Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
File: KiZGBSRa8gGcKTw3KPal4lXYnyU.mft (raw, json)
Hash identifier: ynv8y2ZpPfdyrO6gLi8hNJ8fmNcDreJgx0xZQNKUkCY=
Subject key identifier: 7B:91:E4:BD:E0:59:12:50:0B:31:23:EB:68:7D:EB:60:C2:34:45:33
Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25
Certificate serial: 0195116BEA82F2719649178AB7B3FAACD7F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 01:00:39 +0000
Manifest this update: Mon 17 Feb 2025 01:00:39 +0000
Manifest next update: Tue 18 Feb 2025 01:00:39 +0000
Files and hashes: 1: 3KSN_k3KfyRIpkOpKsbbz9Bqq5E.roa (hash: iHgOduhUsida+9pHg8iFsStpH/s/1dREHiJkoJW0aww=)
2: KiZGBSRa8gGcKTw3KPal4lXYnyU.crl (hash: E8O5cJiqwqCFepdMEILojbiR9aeKvSK/Y/RF3d4/qTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6b:ea:82:f2:71:96:49:17:8a:b7:b3:fa:ac:d7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25
Validity
Not Before: Feb 17 01:00:39 2025 GMT
Not After : Feb 18 01:00:39 2025 GMT
Subject: CN=7b91e4bde05912500b3123eb687deb60c2344533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:49:be:a0:33:79:7e:42:4a:c8:62:d7:64:
c7:7f:d9:09:51:5e:fe:66:f8:d7:05:a7:3d:fe:e5:
0f:c0:ca:02:3e:d6:89:a4:1a:1e:01:5f:d9:4f:c2:
05:56:d2:40:8c:1f:3a:41:4d:d2:69:ca:9f:83:6f:
5d:98:65:2a:b2:3f:cb:35:0d:5e:c6:30:43:b2:e3:
0f:69:2d:57:e4:a2:99:42:20:4a:51:be:07:f3:31:
bc:84:a7:27:13:5d:4f:97:d8:90:d5:ae:1e:1c:65:
5f:05:f6:bf:9e:5d:0e:56:16:50:33:5f:67:56:52:
12:4d:61:ac:88:f1:d3:90:d6:4e:b3:3a:eb:21:2b:
f8:e9:2b:21:29:5f:d0:7b:97:e5:3c:53:84:79:a6:
85:52:94:b0:88:54:9b:9a:86:b2:68:29:bf:7e:02:
d8:42:5f:68:05:16:e4:a2:1e:9a:ca:60:9f:ad:15:
db:15:9c:9d:0b:84:39:7b:d4:8c:d0:dc:ac:9d:36:
d1:e6:63:03:12:cf:97:77:3d:79:d4:8b:a6:b4:09:
41:1e:8d:52:67:aa:b7:28:8d:7d:0b:ae:ed:9e:1d:
47:9a:d1:b4:5a:bb:c9:66:17:11:f9:5d:dd:84:84:
5b:b0:4c:e7:1a:91:e9:94:7d:b1:dc:8c:9a:72:99:
a5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:91:E4:BD:E0:59:12:50:0B:31:23:EB:68:7D:EB:60:C2:34:45:33
X509v3 Authority Key Identifier:
keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:43:99:58:30:0b:ae:99:a3:20:af:02:45:de:c3:94:be:a5:
df:e4:8b:7c:a2:13:df:6f:59:16:32:66:4f:00:84:a2:91:42:
85:31:6d:55:89:73:07:1c:c2:f1:39:ff:39:5d:b3:f1:a5:61:
99:62:c2:cd:cd:bd:96:2b:67:fd:ee:ae:50:50:8f:b6:06:7a:
ea:b2:fd:85:ae:e3:b9:91:e7:77:df:e0:85:91:f4:a2:7c:38:
30:00:c7:f2:f0:a6:6e:55:87:e0:75:44:a9:52:3d:85:78:e0:
69:a7:c0:73:58:4b:bf:3b:e5:49:93:90:06:11:bf:d9:60:bc:
ab:a3:95:e8:3a:92:65:e3:05:00:ca:91:b3:d4:0d:92:82:a6:
25:9f:ee:d2:55:9a:dc:23:98:28:ef:8a:50:7f:37:17:04:4a:
28:8c:f8:2f:e4:b7:d8:40:69:cd:7a:59:ba:e2:f8:39:33:bb:
e8:80:88:da:1f:a1:b7:bb:3f:75:62:31:bf:83:bd:02:fb:56:
ba:49:de:aa:c7:ff:2f:a8:78:24:3b:20:b2:18:66:ce:23:3c:
34:26:e9:63:4e:ed:50:93:41:c8:b4:36:c4:84:f4:f8:a6:df:
d3:b0:54:ce:34:33:c4:f7:d9:1e:d4:d4:4d:20:c8:4f:fd:07:
50:0f:25:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:54 2025 by rpki-client