Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
File: iEZAW_zHgGbFGSyz6-csRDxVcog.mft (raw, json)
Hash identifier: bwHnDJqYOvWSDLgYju+1PSEEZIAUFZWlqnp25yIf4qI=
Subject key identifier: E8:AD:6C:08:80:7B:9B:82:DB:DF:F1:93:CE:7E:E5:E2:0F:B2:BC:97
Authority key identifier: 88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
Certificate issuer: /CN=8846405bfcc78066c5192cb3ebe72c443c557288
Certificate serial: 0194C4D1571A0C474E57C7DCF0614F351462
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
Manifest number: 142E
Signing time: Sun 02 Feb 2025 04:00:41 +0000
Manifest this update: Sun 02 Feb 2025 04:00:41 +0000
Manifest next update: Mon 03 Feb 2025 04:00:41 +0000
Files and hashes: 1: 1wukbEM_Z2cOLmS317mkgQWPtlY.roa (hash: mynvXYceF8nnYoZdEmhOk8iYDpjkXUz62HUCHGcK8Wc=)
2: iEZAW_zHgGbFGSyz6-csRDxVcog.crl (hash: mRmORF4kAjykVZhk/I6LokKqxRhfRwIhYVC8Bh9LdK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:57:1a:0c:47:4e:57:c7:dc:f0:61:4f:35:14:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8846405bfcc78066c5192cb3ebe72c443c557288
Validity
Not Before: Feb 2 04:00:41 2025 GMT
Not After : Feb 3 04:00:41 2025 GMT
Subject: CN=e8ad6c08807b9b82dbdff193ce7ee5e20fb2bc97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fa:96:23:48:e6:50:e8:f6:5d:d5:6f:77:36:
98:e4:ce:06:4b:43:4c:b7:9e:f8:23:16:00:fa:f0:
2f:1f:14:10:d1:71:7f:c3:11:eb:67:ba:de:01:eb:
c0:20:24:ae:db:aa:85:da:a8:01:a0:f1:56:83:47:
7c:c1:ad:27:59:98:0f:49:68:c6:c9:7a:c7:db:10:
f1:a0:19:97:c7:38:3d:ea:2e:ea:17:b8:4d:0d:9c:
da:8e:76:f4:c4:70:da:be:f0:6d:7e:8e:4d:46:c2:
79:36:24:ee:68:29:ca:ec:6e:a5:d3:27:b0:56:2b:
dd:ef:5d:16:2a:2e:47:9b:9f:91:28:47:c8:cc:61:
2b:06:35:31:27:26:46:f3:31:7c:7d:4a:82:03:07:
93:16:88:2e:60:1c:b3:53:d3:a7:3f:ad:d7:bb:5f:
73:de:0b:b4:35:ea:64:86:17:56:5e:c3:62:0b:a9:
55:4c:81:a8:06:2d:69:fb:da:bf:d6:c5:3d:b5:68:
21:07:3c:24:a7:59:1e:0a:a0:ca:a0:62:11:26:e8:
67:81:30:62:b2:c2:88:a4:82:38:f6:31:41:7a:25:
e2:b5:c7:54:91:6f:de:ba:e3:bb:41:33:8f:9d:9a:
e0:34:e1:34:72:a1:15:6d:db:b2:e4:2e:32:ca:20:
55:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AD:6C:08:80:7B:9B:82:DB:DF:F1:93:CE:7E:E5:E2:0F:B2:BC:97
X509v3 Authority Key Identifier:
keyid:88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:58:5e:48:b5:47:5f:1a:44:62:1c:14:fe:17:a5:e0:5d:95:
ef:75:02:23:d0:a6:23:19:bf:4e:e0:04:ec:a6:e0:05:7f:d8:
02:09:c8:7e:1b:6d:66:6d:b0:c0:ab:01:7b:ae:61:15:19:7a:
cd:23:ef:5c:e2:47:94:c4:4b:16:8e:2b:a3:d0:41:54:fd:c0:
46:f5:2c:2c:0a:b0:3a:65:d0:d2:e1:8b:cb:28:df:c6:8c:e8:
50:e6:70:84:69:8c:93:61:b5:4c:ef:52:b4:45:42:6e:36:59:
62:8d:03:27:eb:c5:e4:d2:83:e0:63:85:f3:5e:0a:a4:b3:8f:
70:7d:b2:1d:30:06:43:02:25:2e:c5:2f:6e:17:8c:f5:ae:bb:
37:a6:c8:2c:34:73:a4:e0:c3:af:22:e5:1e:df:fb:65:c9:52:
68:a7:31:98:11:74:19:20:79:42:5d:a3:6b:0d:c5:ed:e0:f5:
34:2f:27:9a:91:ca:d4:cb:c6:31:97:3d:c0:16:4c:10:a9:67:
38:ab:18:49:11:f7:92:5e:64:df:b4:b6:4a:54:45:1d:3b:1c:
03:dc:1c:f8:0e:ea:da:33:1c:5d:35:a0:ea:84:89:89:29:10:
c2:a8:c8:9e:0e:2d:d9:59:80:bf:87:4f:f2:a0:87:53:bf:a3:
35:4e:44:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:45:11 2025 by rpki-client