Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
File: sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft (raw, json)
Hash identifier: N2UED9vjzs2rU7mJRu7g5ipsuDWteV/bomE1zJU+Eoo=
Subject key identifier: 27:0C:11:7A:EC:2D:AA:EF:EB:72:A9:CA:B8:06:52:32:3F:59:39:76
Authority key identifier: B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C
Certificate issuer: /CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c
Certificate serial: 0194C3BE648DF19463D7F08814880AA1ADFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
Manifest number: 08AA
Signing time: Sat 01 Feb 2025 23:00:22 +0000
Manifest this update: Sat 01 Feb 2025 23:00:22 +0000
Manifest next update: Sun 02 Feb 2025 23:00:22 +0000
Files and hashes: 1: pp7YHiA9bCcV4n9KXbmtGvXw0Hw.roa (hash: xXtqKC6cCm9cF/kgqDQZlMKjBn2ULr5S39vUn/a3JHc=)
2: sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl (hash: E7GHZRzxlBGzFJovJtqS1mfQYLbe/mBAXsPiV5xo+9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:64:8d:f1:94:63:d7:f0:88:14:88:0a:a1:ad:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c
Validity
Not Before: Feb 1 23:00:22 2025 GMT
Not After : Feb 2 23:00:22 2025 GMT
Subject: CN=270c117aec2daaefeb72a9cab80652323f593976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:5f:5a:20:07:db:18:50:6c:a9:0a:62:62:
d0:f6:47:77:de:26:34:d3:09:c1:6a:00:f9:e8:ec:
fe:82:56:f6:f2:f2:81:80:2e:ab:3f:a4:ee:53:27:
64:5c:e6:4c:e5:1d:15:ff:ea:a8:5c:6e:99:03:cf:
28:87:95:f0:98:49:47:88:d8:7d:75:07:a7:e2:c2:
56:27:d4:f0:50:ab:27:d3:86:62:5b:de:84:bd:dd:
c4:14:ea:39:ba:cf:22:97:29:2f:c3:91:bd:64:3d:
b5:ac:df:1c:39:a7:81:cb:4e:81:4d:01:57:90:13:
aa:d6:98:67:c8:98:75:44:a1:e8:87:b5:10:30:a6:
05:11:49:f9:2b:25:a0:10:5e:0a:f4:bd:64:ed:cc:
19:3d:ac:13:cc:65:aa:41:d8:30:66:79:32:93:db:
90:8a:bc:65:79:d8:5d:cc:16:a3:a3:db:56:2f:2e:
f8:4d:30:03:ca:b8:7d:3d:ee:6a:5d:62:25:86:c0:
00:ee:08:2a:e4:82:51:c2:21:a4:f4:31:0f:8b:be:
8c:d9:5f:d9:b5:84:d8:67:6c:a2:62:91:af:b7:d0:
29:99:11:33:a2:26:37:7d:be:60:a2:bc:c6:10:66:
21:76:97:bd:1e:d9:92:1e:cf:d7:2e:ad:80:b0:9c:
2c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0C:11:7A:EC:2D:AA:EF:EB:72:A9:CA:B8:06:52:32:3F:59:39:76
X509v3 Authority Key Identifier:
keyid:B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:6d:35:94:31:f1:3e:0f:fc:36:5e:9a:cd:00:ef:83:e8:91:
38:fa:ae:5b:1d:e9:0b:3c:1b:f5:d5:09:23:87:15:e5:ba:c0:
d9:07:3c:46:53:3c:4a:3c:48:5f:05:d1:04:68:9e:39:be:9e:
f3:9d:f9:ee:3f:f5:5c:30:d2:6e:4b:6f:ef:f0:ad:ed:39:eb:
8e:d5:fc:67:b9:a6:c2:ea:3e:dc:e9:f8:7e:fe:71:70:1d:99:
63:e5:6d:9a:36:76:a4:89:cd:62:b1:ca:7a:2e:7c:04:fd:be:
de:d1:a9:94:96:ef:d2:e5:b7:aa:cc:3d:17:a4:41:ff:c9:1e:
e9:70:cd:ed:91:2a:b7:39:b6:94:67:05:f2:3a:bf:d2:8f:9b:
c0:f8:c0:cf:b9:ec:63:e1:8d:95:06:5f:31:8e:ab:f1:e3:64:
66:5a:31:61:44:79:fc:23:8a:f7:ff:42:48:c5:73:5a:df:3b:
27:82:53:14:da:17:c7:b6:8d:8b:63:cb:e1:9c:1d:a7:8b:94:
ed:de:ab:27:01:cd:23:6f:cd:19:e4:d4:4a:6c:ba:6d:2e:2e:
6c:46:73:b9:07:24:37:04:1d:2e:b3:70:46:40:48:b8:c7:38:
cc:d4:14:37:b8:63:12:76:3f:1c:47:6c:eb:95:0c:7e:06:e4:
19:16:24:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:15 2025 by rpki-client