Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
File: ZCOaUQhPGytcaEZDysFGIXx5-NE.mft (raw, json)
Hash identifier: wXR4SnxhMCuhhNjMG2OOrwBHUnCe0ItzJ9QgutF2DN4=
Subject key identifier: F4:5B:72:53:F4:B1:34:B1:CD:36:1C:2E:6D:A4:B4:8B:3E:ED:6D:4E
Authority key identifier: 64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1
Certificate issuer: /CN=64239a51084f1b2b5c684643cac146217c79f8d1
Certificate serial: 0194C3F5ECBBA6326084CC58333CCDEFD7EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
Manifest number: 0769
Signing time: Sun 02 Feb 2025 00:01:01 +0000
Manifest this update: Sun 02 Feb 2025 00:01:01 +0000
Manifest next update: Mon 03 Feb 2025 00:01:01 +0000
Files and hashes: 1: 1WnsILYxjGfpft24w4cU0Z9HVy0.roa (hash: mXH7nwV2vIU6tKBb8bErNfD249HtR3Br3nGu9VJRl4A=)
2: ZCOaUQhPGytcaEZDysFGIXx5-NE.crl (hash: V4vUacpqH2GubVwMVm05da/HUtOvvzjlQTQJDTHsOu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:ec:bb:a6:32:60:84:cc:58:33:3c:cd:ef:d7:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64239a51084f1b2b5c684643cac146217c79f8d1
Validity
Not Before: Feb 2 00:01:01 2025 GMT
Not After : Feb 3 00:01:01 2025 GMT
Subject: CN=f45b7253f4b134b1cd361c2e6da4b48b3eed6d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:74:d3:f7:34:99:4f:e6:7c:3f:a7:a6:8c:
03:bf:bc:c0:57:91:32:19:60:63:49:49:9a:37:d9:
ca:1c:c1:6c:f7:0a:7a:ab:ea:09:0e:cf:25:bf:6b:
3a:73:ca:89:c6:28:1e:16:4e:d0:02:57:30:fd:dd:
cf:51:9f:65:18:39:0f:6a:56:f7:fa:4b:54:37:e1:
b4:7a:1c:0d:64:5b:55:de:93:70:24:89:75:50:67:
5f:f7:36:0e:bd:22:6b:9d:81:ab:87:34:3f:d9:cd:
79:b2:df:4f:f2:3e:7a:42:94:cb:cb:7b:1a:4c:ff:
b4:70:e8:d9:89:c2:c2:a9:ee:b5:2c:00:3f:fe:04:
5a:95:21:3a:64:47:53:c8:19:60:37:4e:52:ca:46:
d1:23:08:d1:65:4f:81:c1:ce:64:c6:e0:9b:af:d7:
56:2d:2a:2f:36:0c:cc:25:5b:d0:70:f6:67:45:89:
e7:38:52:37:2c:7b:46:f1:a4:db:65:06:a8:fc:98:
db:a9:1b:35:96:1d:41:1d:b3:b4:0b:0a:98:b5:02:
6a:8d:de:c9:12:39:18:c8:30:14:46:14:8d:41:fb:
00:f2:15:70:5e:ca:fe:90:9c:10:30:2b:95:84:7e:
f7:57:fc:6b:b1:19:56:e5:0d:eb:07:49:1f:ed:a2:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5B:72:53:F4:B1:34:B1:CD:36:1C:2E:6D:A4:B4:8B:3E:ED:6D:4E
X509v3 Authority Key Identifier:
keyid:64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e9:5a:42:77:bb:51:90:c4:27:ba:84:34:dc:7b:36:2f:42:
d9:d8:3d:78:d8:0a:c4:75:77:7f:f2:43:40:36:ee:04:0b:34:
a7:45:c2:77:e0:ee:ea:15:e8:dd:3c:49:e1:6d:47:ed:22:b0:
02:ee:3d:0e:36:f8:99:94:03:5a:73:7f:f9:c9:71:a9:a7:0b:
dd:29:51:39:94:d0:f2:06:29:45:a3:17:6c:98:7b:05:53:86:
d5:d7:e7:b5:b8:6f:ea:8c:66:fb:1a:9f:1a:05:25:60:2e:c4:
2d:72:86:33:3c:70:e1:c3:f6:fa:2f:92:fa:35:2d:b1:8d:d6:
86:d7:57:75:4f:4f:d3:b2:bc:1c:74:e9:a5:d5:11:a7:dc:b8:
f6:ad:9d:cd:75:5d:7e:c8:11:0d:6c:eb:e1:b5:68:d8:9f:4e:
b7:d0:e0:64:e3:ba:31:36:ee:d8:aa:4e:dd:1a:f4:fb:fb:f9:
0e:a2:d5:30:75:ed:da:88:a9:a7:e3:8e:66:f1:17:bf:d4:b2:
01:83:dc:d0:f3:3e:98:7b:ab:cf:f9:ef:6d:c6:c4:7b:cb:57:
21:f5:20:89:62:0d:76:10:cd:aa:4c:df:11:b6:f6:ae:24:83:
66:84:ca:ad:16:e9:5b:69:ce:3f:eb:52:b1:03:f4:2d:e0:70:
5f:ae:71:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:56:14 2025 by rpki-client