Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json)
Hash identifier: T8XeUkwiqrlJ0ZJG9hwDZNenTMPPxLxNroxr+l/D9MM=
Subject key identifier: 4F:D5:DE:9C:BA:DD:03:9D:84:95:C1:FF:FC:24:C5:CE:7D:76:06:65
Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614
Certificate serial: 0194C3F561DDB91535BDBC8A343478069700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
Manifest number: 06EA
Signing time: Sun 02 Feb 2025 00:00:25 +0000
Manifest this update: Sun 02 Feb 2025 00:00:25 +0000
Manifest next update: Mon 03 Feb 2025 00:00:25 +0000
Files and hashes: 1: jCdTYmvYMmAVCpwgaEf86kYug58.roa (hash: ztqwVKV63uIGzbrcGebHuh3wlQjH5xZyStSjcOzpGqU=)
2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: RWMYMAUpQMX1xheCnU33vAGbVGfWMJwVd0aVYm1QF98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:61:dd:b9:15:35:bd:bc:8a:34:34:78:06:97:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614
Validity
Not Before: Feb 2 00:00:25 2025 GMT
Not After : Feb 3 00:00:25 2025 GMT
Subject: CN=4fd5de9cbadd039d8495c1fffc24c5ce7d760665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:56:35:f0:f1:dc:91:46:a2:47:11:ee:ba:e2:
b1:9b:f7:45:9f:b7:7d:0b:44:fd:f6:a3:c0:f2:d5:
ae:59:55:03:97:a4:51:5d:45:12:dd:0d:db:8d:d5:
02:dc:93:1f:b2:0d:fa:b2:d7:35:97:68:a2:18:78:
9d:43:85:22:56:fe:1e:62:72:e3:b8:fb:d9:77:da:
ca:31:a7:ca:bb:2d:b6:c9:10:62:f9:57:25:77:92:
7e:c3:f0:fa:a8:bb:ad:6e:b7:ce:4e:74:01:a2:a5:
05:fc:59:2f:ca:15:e2:77:1e:a9:bb:25:8f:0d:e6:
a3:22:9a:c0:6b:af:66:d7:68:d9:24:00:d9:40:d9:
ab:86:c2:76:41:27:c4:36:45:db:71:57:bc:27:2a:
1c:81:ff:b9:0f:11:c8:75:9c:89:e4:5b:85:5b:e9:
a1:64:94:a6:a3:da:b4:44:ee:05:a8:ab:5f:80:0d:
d9:3e:ac:48:74:ca:28:bf:46:57:93:17:c4:53:9e:
07:aa:71:d8:f8:8b:85:ec:ef:18:c8:4a:4f:44:2b:
de:1d:b3:5f:ea:2f:d0:70:5a:3c:69:87:f9:94:eb:
8b:25:b8:20:06:eb:be:ca:aa:03:6f:a7:4a:b3:08:
f9:42:cf:d1:d7:5d:e4:2f:52:18:cc:82:21:6e:32:
c6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D5:DE:9C:BA:DD:03:9D:84:95:C1:FF:FC:24:C5:CE:7D:76:06:65
X509v3 Authority Key Identifier:
keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:e5:8a:61:73:9b:b1:bb:ba:71:04:6a:c0:00:82:6c:01:6e:
62:32:3c:2c:a4:2e:e0:e9:b5:d0:55:f4:81:73:09:e8:45:25:
95:32:1e:7f:a3:ca:61:16:f2:2c:39:ed:07:49:64:e2:3f:0e:
29:92:dc:cd:90:ff:88:fc:be:01:6f:5a:bd:f7:08:c5:eb:53:
ae:29:0c:23:79:68:45:8a:c6:30:c6:d9:22:42:f2:9c:50:00:
5f:2d:e5:8c:ac:7e:f1:9a:9e:7e:16:3d:88:23:a4:3b:29:54:
ce:e6:84:b8:a7:02:b7:e5:e2:cb:2f:29:15:14:e0:f0:00:25:
8d:ed:de:52:ad:ba:cd:b4:c6:9b:17:62:c5:65:44:1e:56:26:
66:5a:d2:58:b8:f0:f5:c1:e3:7f:73:56:c0:df:90:3e:99:13:
79:a9:98:c0:57:82:7c:28:a0:5d:58:12:f4:71:72:cf:e0:43:
26:1f:eb:06:8d:0b:12:29:aa:f3:c7:1c:3f:12:10:60:21:ac:
13:f8:89:35:e6:58:36:b1:d2:00:5d:70:c2:6c:4b:2e:4e:f2:
de:e2:1e:50:19:d1:16:c9:c3:18:94:41:c7:5a:f6:a3:1e:bc:
ce:86:11:d5:cb:b4:ad:75:1a:c2:4b:e0:2d:da:0b:c0:58:1f:
da:1a:4c:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTD9WHduRU1vbyKNDR4BpcAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3Mzg3OWRlMjU5NGNmZGQ0YzllNDIyNTU1NjI4MWIyMDhk
OTQ2MTQwHhcNMjUwMjAyMDAwMDI1WhcNMjUwMjAzMDAwMDI1WjAzMTEwLwYDVQQD
Eyg0ZmQ1ZGU5Y2JhZGQwMzlkODQ5NWMxZmZmYzI0YzVjZTdkNzYwNjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFY18PHckUaiRxHuuuKxm/dFn7d9
C0T99qPA8tWuWVUDl6RRXUUS3Q3bjdUC3JMfsg36stc1l2iiGHidQ4UiVv4eYnLj
uPvZd9rKMafKuy22yRBi+Vcld5J+w/D6qLutbrfOTnQBoqUF/FkvyhXidx6puyWP
DeajIprAa69m12jZJADZQNmrhsJ2QSfENkXbcVe8Jyocgf+5DxHIdZyJ5FuFW+mh
ZJSmo9q0RO4FqKtfgA3ZPqxIdMoov0ZXkxfEU54HqnHY+IuF7O8YyEpPRCveHbNf
6i/QcFo8aYf5lOuLJbggBuu+yqoDb6dKswj5Qs/R113kL1IYzIIhbjLGvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/V3py63QOdhJXB//wkxc59dgZlMB8GA1UdIwQY
MBaAFKc4ed4llM/dTJ5CJVVigbII2UYUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9kYmYxODUtYjA4Ny00YjQ0LThmODEt
OWY3ZDk3YzYzMTUyLzEvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9kYmYxODUtYjA4Ny00YjQ0LThmODEtOWY3ZDk3YzYzMTUy
LzEvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFOWKYXOb
sbu6cQRqwACCbAFuYjI8LKQu4Om10FX0gXMJ6EUllTIef6PKYRbyLDntB0lk4j8O
KZLczZD/iPy+AW9avfcIxetTrikMI3loRYrGMMbZIkLynFAAXy3ljKx+8ZqefhY9
iCOkOylUzuaEuKcCt+Xiyy8pFRTg8AAlje3eUq26zbTGmxdixWVEHlYmZlrSWLjw
9cHjf3NWwN+QPpkTeamYwFeCfCigXVgS9HFyz+BDJh/rBo0LEimq88ccPxIQYCGs
E/iJNeZYNrHSAF1wwmxLLk7y3uIeUBnRFsnDGJRBx1r2ox68zoYR1cu0rXUawkvg
LdoLwFgf2hpMmw==
-----END CERTIFICATE-----
Generated at Sun Feb 2 07:02:12 2025 by rpki-client