Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: ItI8U4JyaksmXrCZ7zcVBWpdmgRiYlQlg2GefM9qOZo=
Subject key identifier: F1:88:07:D3:AE:29:65:20:DB:8C:ED:B9:62:8F:F6:A5:AF:76:7B:3F
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 0194BB9734A46C8E96694C531AB752CED953
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 13BB
Signing time: Fri 31 Jan 2025 09:00:36 +0000
Manifest this update: Fri 31 Jan 2025 09:00:36 +0000
Manifest next update: Sat 01 Feb 2025 09:00:36 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: 1SWLMbzDUuYhoQ6ZqHcNR6ZwKex7+9ru5lVWDgJ/L8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:34:a4:6c:8e:96:69:4c:53:1a:b7:52:ce:d9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Jan 31 09:00:36 2025 GMT
Not After : Feb 1 09:00:36 2025 GMT
Subject: CN=f18807d3ae296520db8cedb9628ff6a5af767b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e0:9b:1f:b0:5e:4c:ee:bb:bc:66:88:d8:b0:
a2:43:a2:5f:10:d9:11:89:68:b6:2c:20:aa:e9:bb:
69:9b:0e:cd:35:27:e0:55:42:e6:4b:ae:03:f2:f0:
6c:53:63:c3:d3:5b:f6:77:d5:0b:e0:78:63:0a:f7:
7b:b6:5c:28:7c:68:87:2c:a5:8c:91:1f:40:48:46:
19:f6:12:cf:1b:8c:a8:dd:82:4e:5b:5c:33:3f:2d:
00:1b:05:a9:d1:20:dc:8d:1e:61:15:b4:b7:a1:2d:
1b:ed:60:1f:3d:31:b2:f7:5b:0b:86:0d:8f:49:fe:
7b:cf:07:37:a0:f8:bb:de:a8:bf:72:fd:c7:b8:0f:
19:65:36:b2:84:8a:d3:20:74:63:2e:27:d3:ab:05:
17:f9:b6:8e:08:dd:1c:93:74:b5:31:b5:e6:34:85:
00:c1:2b:37:ec:17:94:a3:a4:05:25:f9:d1:84:3b:
ed:dc:49:a6:a8:7a:3a:0c:19:f8:91:40:70:40:71:
ba:5c:43:d5:92:cd:c8:b0:89:a5:ba:c1:f9:cf:b4:
d6:26:13:8d:6f:e3:60:e4:49:f3:2b:a3:9d:d9:bd:
f9:b6:dc:b2:70:92:6c:40:47:04:18:2b:fe:9e:9e:
c8:4d:81:6b:6c:38:74:97:29:62:3c:e7:a9:1e:b5:
fa:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:88:07:D3:AE:29:65:20:DB:8C:ED:B9:62:8F:F6:A5:AF:76:7B:3F
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e6:e4:ad:12:d3:c1:3f:87:42:6c:fa:b9:8e:48:a0:c2:2a:
72:ea:cb:07:cf:bb:28:20:58:19:7e:0c:c7:fc:03:d0:a2:2f:
34:b0:18:8c:8f:cb:98:25:0d:d2:44:03:11:31:3a:29:25:a9:
b0:35:6b:44:75:29:29:ac:95:1f:8c:27:83:76:4a:fb:55:ec:
e7:d6:e3:30:86:bc:f4:f9:69:81:a1:b3:4c:b9:79:c6:8e:16:
10:93:f7:57:2c:43:5a:29:be:da:58:12:a6:b7:b5:1b:6b:36:
5a:a9:1f:a7:39:29:07:37:b7:17:be:8a:0a:cc:b0:93:2c:4e:
7c:0a:12:8d:e4:d6:09:0e:0f:52:e8:e4:6e:31:79:19:09:9d:
7c:7e:f5:2d:d4:46:1c:fc:0b:b8:2c:21:d4:40:69:21:d0:43:
77:6b:76:40:c9:97:1a:a6:88:3f:e5:7a:6d:d5:51:3d:93:96:
d8:bf:92:17:49:87:80:08:62:a6:bf:c6:8e:55:f3:ce:dc:48:
66:fa:59:e1:f2:f7:ab:f5:e0:f3:e1:7a:d5:5d:74:a0:a6:f1:
c2:cf:4b:25:dd:3d:57:ca:69:04:ed:b0:5c:92:c0:74:b9:2c:
23:68:a9:6f:1f:28:b9:53:2c:52:cb:0f:21:3a:20:e8:28:72:
d9:9c:78:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:29:57 2025 by rpki-client on console-fra.rpki-client.org