Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
File: MZ7ds2aRntdfRmDPsOC25fxAFhM.mft (raw, json)
Hash identifier: GLx5/fhsOc4H21IA59wDfJRfumE1b7q788Nmx7uyddM=
Subject key identifier: 9E:82:DA:29:3C:30:D6:B0:31:AE:A0:E9:DF:7D:20:3B:4D:A9:98:29
Authority key identifier: 31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
Certificate issuer: /CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Certificate serial: 0194BB6058223D5D25F411CDF9C3DFAFDFE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
Manifest number: 0AFB
Signing time: Fri 31 Jan 2025 08:00:40 +0000
Manifest this update: Fri 31 Jan 2025 08:00:40 +0000
Manifest next update: Sat 01 Feb 2025 08:00:40 +0000
Files and hashes: 1: 7-NvAjzZCDNIKTeDDn1z2wnsySM.roa (hash: ha7JC+Qd7+z1dgl9rMcZhtfsQI4xudXeagPgQxWUyhc=)
2: MZ7ds2aRntdfRmDPsOC25fxAFhM.crl (hash: icy2uNNFEk/qRELjzBy43/tl+Lwb09U1zfhZDlKv7O8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:58:22:3d:5d:25:f4:11:cd:f9:c3:df:af:df:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Validity
Not Before: Jan 31 08:00:40 2025 GMT
Not After : Feb 1 08:00:40 2025 GMT
Subject: CN=9e82da293c30d6b031aea0e9df7d203b4da99829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:18:db:66:b6:7b:b3:78:7c:99:59:a4:69:
de:ca:0f:fd:6a:1b:6f:0f:bf:59:e8:7f:eb:f4:7e:
b0:1c:e9:d3:0c:9f:cf:0a:f6:c7:17:b6:6e:60:d8:
88:5d:c2:49:95:c8:80:71:55:5b:29:60:d2:4d:4a:
df:08:c0:2e:06:6c:df:14:e8:62:ac:5a:08:e8:80:
c6:58:ca:f9:8e:ec:8d:04:c8:bf:cd:03:29:e1:40:
08:8d:48:db:49:ec:2e:a0:19:22:4c:3f:b6:15:dd:
56:79:10:94:ea:33:b8:3a:b5:12:6a:91:0f:89:34:
3d:ab:a5:b8:65:c7:e4:22:77:ce:1f:f0:96:5a:c1:
ee:31:1c:27:31:fa:ba:7b:0c:c7:10:8b:17:67:7f:
2a:24:91:68:c3:48:2a:45:b1:7a:7b:e7:08:b8:a8:
a2:b5:9a:8a:a4:45:dc:23:99:fa:10:04:40:66:6d:
f4:2d:87:9e:a8:60:a9:97:9f:a8:66:9f:3d:2c:6b:
00:25:dc:2d:14:e3:55:67:c9:c1:36:2e:68:29:f7:
ce:f1:fe:40:d0:0b:ce:b7:8a:e6:2a:80:fb:29:84:
95:08:08:2f:b9:38:ff:68:77:05:c0:66:47:39:b7:
08:14:b5:58:31:c3:60:e3:51:18:23:30:5b:64:17:
bf:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:82:DA:29:3C:30:D6:B0:31:AE:A0:E9:DF:7D:20:3B:4D:A9:98:29
X509v3 Authority Key Identifier:
keyid:31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:52:29:12:1e:00:3c:2a:24:63:0c:4a:86:f7:22:f2:1b:ec:
67:b0:88:b7:39:2c:89:38:0f:27:4a:a7:c1:ba:01:f4:46:a4:
ce:ee:04:e4:17:87:67:53:39:9c:9f:4e:08:8b:c7:89:5f:59:
7e:32:ae:15:8e:a0:6f:c3:62:22:4b:9f:6a:e9:3a:b3:18:c8:
92:8b:8b:f1:fd:b8:30:66:5c:96:a0:d7:e2:1a:93:ce:6e:7f:
d6:32:34:cf:0b:71:74:58:09:01:55:c0:92:b4:74:d2:9a:b7:
1f:ec:27:41:7d:00:2b:e0:e9:5c:78:16:37:f8:10:51:b8:55:
de:2a:cb:21:3a:15:10:be:ba:41:15:d3:ed:a9:e1:a9:15:4d:
d5:8b:57:d8:bb:12:10:f7:7d:e5:3c:63:64:6d:04:df:69:8f:
3e:a1:f6:69:95:ce:dd:68:c1:8c:00:88:ce:a2:44:dd:79:85:
7e:e8:c1:d6:5e:43:f9:f4:11:1b:a9:d8:e9:47:29:76:f6:5f:
6f:30:0d:88:60:a1:5f:ba:be:b0:e0:d9:72:d7:d0:52:a7:df:
43:48:11:2f:42:6d:11:d0:2d:27:f8:43:63:74:fd:cf:95:59:
d8:e6:95:46:5a:d4:1e:30:f5:7c:a7:f3:26:1f:8f:e1:b4:56:
88:15:fb:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:26:09 2025 by rpki-client on console-fra.rpki-client.org