Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json)
Hash identifier: E3ly1hP+dlAYhEXh0DhaIpqXzjfVk4PVWK4ZoLDFBz4=
Subject key identifier: F2:22:01:B7:B1:29:A0:89:FF:12:74:F1:7F:A8:79:21:10:AA:57:7D
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 0195116C08C107E752E10ACCBF72D9303EC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 01:00:47 +0000
Manifest this update: Mon 17 Feb 2025 01:00:47 +0000
Manifest next update: Tue 18 Feb 2025 01:00:47 +0000
Files and hashes: 1: 8vJ7ABj3xVyEwXenD9W0ncMrU1A.roa (hash: 5gnWjjNTmQRrWBLMz2vS6KZph20DEPN6rQfmfIVo1TE=)
2: 95tOWT20XUkoFBLGQGdVcwDGE0s.roa (hash: Qa6N16B2kLdBJuSQoLOln9hPwf+0/JSY++MAPTIofBc=)
3: D2QorAtAGpZ4DSilBt-gZlYU1WU.roa (hash: vpJGRRZzUNjxMRhoSrLA2Ov0y70mAO/SHEjk1etazfE=)
4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: j1F3nCD5xuF3eHlr435ghpseDv9qqWz5NIfzRL1Dt1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6c:08:c1:07:e7:52:e1:0a:cc:bf:72:d9:30:3e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Feb 17 01:00:47 2025 GMT
Not After : Feb 18 01:00:47 2025 GMT
Subject: CN=f22201b7b129a089ff1274f17fa8792110aa577d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:56:cf:86:c9:25:cc:0d:a3:2c:1d:7a:1d:ea:
04:a3:35:d3:a5:ec:b8:90:b5:34:24:e7:b6:e9:66:
1c:8e:c2:2e:e6:ac:e9:c7:cf:31:9f:a2:8b:3e:1d:
2f:6e:2b:df:3d:62:31:08:b4:7b:1f:53:8d:ae:60:
80:58:cc:9a:75:e6:73:68:98:86:0f:45:df:2d:32:
c3:c3:39:79:70:85:41:d3:6d:96:79:fc:11:eb:2c:
e5:1f:c2:f5:e4:d2:3c:78:b5:5d:68:8c:bb:5d:b9:
95:31:34:8c:f1:5a:2a:c7:36:54:2e:ea:bd:c3:3a:
5b:be:51:1c:91:22:58:4b:36:64:4f:b5:eb:43:c8:
2e:6f:cc:d4:53:88:ce:2c:8d:84:79:0f:1a:48:75:
fd:d6:f9:93:40:0c:9b:a2:15:2c:64:23:ba:d7:06:
62:7f:af:a8:19:25:8a:b2:52:c6:3f:5f:8a:71:dd:
f8:16:ce:64:ab:84:db:66:37:49:61:8a:ef:3a:74:
73:69:3d:d4:77:22:35:ff:64:9a:76:a1:dd:6e:03:
dd:10:f4:37:a5:af:43:3a:be:e3:0f:c0:e1:75:6e:
4a:8f:ec:ac:b6:a8:8e:9c:c8:f5:44:80:b9:d6:81:
8f:f6:91:10:96:b2:24:30:43:81:bc:0c:d2:64:36:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:22:01:B7:B1:29:A0:89:FF:12:74:F1:7F:A8:79:21:10:AA:57:7D
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:90:e7:06:15:fb:14:3d:a8:77:bc:41:aa:eb:aa:4d:0a:a6:
93:95:1d:4b:7b:0a:b1:36:d9:b4:66:8c:7e:d7:8a:35:7f:0c:
27:9f:a8:9b:c0:31:7e:ae:d8:b6:29:24:32:6c:ce:5c:b6:de:
9c:41:b7:97:fb:59:7b:ac:ce:58:cd:02:11:2d:53:1c:49:c5:
df:9c:2f:bd:5f:63:1b:f8:b3:1e:e8:8a:ad:ad:13:80:f8:46:
ad:96:3b:b5:a7:dd:bc:d6:16:81:89:6a:31:8d:40:a9:0e:cb:
5b:07:64:50:e1:41:e9:be:c7:c2:dc:c8:a1:2f:03:80:04:8d:
13:e3:d3:6a:1f:c3:87:d7:fd:18:3c:c9:d8:35:fe:46:ca:70:
8d:51:44:7f:fb:d7:88:1a:b0:28:0f:5b:f9:56:1a:2e:0f:01:
53:85:91:97:bb:b6:ed:d7:19:64:01:89:26:e8:44:ff:c0:dc:
4b:29:ee:fc:04:7d:50:2a:43:e6:42:e1:56:b4:01:d7:1b:5f:
02:7f:7d:23:5b:a6:5a:c4:44:be:63:bf:7f:eb:55:bb:ef:76:
5c:6f:36:c8:aa:8b:56:f4:45:0d:90:68:c3:e6:fe:b3:cc:43:
38:51:d3:7b:78:53:18:7c:db:bc:ae:dd:49:48:1d:fc:73:1f:
f7:0d:69:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:51 2025 by rpki-client