Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: qIq/mx1yEPBI0D29HR0rqwEThuRbuNywMnh6vX3lbNc=
Subject key identifier: A0:E2:FA:64:F7:34:16:CA:0A:36:D5:8B:66:4E:60:78:41:78:84:FD
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 0194C4D1512FCE080566923339E9394A9584
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 1431
Signing time: Sun 02 Feb 2025 04:00:39 +0000
Manifest this update: Sun 02 Feb 2025 04:00:39 +0000
Manifest next update: Mon 03 Feb 2025 04:00:39 +0000
Files and hashes: 1: 7hm_KHqhJuMofuZish7Y5P9MWPY.roa (hash: c/wjMtOnBM+CzMEbufMPCuRYdfvoi8O1cMabJ+ZyFGg=)
2: ZllHOFY_PgpOxzOT4Q2RudzM6t4.roa (hash: TN32M7RxY+57PDosFpZdyPaIy1h6+U9oN98Epgj3jE4=)
3: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: rcTi0inyu5M2sXWobJrc1lfFgPHWlxK2Uz7W8D/p4Lk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:51:2f:ce:08:05:66:92:33:39:e9:39:4a:95:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: Feb 2 04:00:39 2025 GMT
Not After : Feb 3 04:00:39 2025 GMT
Subject: CN=a0e2fa64f73416ca0a36d58b664e6078417884fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:2c:2b:d5:e0:1e:b1:71:62:ca:69:13:ed:
38:cc:a3:e6:89:8e:de:87:fe:d3:74:15:c7:2a:96:
12:25:b9:8a:53:2b:08:cb:41:7d:f7:75:4d:6f:f5:
21:5c:b5:66:5c:69:80:7e:0b:1c:e8:0f:1a:23:b9:
0f:4a:fa:e7:2f:6b:1e:6c:f5:ff:30:29:8f:ff:54:
1d:85:b4:a9:a6:94:d6:57:61:89:d2:d2:7d:75:66:
88:ab:8a:32:a8:13:7f:e1:9d:e0:83:08:1c:22:69:
91:f4:5e:f2:f8:86:a2:b2:7f:5e:4e:22:24:1c:2a:
96:32:38:85:56:f7:98:9a:e9:ac:65:7c:27:b6:ae:
62:e7:07:29:f9:1d:0a:68:1e:1f:69:4d:9a:1e:b6:
27:16:7c:56:7c:fe:c4:52:43:85:76:22:e5:1f:17:
24:e2:5c:87:c5:8d:4b:e6:36:b1:fa:5c:8c:25:98:
19:e5:5b:aa:7d:00:24:2d:db:b8:6d:ae:49:7a:8f:
f5:94:54:b1:f3:cd:19:04:77:76:2d:b2:ad:45:db:
df:34:33:c9:e6:e9:2d:80:3d:4c:5a:9e:3f:4d:2a:
a3:a3:88:8e:c6:44:bd:69:61:00:b4:e5:4f:84:23:
68:00:cc:39:c9:c0:b4:32:cd:1b:73:3d:32:c8:c8:
f9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E2:FA:64:F7:34:16:CA:0A:36:D5:8B:66:4E:60:78:41:78:84:FD
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:c6:25:a1:e0:ef:bb:a0:1d:79:bd:b0:a1:57:fc:41:18:a7:
fe:92:f4:d7:dc:d4:84:9e:97:fa:b5:6e:69:b7:af:27:00:af:
21:6b:36:f7:73:9e:ad:d4:12:bd:bc:f3:43:8f:3a:95:4d:fd:
16:78:59:a6:1d:71:68:da:79:23:5a:aa:c3:d9:6b:ea:e3:f2:
99:11:12:f5:00:8b:f4:df:00:c0:72:6b:19:73:08:80:d6:80:
a5:10:d7:4f:e8:2c:0c:14:52:d3:7f:d8:60:a8:14:cc:fd:32:
12:09:48:52:8a:d9:4f:99:75:79:c0:1b:4b:0d:56:f0:d2:8b:
df:a3:69:41:66:85:24:cf:fb:3b:a2:bf:ca:16:3c:15:05:04:
5f:81:00:b2:92:d1:80:2f:4a:30:4c:2f:a9:ae:3e:03:11:0d:
05:c1:e0:c4:d6:c6:63:4e:5d:ac:10:8c:48:bb:06:6d:59:bd:
73:e7:4e:00:e2:67:5a:14:f9:fe:ad:03:47:f7:4b:e0:bf:b2:
52:17:a6:16:8c:b9:d0:ac:5d:06:fe:c8:4c:6e:cb:6c:65:b1:
a7:f4:67:70:b6:e5:98:62:e3:91:7d:90:b0:2d:65:5a:c1:79:
17:48:c7:7b:b3:ff:4a:05:41:23:1b:17:82:e1:ab:c3:12:f0:
4c:93:c8:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:45:22 2025 by rpki-client