Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
File: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft (raw, json)
Hash identifier: DARq+Z/s8nmTd0hD/sBlCu2spE8Lza8JSEXOZjBwweg=
Subject key identifier: 35:64:67:FB:9B:44:A8:7A:1F:18:D4:FB:F1:F3:0A:BC:A3:CF:F3:19
Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Certificate serial: 01951134A3BA3C4AF4B58A3DEA28D45D7599
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
Manifest number: 0B4A
Signing time: Mon 17 Feb 2025 00:00:17 +0000
Manifest this update: Mon 17 Feb 2025 00:00:17 +0000
Manifest next update: Tue 18 Feb 2025 00:00:17 +0000
Files and hashes: 1: QSFoTY-rZFAhWSMN9-_p_o-BDiU.roa (hash: 3LADFmQvbHE7KoUBEivUP2jD8vxc2/ZNRnufgFEmEsE=)
2: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl (hash: X3MOK1ZfTxXDIKLXRdtNB/knQ4MMbmcZ3W3txIM0RgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:a3:ba:3c:4a:f4:b5:8a:3d:ea:28:d4:5d:75:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Validity
Not Before: Feb 17 00:00:17 2025 GMT
Not After : Feb 18 00:00:17 2025 GMT
Subject: CN=356467fb9b44a87a1f18d4fbf1f30abca3cff319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c9:0a:f0:55:f3:a4:89:78:a8:2d:13:41:e2:
c4:93:12:ec:5f:fe:4f:6b:af:4a:71:89:bf:d4:1f:
c3:8e:b9:3b:69:67:01:85:87:29:da:f2:9d:4c:5f:
2e:ff:f6:19:51:5f:40:9e:db:ac:f2:b4:b8:7d:c1:
a9:61:b5:f2:67:d7:67:2a:d4:10:ac:27:7b:12:bd:
23:49:05:88:ae:28:81:63:68:c7:06:fa:16:c7:be:
46:42:7e:52:2a:1d:f9:2f:d5:2c:59:45:8a:03:1c:
f8:db:db:ff:0f:ca:58:42:04:ca:4b:89:d1:c4:0d:
72:d5:11:ae:2b:02:cb:b7:f9:aa:3d:05:21:48:20:
c3:98:c1:a0:48:bb:9b:8f:3a:ac:58:3d:0b:e3:f9:
a8:84:05:1e:d0:8a:81:9e:06:11:18:7a:90:44:f9:
35:99:fd:4a:8d:7d:54:3a:c5:54:3c:5a:02:d6:26:
54:71:fa:e5:16:17:7f:a1:5f:91:83:7d:de:a3:e0:
a2:2c:d8:98:7f:1e:fc:cb:72:39:a8:09:e1:66:b8:
13:ad:84:13:d9:19:09:13:d0:4b:cb:8f:a0:d8:15:
6a:e6:5e:4b:a9:04:d8:ec:04:b0:d4:1f:17:ab:f0:
b0:ec:47:9f:09:ff:fd:67:a7:90:9e:c9:42:f6:a7:
ad:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:64:67:FB:9B:44:A8:7A:1F:18:D4:FB:F1:F3:0A:BC:A3:CF:F3:19
X509v3 Authority Key Identifier:
keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:88:ac:d5:58:9b:8e:a9:69:00:70:e9:0f:aa:58:5b:48:3d:
a4:12:1e:89:47:fb:85:7f:da:c8:59:cd:b4:ee:c4:7b:33:66:
62:b0:32:3b:74:35:3b:fa:82:17:7c:ed:7b:18:d5:16:ef:30:
6e:bd:4c:c9:97:eb:6f:56:6e:e3:26:94:df:ad:18:76:72:74:
4d:e3:36:af:c0:47:74:cc:6d:2d:63:b3:69:d8:2e:47:ca:3a:
49:6a:49:de:dd:52:73:d3:3a:a8:b7:94:fa:b3:74:4c:ac:81:
ae:f1:b0:71:95:27:b3:60:70:43:d3:d8:d8:38:a6:28:a1:78:
c4:e7:18:b1:dc:ad:21:15:00:1f:56:d9:56:00:2c:9a:d4:87:
19:bc:32:ed:4a:91:80:4f:24:b8:7d:74:5a:6b:9a:50:6a:b8:
64:11:ff:4c:ca:2d:86:70:37:68:b3:3f:4e:52:ec:83:42:33:
43:52:e2:12:46:fd:3f:39:70:a3:a3:c9:a1:51:ff:ab:59:6b:
9f:6a:18:93:7e:34:5b:4e:cd:64:be:f6:3b:2a:71:46:0b:47:
39:d2:43:ea:8f:d3:81:18:6e:b1:d0:73:a8:4a:86:d9:25:cf:
77:8a:7d:1b:ad:f5:29:75:33:0c:52:05:92:68:ae:2e:7d:c3:
eb:75:23:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:37 2025 by rpki-client