Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
File: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft (raw, json)
Hash identifier: QY6lV/h7fLtuvbG3XEdh/icwohPRUL/35elQtbeorgk=
Subject key identifier: 34:4F:06:DB:F0:A4:7B:55:3A:F8:30:F4:97:4B:B7:8E:0C:8E:4B:92
Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Certificate serial: 019511D93952B176240B15F58A683B5C3D8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
Manifest number: 1396
Signing time: Mon 17 Feb 2025 03:00:03 +0000
Manifest this update: Mon 17 Feb 2025 03:00:03 +0000
Manifest next update: Tue 18 Feb 2025 03:00:03 +0000
Files and hashes: 1: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl (hash: WHUuhiW7Prh80sY25FT+rEHnnrJG1GdKnb1PBOx4cFQ=)
2: _4Ndkg3UKi9vHxY0SVHFR9i7YHI.roa (hash: gVwQ/KDnz7z975mDXEiOOePjhBe/QBZrgXsjy6HuzNg=)
3: mP0KR8qjiNVVziS_navTGUPwqiA.roa (hash: xZa0pPgGKaK3igZY01F/k1ukXOLEVZhp0AOMi/bszSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:d9:39:52:b1:76:24:0b:15:f5:8a:68:3b:5c:3d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Validity
Not Before: Feb 17 03:00:03 2025 GMT
Not After : Feb 18 03:00:03 2025 GMT
Subject: CN=344f06dbf0a47b553af830f4974bb78e0c8e4b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:08:45:71:06:df:36:41:7e:a9:4d:4c:e4:ac:
12:e3:9b:c8:05:9d:44:51:50:a0:45:a5:b5:fa:a8:
80:6c:a1:e1:a1:1e:85:8c:af:7a:1f:a3:c6:aa:a3:
cd:d3:6b:c5:67:2a:6d:01:60:ee:5e:06:89:21:c2:
5e:77:55:55:26:42:f2:96:1f:a1:bd:6b:aa:d1:5d:
a3:fb:c6:3f:78:08:dc:ee:4d:9d:23:00:89:b1:13:
3b:f0:8c:77:c5:e5:8b:08:3a:79:e0:81:f9:1b:43:
16:21:4f:30:63:e3:a7:21:5a:d1:ac:d0:4c:b7:2b:
00:94:64:d5:44:eb:5f:65:2f:3a:90:46:7b:98:e9:
28:55:6a:98:52:e2:92:c8:eb:9c:00:cf:8b:11:18:
38:74:8f:5d:52:2f:45:df:4b:79:d0:3f:ed:bf:28:
cc:a0:b2:6b:7d:a2:6f:d2:0e:f5:a6:3b:b8:9b:9d:
23:9c:ab:10:1a:0e:7b:e8:3d:58:22:43:06:9b:b9:
fe:b6:f1:a5:e7:a5:08:49:99:9a:86:89:0d:c7:4f:
bf:b3:5b:f5:e0:28:86:a5:18:95:9b:12:89:5e:07:
90:68:1f:77:7f:d6:25:10:d5:13:7c:8f:a1:d2:5d:
c2:f4:dd:6a:ef:66:46:fc:3c:57:88:e0:af:a4:98:
72:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4F:06:DB:F0:A4:7B:55:3A:F8:30:F4:97:4B:B7:8E:0C:8E:4B:92
X509v3 Authority Key Identifier:
keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ae:27:7c:8f:bd:f0:65:63:af:97:32:89:99:4b:fe:ea:b9:
e7:dc:8c:7c:9a:be:aa:85:a4:de:50:60:9d:5d:9b:9d:51:9c:
80:07:7f:65:91:97:f1:5b:29:8a:af:79:cb:f1:c3:51:b7:c7:
00:d6:83:94:ff:2b:c9:f8:13:d8:a4:38:ff:09:47:61:50:a5:
96:0f:d3:1e:3a:6c:67:9b:91:7b:68:98:8b:dc:2f:e0:1d:e1:
ec:94:88:36:1e:79:0f:23:21:bf:3e:26:82:ac:ea:49:c2:24:
21:04:68:de:ad:b3:52:73:1f:3c:24:e8:ab:54:fd:42:06:c8:
40:72:e4:ff:4e:65:f2:d2:71:57:57:81:4b:05:82:f6:8d:36:
fd:80:d8:ad:fe:b4:01:25:35:3f:0c:91:4b:41:52:54:8c:eb:
e1:0a:e0:71:a8:12:66:14:da:df:23:85:b1:48:4d:66:0a:19:
12:e8:bb:96:d5:26:f1:b7:2a:3b:3c:6a:0b:e9:2a:17:a8:8a:
ca:52:df:6f:1f:f6:f3:c0:6f:c8:63:40:02:df:e0:bf:04:a6:
ee:10:dd:b4:4b:87:1e:09:eb:d4:d3:23:3c:19:45:b7:95:6b:
36:ea:71:e2:97:73:81:81:cd:46:2b:d6:12:2f:55:4b:a4:71:
1e:a2:9f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:19 2025 by rpki-client