Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
File: StzxlnKWX1GxbYevqxsUkILmw-4.mft (raw, json)
Hash identifier: h1TttW3u9xvyGTrrca+EZ3GJ5mpHpQd4EKEo7qZTERg=
Subject key identifier: B6:B7:81:E0:CA:2C:F1:9D:26:21:6D:63:64:30:05:0B:AD:89:A8:B2
Authority key identifier: 4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
Certificate issuer: /CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Certificate serial: 0194C463AA0CBF7D79FFB3FBF9DE7813E691
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
Manifest number: 142F
Signing time: Sun 02 Feb 2025 02:00:53 +0000
Manifest this update: Sun 02 Feb 2025 02:00:53 +0000
Manifest next update: Mon 03 Feb 2025 02:00:53 +0000
Files and hashes: 1: StzxlnKWX1GxbYevqxsUkILmw-4.crl (hash: sVsv5w5vspDSUNjZtlk47NCFLVPnHaG9DnnbWx8BDqY=)
2: rGUQbl63n9K0Wn_57q9XL0tQAuA.roa (hash: vyvu3YaIjRy8oAh1PUr3JRdMW+KlCqlVTwrvF8kfQF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:aa:0c:bf:7d:79:ff:b3:fb:f9:de:78:13:e6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4adcf19672965f51b16d87afab1b149082e6c3ee
Validity
Not Before: Feb 2 02:00:53 2025 GMT
Not After : Feb 3 02:00:53 2025 GMT
Subject: CN=b6b781e0ca2cf19d26216d636430050bad89a8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:3e:f0:56:51:99:1c:ab:ae:51:e9:45:0c:
e5:b0:62:e4:5a:78:8e:a5:89:55:2c:82:b0:8a:37:
dd:70:cb:54:f1:de:af:df:a0:78:ab:72:67:a0:2e:
b0:97:ff:b7:f9:1d:c1:f0:42:6a:d6:6e:ef:22:37:
f5:e1:53:aa:44:1a:31:ff:dd:7a:88:35:7c:9a:b8:
37:1f:6d:64:95:51:e7:b1:d5:9d:3e:3b:d3:fb:38:
da:6d:4a:a0:cb:be:a5:c2:ec:30:59:53:66:c1:87:
7b:b9:71:46:fa:b5:06:ed:f6:7a:3a:76:d4:38:e6:
c6:09:80:96:23:12:1a:28:d8:7d:ef:a0:69:d4:66:
30:30:5b:f2:3e:40:1a:cc:cb:e0:ab:ea:20:50:54:
16:0e:85:bf:6e:ec:b0:cb:5d:62:1c:14:4d:59:ba:
f1:37:f0:0f:43:0c:77:1b:44:0a:56:14:a9:32:4d:
99:35:24:99:8a:25:d4:7a:69:5b:e4:df:6e:38:2a:
ed:76:4a:2a:c0:62:fc:10:7c:45:97:74:94:16:9d:
65:a0:9e:95:5e:95:36:93:a5:df:84:dd:3c:e8:68:
74:52:e6:71:87:d8:86:ea:ac:f1:2c:97:b7:f9:c4:
d8:ea:ff:7c:dc:e3:d3:2d:53:66:09:ca:78:b6:a4:
0a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B7:81:E0:CA:2C:F1:9D:26:21:6D:63:64:30:05:0B:AD:89:A8:B2
X509v3 Authority Key Identifier:
keyid:4A:DC:F1:96:72:96:5F:51:B1:6D:87:AF:AB:1B:14:90:82:E6:C3:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StzxlnKWX1GxbYevqxsUkILmw-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/2d2eb6-05d5-47a0-8fed-ebf32a0469c7/1/StzxlnKWX1GxbYevqxsUkILmw-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:6e:14:94:1e:ea:90:cd:ea:dc:bc:8a:8b:0d:29:e5:0d:aa:
ca:df:0c:c0:e0:86:b6:60:9c:51:2d:89:ee:90:c0:5e:f8:05:
b7:39:e5:c4:31:31:da:fd:44:0d:ee:26:e0:c7:1f:3c:22:67:
74:3a:f8:95:67:3d:b4:11:da:a1:48:6c:b2:fe:25:4c:db:5c:
47:ca:d5:ba:c8:23:ca:e9:5c:a9:39:ea:9c:1c:a0:0d:24:bb:
4c:62:92:0a:86:ad:2b:28:62:01:47:06:c3:cc:ae:6e:b3:41:
a0:4f:08:fd:1c:5e:c9:a0:df:d1:fd:5b:e3:dd:8d:a1:7c:36:
aa:ac:f0:8a:a7:4c:4e:be:e4:b3:b3:7f:8d:bb:99:42:3a:a1:
29:96:9e:6e:e9:20:05:7d:71:a6:1f:ce:f0:e2:ab:0c:02:68:
dc:36:b0:6b:53:88:23:53:fe:8a:7a:f7:33:6a:4d:a8:4f:c8:
72:8f:54:85:14:da:6e:6a:d0:6d:f0:ea:31:7a:8f:74:0e:85:
f2:01:eb:3a:9b:bd:ed:70:f0:b3:38:58:b4:51:71:08:73:c5:
ac:1b:5b:0a:16:f1:b9:e7:23:e2:00:1f:7f:2d:94:80:70:38:
11:9d:59:70:6b:98:61:4e:bd:51:e1:f3:bd:50:2f:39:80:81:
41:65:0f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:05 2025 by rpki-client