Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: 4B/okihyM7IgJkfcAdQsRgfT0EeRZbZJ8/N3eloFbwg=
Subject key identifier: 63:D8:E8:5B:D0:EA:36:8D:11:8C:AD:9A:DE:90:60:42:56:D2:5F:EC
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 0195127E7A114371A7DD38D1AA7A231E222A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 13AF
Signing time: Mon 17 Feb 2025 06:00:33 +0000
Manifest this update: Mon 17 Feb 2025 06:00:33 +0000
Manifest next update: Tue 18 Feb 2025 06:00:33 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: BHf5Dn8hwazR1ZPa4U+ifGp/6QGBRkSrJ4Fx/U1Rmdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:7a:11:43:71:a7:dd:38:d1:aa:7a:23:1e:22:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Feb 17 06:00:33 2025 GMT
Not After : Feb 18 06:00:33 2025 GMT
Subject: CN=63d8e85bd0ea368d118cad9ade90604256d25fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:51:99:be:14:9c:b9:fc:1a:30:fb:c1:bc:42:
21:8e:9f:d4:5a:16:99:80:e9:db:35:6e:b3:65:73:
02:6e:21:07:5c:c8:66:50:d0:b9:e7:4d:46:02:ff:
d3:f4:74:df:59:72:a1:07:74:bb:c3:89:57:a3:d4:
12:88:48:9d:2a:c3:9c:f0:fc:ae:24:a1:92:4e:72:
15:a9:d4:c0:9a:01:12:85:67:81:f9:94:f5:7f:62:
d6:15:8d:48:18:aa:01:8a:74:46:9b:1e:23:f1:a1:
a2:4f:37:af:40:c7:86:90:ca:3d:c4:8d:3c:a8:f9:
cc:ce:9f:5e:ef:07:a4:40:3f:75:45:26:52:15:23:
a5:61:8c:c4:b6:fe:42:a3:87:c2:ae:a8:03:a0:50:
70:db:48:6c:ba:11:42:d6:22:b7:b3:91:9a:88:6c:
d8:9e:8b:dc:f4:e9:a3:ad:e8:f8:20:57:01:f4:4a:
21:6d:28:0e:89:61:aa:69:3d:3b:d7:93:e6:7e:1f:
09:bb:f4:6f:25:fd:d8:18:75:3b:13:31:88:6f:f3:
83:a2:b8:15:bd:41:9b:aa:46:ff:86:e8:cf:f3:59:
ed:dc:1e:21:80:4b:b4:99:3e:22:6d:07:19:10:a3:
ee:02:e0:80:87:34:46:08:60:ed:80:4a:13:85:e0:
99:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D8:E8:5B:D0:EA:36:8D:11:8C:AD:9A:DE:90:60:42:56:D2:5F:EC
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:22:0b:3c:d2:04:d3:b0:69:bc:9c:82:67:fb:50:97:8d:2a:
4b:cb:cb:72:13:47:c7:9a:2c:2d:27:a2:e6:39:bc:57:27:ab:
f8:02:40:d4:c7:3d:ac:a3:ad:ff:5a:a9:2c:5f:0c:b3:22:64:
d8:5d:86:57:44:b5:90:c6:63:15:da:3b:72:87:27:75:db:81:
ec:d5:1d:4a:c6:fa:4d:c7:72:2e:49:4f:30:6c:a5:97:de:ed:
ad:61:88:2b:f2:49:48:f0:8d:03:d7:69:d6:82:31:b2:35:24:
c4:cc:2c:5a:af:c0:02:ce:99:06:11:e4:29:be:5a:a5:ee:70:
de:9e:ab:34:3e:5e:e9:df:82:5a:04:37:7f:6e:0e:48:d9:5a:
34:b3:d3:ad:03:9e:c1:eb:67:e6:a2:37:7b:be:08:fc:36:fc:
82:35:de:a1:3f:91:32:74:16:6b:14:22:a0:85:4b:74:7d:70:
01:f8:3c:f0:d3:78:60:28:4b:d1:92:60:d3:bd:5e:c9:27:c0:
42:f9:c3:f2:b2:20:86:d1:b4:3d:4b:9d:76:7f:a2:f2:9d:46:
87:86:49:a7:bc:5a:cc:f2:d3:5a:a7:e6:8d:d9:dc:df:2e:13:
46:d7:1b:fc:f3:60:87:fd:d5:4e:96:0a:ff:3a:8e:ca:f3:21:
a4:02:26:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:42 2025 by rpki-client