Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: Xi0ZxtECdujyn47RR1b1P2Ot2v938IFrfxlvxtIN8uw=
Subject key identifier: 02:CC:1E:E1:AE:1B:9F:07:EF:C7:B1:6D:E6:C8:82:BE:0D:50:95:E7
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 0194BB5FF43FBD7D34DE2B0547A220687F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 13C3
Signing time: Fri 31 Jan 2025 08:00:15 +0000
Manifest this update: Fri 31 Jan 2025 08:00:15 +0000
Manifest next update: Sat 01 Feb 2025 08:00:15 +0000
Files and hashes: 1: Kyq8dvDQCWTM4SDI01T-WEma_xs.roa (hash: csmuD1qBTRKUBvLNGvxDwNNOARNFB8rqYka6vl5ZQvQ=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: DPS5SpJfNjyD2Dwxw3/d1zX19VJ5ASCEUGnY65hs+n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:f4:3f:bd:7d:34:de:2b:05:47:a2:20:68:7f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Jan 31 08:00:15 2025 GMT
Not After : Feb 1 08:00:15 2025 GMT
Subject: CN=02cc1ee1ae1b9f07efc7b16de6c882be0d5095e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:62:00:41:81:72:03:83:ab:b2:2b:59:cd:bd:
b2:65:36:6a:4a:d5:3d:83:e4:39:33:b6:24:6e:1d:
a4:d7:bc:a1:ee:f3:75:48:da:40:bd:fd:fd:fa:02:
a0:b2:e4:90:e3:a0:ca:08:76:76:90:4e:d8:46:d7:
6c:ef:ed:3d:9b:e3:4e:fb:4a:dc:67:ce:c7:1e:5b:
97:76:be:df:1c:64:cb:f1:01:83:7b:36:20:58:60:
e8:c5:5f:40:fa:89:f7:c3:ef:79:b6:5c:95:a8:90:
b6:6b:f6:98:a5:ff:b2:16:e0:4f:d7:33:73:46:23:
d1:8e:9f:59:b4:49:10:a7:ce:ad:0a:0d:e1:0a:a4:
73:65:6b:b5:5c:cf:f6:cc:15:52:a6:19:7f:7f:d7:
ce:85:87:82:63:76:03:67:08:03:d1:9a:cf:d1:31:
95:87:17:3e:95:cf:5a:2d:1d:72:79:ec:ca:bd:9e:
43:88:60:e6:7e:3d:1c:fa:0d:30:f0:22:a0:e5:e6:
fa:43:7d:1e:e9:cc:ef:e3:b3:80:e5:f4:d8:d4:c8:
cf:b2:f9:1e:60:4e:c0:ad:c3:9d:f2:ab:ab:3f:22:
51:9c:d6:29:e7:39:2b:ee:35:43:45:77:61:39:4b:
3b:9b:e5:fa:b9:a5:e8:ff:eb:55:79:b7:3e:56:bb:
97:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CC:1E:E1:AE:1B:9F:07:EF:C7:B1:6D:E6:C8:82:BE:0D:50:95:E7
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:3a:e6:9e:e6:f7:72:e5:5d:25:35:a9:c2:f2:00:cb:d9:f5:
47:b8:62:cc:21:ca:1e:71:6d:7b:eb:e6:71:a7:f6:10:0a:5b:
2b:d8:06:83:aa:f5:e1:e9:ed:7f:f6:ad:3c:71:70:23:e7:83:
35:cd:a0:02:02:89:4e:d0:af:3f:d5:61:a6:40:65:96:27:de:
46:d8:df:32:9f:5a:36:14:46:3f:33:d1:74:b8:f9:ee:7b:13:
b8:c9:23:6a:d5:6b:57:8f:ee:74:7b:11:07:93:3d:9c:b8:56:
42:d7:44:1f:c1:13:35:14:a9:8e:2a:81:20:67:22:ce:6e:14:
70:96:08:48:7d:c4:27:ac:86:3f:65:1e:1e:0c:d0:1c:3f:ca:
a0:c0:42:4b:62:4c:10:01:e1:7b:5a:39:27:fd:60:d8:ca:9e:
35:f0:81:65:30:46:c8:d4:ee:4e:b5:ee:3d:48:25:b6:70:6c:
13:8e:67:fe:b5:cb:b9:a2:03:3b:10:bf:ea:d5:1a:5d:5e:9c:
68:98:9f:6b:82:78:e6:06:4a:7d:e4:d3:c9:74:12:cf:d7:3c:
ae:1a:82:9a:e4:f5:3e:f9:75:4e:d2:d0:48:6d:0e:2d:8c:c2:
01:11:fe:2c:f0:ca:70:24:42:f9:21:ef:24:d0:52:78:0e:80:
68:ab:b0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:11 2025 by rpki-client on console-fra.rpki-client.org