Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
File: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft (raw, json)
Hash identifier: dpD2JsFZoMYDZt0RUSSaKaZIoc8RYxti1/nhaoWTZ20=
Subject key identifier: 64:0F:87:4B:FD:08:D0:84:67:A2:0F:E9:D8:FD:E0:F3:52:CC:F7:EA
Authority key identifier: 64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
Certificate issuer: /CN=6431e960cd061039b3b27fd25d4160771c498bab
Certificate serial: 0194BB9744A7D907BD1B6496A0E295688C96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
Manifest number: 107D
Signing time: Fri 31 Jan 2025 09:00:40 +0000
Manifest this update: Fri 31 Jan 2025 09:00:40 +0000
Manifest next update: Sat 01 Feb 2025 09:00:40 +0000
Files and hashes: 1: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl (hash: AhhGmcX2bj0zwMkvteTCCmDQfzKBUq5YT9GeZq/AO1s=)
2: ZNva-8ABsvjJ6HrNFF7Xd55KW-w.roa (hash: nx2aCY2Bfbi+2/xFJXRwWrGYEeyRAMv/De92goZyeZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:44:a7:d9:07:bd:1b:64:96:a0:e2:95:68:8c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6431e960cd061039b3b27fd25d4160771c498bab
Validity
Not Before: Jan 31 09:00:40 2025 GMT
Not After : Feb 1 09:00:40 2025 GMT
Subject: CN=640f874bfd08d08467a20fe9d8fde0f352ccf7ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:fe:c6:57:c0:0a:15:c1:5c:c1:e2:6f:f0:
ce:9b:a2:f6:e5:60:3e:69:67:9a:4a:69:85:ea:c1:
e9:67:bb:41:e9:3a:a3:dc:74:e5:02:f7:eb:14:a9:
cb:12:32:e6:a2:d4:af:29:21:97:6b:04:49:40:80:
dd:1c:e7:22:a8:b2:45:44:79:62:d8:55:e8:dc:b3:
1f:00:bc:83:5a:2e:d3:7e:fa:07:11:5c:07:94:44:
0d:1c:9f:cf:23:2a:5f:72:5d:94:78:33:ef:be:9f:
4b:02:f4:0f:b0:c8:fb:d0:f4:92:48:0c:35:2b:35:
49:7b:65:07:cd:5e:09:f8:f4:d6:3b:a8:f5:2e:36:
09:6d:d7:ee:bc:a0:95:b5:a2:b5:0c:84:c0:19:53:
f9:c1:00:ec:75:2b:14:02:93:fb:b1:c3:d1:bd:f1:
f9:72:29:9c:09:5a:a2:42:a8:db:4c:70:eb:70:16:
a3:33:db:a3:c8:cc:06:87:93:a1:f6:89:ae:4d:0e:
4b:93:95:7d:bb:6c:13:57:0c:80:96:90:ce:e4:21:
8e:9c:98:48:a3:31:0b:c5:3b:82:8f:0a:02:5c:53:
e6:d3:88:2d:25:e1:cc:c7:52:27:4f:b9:55:ff:d9:
e7:cf:eb:88:7a:fa:5d:a8:08:5e:6d:c8:29:9d:8f:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0F:87:4B:FD:08:D0:84:67:A2:0F:E9:D8:FD:E0:F3:52:CC:F7:EA
X509v3 Authority Key Identifier:
keyid:64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ae:77:a9:fe:cb:25:cf:ef:c6:87:71:e0:55:ca:cd:cd:75:
ce:5f:71:57:b2:28:2f:52:2e:fb:44:68:bf:be:c6:e2:95:31:
1f:8e:eb:ae:7a:bc:7c:da:94:0b:90:46:ce:1f:32:6b:e1:c8:
6f:6f:48:22:4a:85:1e:fa:da:7a:f5:4f:8c:08:e2:79:96:fe:
82:d4:dc:73:6b:7b:d9:75:6d:2f:be:05:89:5e:32:5a:bf:e4:
e1:9f:92:83:3f:c2:ce:30:92:e8:57:c3:aa:fb:8f:cd:d2:00:
46:95:1b:52:1c:dc:83:c2:4d:32:54:f8:77:b9:95:5f:3e:45:
b6:6b:f2:d0:da:a1:61:e7:b5:82:d5:9c:33:8a:c0:ab:38:87:
e1:41:5d:0b:1d:8f:c0:2b:a8:b4:1e:82:cd:da:1e:c1:f6:b9:
97:4a:ef:58:1a:53:c8:a5:4c:03:32:bc:ee:11:71:f5:35:2c:
9c:b0:c7:e6:0a:4b:3d:f9:aa:ad:86:16:ac:dd:5b:f9:4a:bc:
3a:92:3d:93:59:f9:9c:e0:ff:8c:7a:0f:79:3e:d1:f9:99:3f:
31:e7:35:cf:cd:78:1f:60:4a:63:31:1c:48:a9:c1:b8:5b:22:
a2:b7:99:7b:55:0c:6b:1b:1e:7f:11:dc:70:6b:36:85:0e:07:
d1:42:b5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:31 2025 by rpki-client on console-fra.rpki-client.org