84:a9:8b:ec:
a6:64:8e:9f:eb:02:02:4c:51:35:62:84:dc:03:64:
7f:db:a3:a7:fa:92:6c:7b:d1:b4:64:87:b9:70:02:
b2:bc:9a:83:d3:11:1b:05:b5:64:37:70:a1:c7:ad:
d0:bc:38:40:01:8c:8b:a0:10:bd:1d:f8:54:14:25:
9f:0d:de:2b:37:78:5d:42:a9:60:ec:94:b3:19:3d:
23:af:ea:3c:c7:ef:c0:c2:8e:5d:d7:ae:0a:e2:9c:
bb:ad:97:5c:1f:9e:ac:09:a7:52:0a:eb:5b:0a:36:
bb:6e:05:5c:29:4c:ab:ae:62:b3:95:48:81:84:b5:
12:23:5f:d3:f1:5b:ac:06:b9:33:8a:e2:94:47:85:
bd:a2:d3:47:45:c9:3c:5f:67:04:dc:57:94:fd:61:
66:32:1f:63:52:dd:6b:59:75:e1:a8:17:71:09:fd:
d5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4F:BE:87:94:6F:9F:71:9B:5A:83:B6:2E:5C:24:A9:BA:8F:F6:0B
X509v3 Authority Key Identifier:
keyid:CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:57:30:28:f2:47:88:cf:2f:37:8a:92:dd:7a:48:5e:ef:21:
b0:40:34:57:26:d8:8b:aa:58:86:95:1e:6c:d6:56:62:e6:ff:
97:84:74:5e:b8:43:7f:86:21:14:00:d3:7b:61:df:bd:43:0d:
2c:6f:23:13:4d:35:6a:a6:fe:3c:e9:88:e3:8c:aa:88:54:f5:
91:ff:5d:71:3b:79:35:de:38:2f:4e:d5:45:21:35:03:ce:04:
c5:cb:11:2e:cc:aa:1c:8a:d8:6a:d1:fd:59:69:67:dc:8a:19:
56:17:ab:d8:4e:ed:5f:9a:c9:a4:46:6b:c2:24:20:09:6e:7f:
58:a6:f5:99:c3:33:cc:49:49:af:82:a4:c1:f7:c9:8f:c6:91:
b7:44:a3:ba:ed:6d:de:4a:f7:59:98:6c:0c:f6:f8:9c:b4:5f:
31:f9:4a:3a:2b:ef:a3:61:86:d6:16:9b:e0:57:40:f1:4e:df:
08:3d:88:a1:c2:78:24:dc:6f:75:02:3b:ff:46:d4:6b:74:f2:
75:6e:86:c8:a8:f2:56:23:89:19:a4:d6:50:e7:54:a9:94:4f:
a2:ec:81:9f:66:4c:e9:92:22:b5:f5:c7:e0:35:63:33:c6:8c:
75:02:54:c4:8d:27:df:31:e1:b4:7a:23:30:3b:5e:4c:f3:cb:
92:92:d1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:09 2025 by rpki-client