Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: wmqlgfMdsJp7dv8U/H5qro8nBuT487gu9uO2PQcWhSM=
Subject key identifier: 7C:2A:02:98:62:36:A8:06:59:1A:D9:17:DD:B6:8F:DA:44:D2:FA:79
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 01950EA160D18363F1A6DE5F030402F033CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 05C5
Signing time: Sun 16 Feb 2025 12:00:11 +0000
Manifest this update: Sun 16 Feb 2025 12:00:11 +0000
Manifest next update: Mon 17 Feb 2025 12:00:11 +0000
Files and hashes: 1: UD4cQq7SyCABLCZHHC1Ou_EeL6M.roa (hash: tfgZKXi2rZuQqy6q4ZM+ZUGFDVqdyYkcUnUVHT5tgpI=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: MeiO2ymOgTKOFtIfev2Tm1u/54G0m4stUUrmBHOn7Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 12:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0e:a1:60:d1:83:63:f1:a6:de:5f:03:04:02:f0:33:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Feb 16 12:00:11 2025 GMT
Not After : Feb 17 12:00:11 2025 GMT
Subject: CN=7c2a02986236a806591ad917ddb68fda44d2fa79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c2:16:0d:7f:84:ae:03:cf:83:ff:3a:45:5e:
5f:45:ca:4b:31:e1:75:f1:07:00:de:6a:43:cc:c6:
29:c9:d0:e5:1a:6a:a0:5a:21:d5:e3:7b:1f:a7:5e:
5b:34:3d:f4:15:ff:d4:34:ea:5e:31:3f:92:e3:ba:
0e:08:65:9d:ed:64:48:e0:ed:60:bf:07:4a:f6:9a:
f7:33:16:bb:3e:77:a7:d5:da:cb:fa:b8:fd:3b:20:
5b:cf:ab:a4:31:9c:b6:5e:99:02:87:b4:fb:86:fb:
28:c4:c4:02:a6:45:c6:5d:d3:3b:6d:74:45:3e:95:
62:d0:da:0e:d1:44:d5:29:a2:cb:f2:ca:b7:6f:72:
3d:ca:7b:34:26:9b:e7:de:c1:28:6d:3e:3b:2c:8c:
3d:89:c8:a1:66:67:c7:5d:01:2a:3b:d9:1f:42:25:
54:1f:e8:99:6b:99:48:d6:2a:31:b8:84:f7:93:3c:
31:cf:2a:09:4c:13:06:d8:e0:0b:f8:ba:a0:20:d4:
63:c9:9e:04:cd:ed:95:00:24:b0:20:e7:69:ab:ad:
fa:25:f0:8b:32:8e:8f:df:38:e7:f2:2d:24:ca:85:
24:69:4d:ec:8d:f4:c6:52:62:5c:9f:38:98:49:56:
6e:8f:b4:28:f1:14:7e:c0:12:fe:ce:f7:d7:06:7c:
44:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2A:02:98:62:36:A8:06:59:1A:D9:17:DD:B6:8F:DA:44:D2:FA:79
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:4c:56:17:82:36:de:f9:24:da:4e:8a:e4:e4:14:2c:c3:83:
9e:7a:a0:ac:ae:16:c6:ff:d5:bd:2d:07:57:f9:24:01:a7:50:
3e:89:1e:db:2e:49:86:b7:c8:40:fd:d3:0b:ea:d9:38:ca:fb:
4f:31:f3:51:95:a6:ee:2c:5a:f0:71:a8:05:01:e0:13:53:98:
f7:ce:06:ac:24:40:7d:55:02:fe:f0:0d:50:4e:b3:b1:e6:b5:
1e:65:76:b1:b0:20:98:e9:23:24:d9:d9:23:4b:af:12:91:f6:
f5:f5:02:bd:50:0b:d4:53:f4:17:29:e6:ad:63:a4:f1:94:18:
f1:bf:6d:65:36:97:ac:7b:42:86:c3:f0:a1:81:5c:b5:ce:a6:
6c:87:6f:d4:50:7a:a2:ea:0c:3a:f8:0c:d3:16:28:1c:71:4b:
5c:75:72:c0:c8:30:0b:ef:ff:7c:e4:f5:68:c5:b2:05:b5:08:
54:3c:1e:20:04:5a:54:25:31:36:c3:e3:99:60:7c:92:12:27:
57:38:72:6a:46:97:29:e2:75:41:b3:c2:c6:d2:2e:d9:04:60:
db:06:3e:90:33:e9:64:ab:cd:d8:ac:da:fe:08:b7:96:70:61:
11:61:a7:c4:ed:e9:7f:69:f7:66:e9:13:e7:dc:bd:eb:ed:48:
07:e8:25:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:28 2025 by rpki-client