Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json)
Hash identifier: mWoUR9SHr4kVan4wzgZBEnMBtu25R0fD9+c9XG+vMF8=
Subject key identifier: 94:24:F0:F6:E9:F5:57:0A:5C:93:E4:22:AD:22:0A:CE:6D:4F:A9:71
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 019510FDC1D6F7867BF294BFCAFE4F402CB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
Manifest number: 0B7D
Signing time: Sun 16 Feb 2025 23:00:20 +0000
Manifest this update: Sun 16 Feb 2025 23:00:20 +0000
Manifest next update: Mon 17 Feb 2025 23:00:20 +0000
Files and hashes: 1: 2CYNXB5qZHN7in7RGaGVmXvb7Xs.roa (hash: n74UAylTv760Shvrd+PI6ipCj4rV+2WaR3QnP3+8e6Y=)
2: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: S97NyY+KvpGmIf4CXje36dpnk8bCLy/0dVJPJ41k6gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:c1:d6:f7:86:7b:f2:94:bf:ca:fe:4f:40:2c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Feb 16 23:00:20 2025 GMT
Not After : Feb 17 23:00:20 2025 GMT
Subject: CN=9424f0f6e9f5570a5c93e422ad220ace6d4fa971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7d:f7:b7:b8:a2:10:e1:7f:42:9a:84:1f:65:
bc:95:19:9d:7a:8b:e1:89:7b:bb:be:ce:17:8b:20:
41:9d:63:4d:ef:3a:0c:d1:53:20:10:ce:48:2d:7a:
4e:a1:53:95:51:ad:13:cd:5d:d1:59:47:c9:60:63:
7e:51:0c:9e:dd:69:24:9b:59:9b:9b:54:ab:29:76:
56:ba:18:70:91:de:ca:f1:81:b8:c2:4a:36:83:d1:
6e:c3:9e:67:1b:5d:8a:2a:98:94:9d:fd:1a:bd:64:
13:c0:ef:2a:c3:4e:74:ce:2b:e9:58:39:d0:91:5f:
77:97:74:4a:47:41:9e:65:f0:33:29:09:93:fa:27:
45:b5:5b:96:ee:18:6c:15:d0:bc:37:aa:2d:39:5e:
90:d8:e1:13:9d:1d:f6:34:7f:b5:3e:18:c3:48:a4:
c0:98:ec:48:58:82:ad:b9:73:03:16:a7:49:0e:be:
a1:28:0d:1d:fc:42:0b:79:18:ad:71:8d:8b:b7:a0:
4c:f9:aa:a8:95:86:3c:49:91:56:07:73:9b:c5:0f:
e9:be:19:21:89:b1:0d:52:a3:82:75:e0:9f:6b:bb:
c8:93:df:de:4d:bc:78:d4:70:d9:b2:33:92:9b:59:
1a:2f:1f:d9:59:f0:9a:f1:f4:49:c2:34:79:4e:d4:
f8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:24:F0:F6:E9:F5:57:0A:5C:93:E4:22:AD:22:0A:CE:6D:4F:A9:71
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:a0:8d:95:05:7d:2e:28:f5:89:b5:ee:85:20:53:20:71:86:
94:af:bf:d6:fe:92:41:af:33:9e:83:14:fa:4a:fa:6e:80:7f:
34:ef:67:da:4d:90:4e:b6:49:1d:f6:ec:ba:80:b4:56:56:95:
81:00:79:73:41:31:5e:6c:01:00:51:59:d0:4f:6e:dc:bb:97:
3a:41:e3:0e:6c:75:66:21:c9:e7:da:5c:38:bf:dc:e9:7d:14:
b2:6e:d0:1b:12:31:7b:c2:2e:90:6d:20:c3:c3:fe:96:03:4e:
50:da:2d:83:89:93:80:af:c8:7f:f7:c3:9b:8e:09:47:70:4f:
1e:f8:10:5c:76:5d:03:6e:51:2e:0b:2f:16:6b:2b:4d:d7:23:
65:a2:07:c3:3b:b8:6d:09:be:0a:70:57:95:7d:d3:4c:9d:38:
87:e0:7a:89:cb:8d:4f:c8:04:86:43:e9:f5:ae:50:c6:27:92:
05:f6:39:b5:26:3d:2e:bf:0c:8e:07:1e:c5:4f:9e:75:13:4c:
83:b3:c1:6c:f1:9e:62:56:b8:71:e7:50:43:ac:55:0e:cf:34:
59:6c:0b:59:8a:be:2e:14:57:19:0f:68:7d:50:1f:48:b5:3e:
7d:15:25:15:af:cd:e5:d3:71:9a:47:18:5f:2e:78:fd:75:1e:
2b:92:90:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:03 2025 by rpki-client