Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: cxge/GFxa+a6/u74VaZets8BCu9UYf6ObG9lorRp0Y8=
Subject key identifier: 43:FD:3A:9D:4C:07:D0:3A:C8:0D:47:7F:D1:33:D7:4B:B5:DF:15:6F
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 0194BAF21F234FDB1D4FE2D18A7D5196EDCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 0351
Signing time: Fri 31 Jan 2025 06:00:17 +0000
Manifest this update: Fri 31 Jan 2025 06:00:17 +0000
Manifest next update: Sat 01 Feb 2025 06:00:17 +0000
Files and hashes: 1: SGAPHhpCJa9JFOb_Zf20G8kvkhI.roa (hash: 27D8nmxY/4y8rMryghx5LNMAGS+7aTblTkGND6PBRy0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: KciWb/i7Ss62Gf1fEdeJONJ7giF8MMC1y89l6CPTE1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:1f:23:4f:db:1d:4f:e2:d1:8a:7d:51:96:ed:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Jan 31 06:00:17 2025 GMT
Not After : Feb 1 06:00:17 2025 GMT
Subject: CN=43fd3a9d4c07d03ac80d477fd133d74bb5df156f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1d:e3:04:6d:7e:59:80:b2:24:86:97:6d:5e:
1b:cb:be:72:04:36:76:91:a5:75:2b:31:18:da:99:
31:cf:88:72:62:9c:94:95:22:a9:a1:08:7c:ca:c2:
d7:38:e0:44:66:26:70:91:8f:65:09:20:9d:44:50:
c0:29:42:7f:51:fd:c3:08:d2:cc:4f:33:d0:cb:b1:
ad:dd:3b:e6:63:09:c1:8f:8a:39:62:61:11:4d:13:
b7:7f:ec:99:4b:e9:51:91:08:c6:1e:6e:17:8d:2e:
93:97:8b:d8:ac:3a:41:6d:db:5d:f4:69:11:37:8d:
ee:93:7d:eb:97:8e:1e:1e:d1:89:c0:31:93:97:ec:
24:f1:89:33:15:53:32:bc:ff:4b:0c:62:6e:32:2e:
6f:65:91:f5:51:59:09:34:c8:80:39:9d:63:62:d1:
b2:cb:a3:79:ee:04:d0:5e:be:c0:a6:e5:01:43:48:
2e:3a:c6:98:dc:53:ea:82:cb:94:ec:f8:ba:8e:56:
ad:d9:bc:68:96:e4:3f:aa:ff:b9:66:66:61:a6:86:
7c:ca:32:d3:a1:8f:4f:a2:96:d3:aa:00:e6:c4:23:
84:b6:ab:0e:3d:89:57:56:3f:30:22:0c:cd:c4:72:
a2:3a:6f:06:b1:0a:f4:7b:42:dd:2a:e0:4e:24:71:
8f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FD:3A:9D:4C:07:D0:3A:C8:0D:47:7F:D1:33:D7:4B:B5:DF:15:6F
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:68:51:52:5e:65:c0:07:7d:fd:e7:f0:4e:6e:6e:6c:99:35:
11:43:4c:87:2d:76:48:a3:91:3a:77:78:09:99:2b:3f:03:34:
eb:9e:5b:2e:6e:bf:90:2d:1f:c8:40:6d:d7:4b:59:81:40:75:
14:57:bb:04:06:c4:8c:c8:2d:07:93:3f:79:95:f1:39:7f:25:
44:e6:f3:87:75:d1:9d:f5:35:9d:46:2c:e5:80:c3:3a:69:be:
9b:09:13:94:a2:26:8b:d7:36:b6:ea:a4:02:62:82:c0:a7:02:
49:0b:82:a0:f0:84:fc:5f:b6:b1:7a:80:c3:f3:ad:a4:60:92:
49:bf:74:65:1b:f7:8a:0e:75:38:ff:ae:d4:99:1a:b1:e8:23:
f9:86:61:d1:36:41:82:56:1d:51:b2:b2:0a:59:d7:0c:ca:71:
e1:3d:a7:e8:d7:7f:f8:1b:30:0e:f7:ac:d8:e9:18:76:ce:d5:
47:32:fd:e6:fb:0b:6b:f2:0d:be:08:e4:25:1b:fa:b6:35:b5:
6a:b5:47:de:4c:97:50:70:b3:a2:cd:d9:cc:19:ea:f9:65:1a:
10:25:61:5c:18:29:94:e9:66:be:6f:31:4a:77:68:03:9a:42:
f2:a4:65:af:21:2d:00:93:10:31:4f:c0:00:bf:9f:0a:e4:d0:
5e:a1:4a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:36:11 2025 by rpki-client on console-fra.rpki-client.org