Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
File: kPZLEhCNmzZnea-6z0gvefjA4xo.mft (raw, json)
Hash identifier: iatZChgtJene4u8p1h6UMs/opo1J4peGeLIwcaUXxJ8=
Subject key identifier: 1B:25:FF:36:2F:09:D2:BF:4A:1B:29:6B:80:5D:01:41:28:CC:45:AF
Authority key identifier: 90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
Certificate issuer: /CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Certificate serial: 0194C46346E0861853E0DF4F5F0AE2AA99B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
Manifest number: 3C
Signing time: Sun 02 Feb 2025 02:00:28 +0000
Manifest this update: Sun 02 Feb 2025 02:00:28 +0000
Manifest next update: Mon 03 Feb 2025 02:00:28 +0000
Files and hashes: 1: hnM5W0U-Qj_uQRhaO3TbcAuM76o.roa (hash: 4rFXrF5OPsxPLyOZLu+yOTZUft5NKdXEPlgvLrZwpqk=)
2: kPZLEhCNmzZnea-6z0gvefjA4xo.crl (hash: u8dpfSczk3FN8tD+YnDycplD5xlGeZvPGBPMUPVsO98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:46:e0:86:18:53:e0:df:4f:5f:0a:e2:aa:99:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Validity
Not Before: Feb 2 02:00:28 2025 GMT
Not After : Feb 3 02:00:28 2025 GMT
Subject: CN=1b25ff362f09d2bf4a1b296b805d014128cc45af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f6:0b:5a:c7:81:76:c3:b5:12:4c:f6:b7:63:
6a:0a:1c:95:23:2d:ee:5c:5c:c5:9c:ac:3c:e6:76:
6f:9f:4f:dc:b3:a3:d8:da:3e:e4:e9:b1:86:26:42:
a2:d5:b6:f9:2b:e7:e7:8d:12:2c:de:20:bf:d5:a4:
55:8e:66:1e:2c:77:12:19:fb:f6:de:23:72:5d:df:
c8:ee:2e:80:e4:7c:9e:d3:a0:f5:ee:34:5a:b2:4d:
08:57:e0:71:40:c8:bd:91:92:cd:d0:2b:55:08:25:
77:ca:e4:c1:14:8e:52:03:9f:1a:e6:c4:28:11:d3:
81:3f:f4:46:d7:b8:00:ca:7a:18:79:b5:39:2b:34:
20:dd:ed:9e:fe:03:8b:4d:a2:ed:7e:dd:38:da:52:
29:16:85:9b:73:f2:a3:d5:d8:a0:83:fc:35:1b:8c:
a5:db:f0:a4:08:97:18:86:a9:62:58:b8:8d:b5:e8:
1f:b4:e9:3f:46:13:3e:31:9f:ce:91:bf:9f:ba:d7:
3e:db:d4:7c:9f:e1:53:ff:87:db:d4:b9:f5:82:ac:
38:07:bd:04:15:ac:4b:79:2d:91:64:4b:5b:c4:61:
c9:54:6a:8d:70:23:d5:f0:31:b7:92:5e:7e:40:4c:
27:45:14:f4:3c:4c:59:32:4d:9e:10:92:d4:91:86:
c6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:25:FF:36:2F:09:D2:BF:4A:1B:29:6B:80:5D:01:41:28:CC:45:AF
X509v3 Authority Key Identifier:
keyid:90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:03:60:34:61:3b:08:d3:cd:35:66:b1:b0:fd:da:d6:f5:fa:
31:6c:68:d4:09:40:fa:15:12:73:c4:8a:b3:75:c8:80:6c:67:
e6:d7:d7:7b:76:cd:6c:e2:2e:38:7b:ec:2d:1e:49:b7:4a:50:
b9:f1:20:33:b0:6b:7b:3c:94:71:df:38:6d:69:3f:35:79:e7:
3e:d4:7f:63:eb:70:d1:22:5f:c5:86:92:7e:34:5d:61:20:90:
c4:ad:70:79:7e:4a:eb:3d:79:eb:59:aa:c2:84:8e:d3:4f:ca:
eb:19:e6:29:a9:79:b5:48:27:5a:c0:4b:2c:28:03:a6:6c:0d:
97:b5:bd:d9:55:d1:6d:dd:76:a1:dd:11:af:bc:07:bb:f5:24:
4c:8e:d1:b0:8d:26:23:eb:af:ed:d3:f0:c5:19:f1:d2:d1:5c:
a2:99:4e:b7:c7:83:d1:62:1b:e3:d7:15:d1:bf:e2:c6:32:dd:
f6:7b:d4:c7:46:ed:d3:6e:de:87:05:b4:29:83:40:62:c5:71:
9a:35:5a:60:5c:ce:01:90:6c:14:61:0e:4b:09:2a:d4:d1:16:
30:12:03:4a:37:e6:c9:8d:a0:be:1d:8e:01:65:eb:a1:29:46:
00:14:c5:1d:29:da:6f:92:d2:da:11:03:92:be:9e:da:8f:2c:
6b:d5:54:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:34 2025 by rpki-client