Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: RbcXlnLA8ogQXejAaJsIzWIBwPDLYhjvVSrHTuCN9Io=
Subject key identifier: 05:D0:5D:A1:47:DB:87:79:87:A6:36:81:16:EB:17:9E:48:A2:96:59
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 0194C5084FFA4466BEE920F0DD280B8C5299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 22
Signing time: Sun 02 Feb 2025 05:00:43 +0000
Manifest this update: Sun 02 Feb 2025 05:00:43 +0000
Manifest next update: Mon 03 Feb 2025 05:00:43 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: oazaRDAeYr7A1HQe/Ef8JdIPgTS0iUflqRNqDE7+zNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:4f:fa:44:66:be:e9:20:f0:dd:28:0b:8c:52:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Feb 2 05:00:43 2025 GMT
Not After : Feb 3 05:00:43 2025 GMT
Subject: CN=05d05da147db877987a6368116eb179e48a29659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3c:80:2b:59:51:56:b3:16:26:73:62:27:00:
cb:24:d1:5f:0f:25:ec:3f:0c:78:76:1e:71:e1:07:
c2:b3:af:a7:31:41:27:34:a4:56:ff:88:30:2b:79:
0f:55:d6:a4:0c:e1:b4:29:9a:cb:85:c6:c5:3b:29:
8a:57:90:09:98:43:59:95:45:d9:85:7c:52:51:38:
26:b6:c1:8c:eb:10:bb:21:45:45:32:0d:d2:77:a1:
73:92:ab:2e:c2:bb:47:98:ee:7a:12:9d:5e:48:1e:
13:e6:90:43:24:f5:64:27:aa:26:8d:51:0f:2d:16:
2a:f2:bf:e9:b9:ba:9b:77:62:1b:93:99:9c:a9:de:
14:53:04:46:a9:62:34:d5:cd:fc:40:e6:94:eb:ec:
d5:68:88:84:c1:64:13:7a:70:d0:83:0e:d5:18:69:
92:cd:ac:62:70:bd:32:6a:e6:33:5f:d8:70:42:33:
dc:9d:90:c8:68:74:72:2d:97:fd:fd:18:0e:7d:e9:
a1:ee:b9:ef:02:72:17:cd:5f:03:d2:bf:6b:c2:0e:
8c:83:60:9d:fe:02:17:01:28:1c:b5:fd:01:81:84:
e2:5d:45:70:ab:06:6b:cf:23:d9:35:26:5a:13:c2:
e4:c3:92:76:2c:a1:9a:1a:6e:21:d8:03:b7:60:ab:
98:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D0:5D:A1:47:DB:87:79:87:A6:36:81:16:EB:17:9E:48:A2:96:59
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:1b:97:aa:12:20:b0:9f:32:46:7f:e5:eb:69:18:94:98:66:
ef:fb:a1:ec:cd:d3:95:bd:ca:3c:9e:10:cb:64:a3:4d:44:ff:
84:d8:da:45:ea:9e:79:8f:99:9e:3e:cf:47:09:f6:f8:57:66:
e7:99:b7:a7:70:e7:40:e3:2f:72:91:ef:29:c0:ff:26:7a:a6:
3f:1f:51:d3:94:72:ef:93:55:b0:c8:7d:be:f4:b9:97:a9:e4:
76:8b:5b:cb:7b:62:52:b1:ce:c7:be:8d:79:b2:44:b9:e1:92:
c3:05:be:17:bd:02:8b:47:5f:6c:70:a0:e9:15:25:bb:02:3b:
fc:be:34:1c:28:91:12:44:95:fb:84:db:1c:71:ee:3c:70:6d:
1a:f0:2d:cb:5d:bd:38:0b:dc:41:a2:35:8a:87:5f:3d:96:27:
64:e5:cd:df:0f:24:2a:72:a8:6b:e0:89:af:03:a6:b5:9f:9a:
2c:10:d9:2e:60:5e:f0:7c:95:00:15:b0:54:da:34:bc:16:c5:
08:ec:17:92:2e:af:83:8c:79:0f:9a:5e:8e:17:a2:2e:da:0e:
19:44:bd:93:af:1f:cc:db:b1:97:86:85:01:9d:02:f4:05:0d:
8e:1f:01:25:5b:d1:17:9c:d7:a2:6d:11:88:06:32:33:18:d2:
d7:74:2f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:47:00 2025 by rpki-client