Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
File: g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft (raw, json)
Hash identifier: tXmPolk5JPNqKDE4koAKQEaAmsR1dGvxZjjquvMX+uI=
Subject key identifier: 6B:8F:C1:64:A2:22:E1:44:EF:ED:B8:D4:43:8B:B6:1B:C7:AF:39:DB
Authority key identifier: 83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
Certificate issuer: /CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Certificate serial: 019510C6ADF0C23A8755EB5B308B618B1A77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
Manifest number: 03BF
Signing time: Sun 16 Feb 2025 22:00:10 +0000
Manifest this update: Sun 16 Feb 2025 22:00:10 +0000
Manifest next update: Mon 17 Feb 2025 22:00:10 +0000
Files and hashes: 1: g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl (hash: +EwtKhDSANcT1VaRB7bh9NkvtJtDKpuKcbtdzCXfi3U=)
2: i_7sQOqEUBCfUKXhCQozAQCgyio.roa (hash: xzt+AxE4W+DPtsBUDajL0GS1rN6Mde5JKYoD1qrRxjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:ad:f0:c2:3a:87:55:eb:5b:30:8b:61:8b:1a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Validity
Not Before: Feb 16 22:00:10 2025 GMT
Not After : Feb 17 22:00:10 2025 GMT
Subject: CN=6b8fc164a222e144efedb8d4438bb61bc7af39db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:77:41:21:54:5d:f1:16:ee:db:35:4f:e3:54:
b9:d8:24:11:44:53:0a:37:28:1f:fc:3e:04:e5:12:
38:91:17:98:e1:ee:4e:56:62:a5:b1:ab:3f:8b:fd:
f1:29:bf:dc:e5:5c:c3:df:fc:87:cb:38:7b:83:b3:
f9:85:31:84:e3:d9:74:9c:6c:5d:60:dd:af:a4:76:
48:7d:52:33:3c:cf:b6:a4:1a:bb:3b:a2:3e:a6:9e:
77:85:a8:66:ea:df:b5:5f:e7:9f:78:5a:46:3f:d5:
08:90:de:0f:2d:ab:e4:ca:81:02:3d:6e:35:33:ca:
6e:8f:9a:fa:dd:68:e1:da:67:e7:f4:3a:eb:51:e4:
16:35:5f:e7:fb:45:69:cc:68:70:c7:32:29:14:6e:
af:ac:8f:d4:c4:be:ac:02:64:6d:a9:7a:1f:27:64:
d1:ec:1b:ae:9d:44:09:7f:d9:b2:cb:1b:f9:bd:e1:
ce:c2:5a:25:37:c2:68:6e:00:32:1a:db:b7:c9:9f:
46:d4:bc:e4:13:80:10:79:e3:d7:c1:c6:82:39:e2:
ae:a3:a2:e7:75:f3:c1:67:c8:2a:46:97:e4:3c:8d:
2b:3f:a9:d7:fa:90:f4:87:aa:1d:c4:b1:c8:c3:ec:
9a:92:47:b7:9a:df:52:e8:7d:a3:47:eb:39:ed:3a:
ec:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:8F:C1:64:A2:22:E1:44:EF:ED:B8:D4:43:8B:B6:1B:C7:AF:39:DB
X509v3 Authority Key Identifier:
keyid:83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:1c:69:d7:62:ef:d3:ff:3d:20:b1:3e:c1:3c:43:95:e5:d3:
d6:1f:90:24:cd:ad:a2:df:e3:5a:86:8d:a8:05:43:22:a3:16:
a5:f8:80:83:f8:6e:40:4e:74:52:7a:6f:09:b2:04:f2:df:89:
3e:43:1b:d1:3d:2b:e0:9b:18:f8:da:72:e2:92:e8:b6:1f:a3:
2c:9d:da:f3:0d:40:38:13:b8:8a:a9:45:2a:4a:aa:86:6a:df:
22:11:07:a5:00:f5:bd:51:ba:38:cb:11:ba:5c:db:15:f8:e7:
9e:45:af:cd:06:a2:e9:0d:f4:bd:53:94:a4:8c:24:73:d3:74:
e1:36:1a:0b:13:5d:59:89:69:34:56:81:4a:66:d0:b3:7a:b3:
5e:20:72:40:f0:45:26:7c:bc:5d:3a:08:89:29:8f:a6:d7:98:
e4:b2:0c:78:5a:f3:e5:25:4d:b2:57:b1:27:9a:3c:9d:7c:c4:
2b:43:e6:be:c8:e5:a3:86:91:ae:12:a5:08:2b:3d:8f:bf:d9:
52:ad:61:d5:3c:f0:99:f5:8c:34:a6:84:53:61:55:c3:16:98:
a8:7e:3c:ad:41:07:fb:33:9f:10:4f:56:c3:b9:f1:4b:7f:e4:
20:90:5f:71:57:f2:02:bb:f3:ab:e0:85:49:ac:99:26:5e:8b:
b9:e3:46:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:18 2025 by rpki-client