Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
File: zZFzvIKKtx2i68r6f4mOxqoe6nY.mft (raw, json)
Hash identifier: 8QQqJDnITT1pPm7D/u1G1VSmylR3mjbn9+XhJtNTgXM=
Subject key identifier: 85:92:0B:84:C6:A4:21:19:FD:67:DF:93:89:98:61:6F:47:78:5D:7A
Authority key identifier: CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
Certificate issuer: /CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Certificate serial: 019353BEA7E4383CF05D6C7F88B0C94F783D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
Manifest number: 01FD
Signing time: Fri 22 Nov 2024 12:00:23 +0000
Manifest this update: Fri 22 Nov 2024 12:00:23 +0000
Manifest next update: Sat 23 Nov 2024 12:00:23 +0000
Files and hashes: 1: QIrGHOfZ_JI56-_dKM1hpQ_mI4Y.roa (hash: bWjqV698nhcNBAp02zS2YI203Ho57rs7hgQY+B6x/VM=)
2: zZFzvIKKtx2i68r6f4mOxqoe6nY.crl (hash: kS4ekWjIoOYVDCSBrv4REmnbuN8febR+aSk5aLbfWEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:be:a7:e4:38:3c:f0:5d:6c:7f:88:b0:c9:4f:78:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Validity
Not Before: Nov 22 12:00:23 2024 GMT
Not After : Nov 23 12:00:23 2024 GMT
Subject: CN=85920b84c6a42119fd67df938998616f47785d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:40:c8:c7:68:dc:34:74:8c:eb:6e:58:c2:
55:65:58:49:6b:90:56:63:0d:2f:66:3c:6f:86:39:
6a:e9:e0:a7:4a:8c:30:fe:fd:5e:ff:cb:32:40:f9:
e7:0e:d8:f8:1c:3a:1c:54:71:6e:72:82:3a:b3:a6:
9e:bc:7a:82:fd:80:63:34:03:53:36:b8:26:43:38:
89:0f:4a:3a:28:0d:07:ae:ec:8a:f9:15:8e:f0:fd:
68:2f:98:b0:c8:6e:3c:ba:aa:f2:1d:68:cc:04:a1:
e1:b5:00:b9:67:8d:d4:16:fd:4c:5e:5f:fb:14:df:
f7:e8:e4:32:b6:6a:81:1e:1d:fc:2b:98:92:28:46:
de:d9:a2:42:ba:7c:36:3c:4f:5f:2e:8e:01:34:c3:
4c:f6:60:38:9e:50:af:6d:1d:d0:56:04:82:a2:29:
97:11:42:aa:f8:18:45:fc:74:79:86:e1:5e:c0:4f:
18:b8:17:25:8e:9b:b8:e2:a2:79:df:36:e3:a3:e2:
f2:8d:82:38:8c:63:ed:29:ba:c7:9a:b5:8b:1c:7f:
b4:4d:83:74:7b:cf:eb:82:ea:29:ab:b9:4b:78:74:
bf:5f:2e:34:c3:fe:61:9a:72:40:8d:72:f3:4d:37:
72:37:61:ca:61:40:73:a3:3c:dd:67:91:eb:42:34:
e7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:92:0B:84:C6:A4:21:19:FD:67:DF:93:89:98:61:6F:47:78:5D:7A
X509v3 Authority Key Identifier:
keyid:CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:fb:86:f1:0a:43:e3:ab:3f:99:83:cf:63:c7:5f:7b:7e:ba:
d2:fa:36:78:fc:25:63:a0:f6:03:b2:17:8c:bb:f8:af:14:1f:
32:c6:40:f7:99:25:4f:08:af:bd:3b:c4:d4:0a:2a:d6:21:22:
b2:d0:01:9b:09:35:4c:10:91:bb:ec:42:86:43:96:cb:c2:7a:
e7:b9:21:66:40:ba:a2:53:19:ad:ad:13:c8:dd:c0:3d:5e:08:
0a:6b:12:c9:dc:8a:dc:55:62:be:74:2b:79:38:83:4b:c4:01:
17:2c:bb:4c:08:69:50:d7:80:cb:6b:80:34:29:90:e5:c7:2d:
07:38:a9:af:66:2a:aa:e8:8d:4b:6f:dd:c2:90:f4:c5:63:fd:
bb:42:53:21:14:fd:00:a5:b3:6b:9d:4e:6a:04:a9:e8:81:88:
18:33:de:8b:d5:25:9c:a6:2b:b7:9a:ca:2a:7d:81:66:c4:9c:
09:f7:5e:c2:54:60:a7:17:07:64:cb:5c:d0:c4:4f:2d:b3:d8:
a0:e1:92:29:48:4b:e8:74:dd:a4:b7:60:9c:d3:6f:1b:94:df:
ff:cb:0b:e9:ab:73:7d:60:5f:91:6d:1d:8f:e8:da:99:40:04:
42:b3:13:fa:a2:9b:19:21:eb:83:43:62:eb:50:35:1d:b8:1f:
15:d0:17:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:52:53 2024 by rpki-client on console-ams.rpki-client.org