Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: 8P1lCAgH63DfQ/2ADSvPScjPLitcgZhFSgidiLWeZRw=
Subject key identifier: 0A:D6:C4:9D:96:AD:19:1C:E1:56:8B:4A:38:E8:E6:F1:A9:89:78:C1
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 0194C50816B1D42988EBF519ED8B06EAD76F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 13C0
Signing time: Sun 02 Feb 2025 05:00:29 +0000
Manifest this update: Sun 02 Feb 2025 05:00:29 +0000
Manifest next update: Mon 03 Feb 2025 05:00:29 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: kY8tSv/fmA/9GdYcd6zgf6tSuidxv8WQaa+TJ8aqGCY=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:08:16:b1:d4:29:88:eb:f5:19:ed:8b:06:ea:d7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Feb 2 05:00:29 2025 GMT
Not After : Feb 3 05:00:29 2025 GMT
Subject: CN=0ad6c49d96ad191ce1568b4a38e8e6f1a98978c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:ba:4d:ca:d3:82:98:0e:cb:f4:8f:05:01:
69:0e:0c:b1:dd:3d:d1:73:7e:32:fb:f3:53:f4:41:
e6:b4:c4:7c:43:85:54:06:72:cd:b8:d7:8d:9b:8f:
a4:f1:ff:5b:8c:f5:65:9f:9c:bf:8e:49:94:3f:6e:
96:65:83:ef:e4:48:a9:a6:24:81:db:7a:f9:cd:ee:
d0:fd:71:3c:ac:d2:0b:da:41:1d:f6:80:6c:ea:42:
a9:55:9d:4f:4b:26:2c:d5:d3:2e:f4:31:1d:f7:09:
d3:c1:ee:2c:79:2f:7e:d8:30:03:3c:9c:48:6b:04:
ce:45:c6:7a:60:2c:7b:75:cf:17:b6:7a:76:a2:a2:
0f:9f:cc:85:99:fb:a0:e7:0f:b4:96:d2:25:1b:fd:
d7:94:8c:4d:17:31:68:f2:51:96:f3:60:0a:01:3d:
00:ed:80:1c:de:8f:93:40:3e:cb:9a:d1:bb:ad:eb:
67:b4:b1:8c:3d:32:51:ea:68:6e:bd:29:2c:a8:e3:
87:86:1f:49:f7:40:a8:5b:6d:00:df:ca:bf:e1:7e:
08:c8:6c:c2:66:51:d4:92:08:1d:85:cf:13:17:fb:
50:f7:17:3b:cc:af:6f:e9:13:9f:37:6a:10:a1:1a:
22:3b:44:6c:5c:6e:41:03:43:11:63:8c:4c:31:c1:
ab:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D6:C4:9D:96:AD:19:1C:E1:56:8B:4A:38:E8:E6:F1:A9:89:78:C1
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:0b:6f:bf:b8:0d:3b:81:6b:4a:70:94:1f:11:d6:9a:22:c7:
f5:be:4d:2a:79:00:66:26:a7:ce:19:42:d2:f0:1c:57:83:77:
c5:49:70:06:d6:59:df:e4:bf:9a:6e:24:8a:e2:e6:24:ec:86:
0c:9d:c4:4a:82:f2:8b:e9:25:12:41:8e:3a:37:32:90:32:55:
ae:58:3c:cf:df:aa:d1:51:e9:6b:67:64:00:d9:04:3f:29:53:
4a:0c:90:59:15:23:f4:88:4a:54:a0:a7:e1:e7:50:57:34:76:
5e:ff:71:b5:44:9c:7b:ee:f1:2f:a8:f8:ca:22:d8:59:69:b9:
0d:a7:81:3f:53:82:a9:28:2c:8d:32:03:91:fd:37:e4:c6:1e:
f4:ed:51:e2:46:d2:82:70:cb:ef:60:32:21:ad:38:e8:bf:37:
c8:6b:c0:c2:39:bf:15:58:7a:00:0f:a8:b6:22:17:c4:96:b8:
46:ed:d9:f3:82:2b:70:2a:19:4b:fb:51:22:e7:7c:33:a0:98:
87:65:fe:d6:4d:41:67:b9:e9:aa:24:e0:66:1b:26:60:c1:6a:
96:3d:a2:1a:a0:02:0e:4a:6d:f9:c4:e2:0c:6f:88:3c:66:66:
03:db:88:8d:f9:37:57:be:94:3f:22:96:a6:ab:f5:48:dd:a0:
50:06:f3:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTFCBax1CmI6/UZ7YsG6tdvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YTNlNzVjNmQwYWJhYmM5MzFjMjg0N2NkYWE4NjVmYjhk
N2Y5Y2YwHhcNMjUwMjAyMDUwMDI5WhcNMjUwMjAzMDUwMDI5WjAzMTEwLwYDVQQD
EygwYWQ2YzQ5ZDk2YWQxOTFjZTE1NjhiNGEzOGU4ZTZmMWE5ODk3OGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZ26TcrTgpgOy/SPBQFpDgyx3T3R
c34y+/NT9EHmtMR8Q4VUBnLNuNeNm4+k8f9bjPVln5y/jkmUP26WZYPv5EippiSB
23r5ze7Q/XE8rNIL2kEd9oBs6kKpVZ1PSyYs1dMu9DEd9wnTwe4seS9+2DADPJxI
awTORcZ6YCx7dc8Xtnp2oqIPn8yFmfug5w+0ltIlG/3XlIxNFzFo8lGW82AKAT0A
7YAc3o+TQD7LmtG7retntLGMPTJR6mhuvSksqOOHhh9J90CoW20A38q/4X4IyGzC
ZlHUkggdhc8TF/tQ9xc7zK9v6ROfN2oQoRoiO0RsXG5BA0MRY4xMMcGrTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFArWxJ2WrRkc4VaLSjjo5vGpiXjBMB8GA1UdIwQY
MBaAFGSj51xtCrq8kxwoR82qhl+41/nPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80MGMwN2EtMDMyMy00NDI0LWFlYjMt
ZjY1ODI2ZmZjYmY4LzEvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80MGMwN2EtMDMyMy00NDI0LWFlYjMtZjY1ODI2ZmZjYmY4
LzEvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIwtvv7gN
O4FrSnCUHxHWmiLH9b5NKnkAZianzhlC0vAcV4N3xUlwBtZZ3+S/mm4kiuLmJOyG
DJ3ESoLyi+klEkGOOjcykDJVrlg8z9+q0VHpa2dkANkEPylTSgyQWRUj9IhKVKCn
4edQVzR2Xv9xtUSce+7xL6j4yiLYWWm5DaeBP1OCqSgsjTIDkf035MYe9O1R4kbS
gnDL72AyIa046L83yGvAwjm/FVh6AA+otiIXxJa4Ru3Z84IrcCoZS/tRIud8M6CY
h2X+1k1BZ7npqiTgZhsmYMFqlj2iGqACDkpt+cTiDG+IPGZmA9uIjfk3V76UPyKW
pqv1SN2gUAbzxg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 06:44:22 2025 by rpki-client