Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: dGY2MJAb1xdG2glalJQbY3xzrUBizjTd5f4lNok4W9U=
Subject key identifier: 8C:5B:DD:57:5C:93:4F:7C:98:75:BB:5C:D7:F9:E4:86:4A:C2:B4:C5
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 0194C3879C18DA9B0AD45516D762411B5DF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 142C
Signing time: Sat 01 Feb 2025 22:00:31 +0000
Manifest this update: Sat 01 Feb 2025 22:00:31 +0000
Manifest next update: Sun 02 Feb 2025 22:00:31 +0000
Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=)
2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: Spv9wp3WQi/gigjnoD6u54qYJLFgJgZfZjRRexRFmMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:9c:18:da:9b:0a:d4:55:16:d7:62:41:1b:5d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Feb 1 22:00:31 2025 GMT
Not After : Feb 2 22:00:31 2025 GMT
Subject: CN=8c5bdd575c934f7c9875bb5cd7f9e4864ac2b4c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e4:27:57:13:e1:18:57:7e:aa:44:3e:44:ce:
2c:2e:80:c2:94:db:2c:37:d0:2a:15:e5:27:eb:12:
70:0d:b7:70:a8:f7:8a:0e:c1:62:98:28:09:2d:ae:
d0:48:3a:40:b1:2d:1d:77:76:0a:d8:c5:4c:cb:25:
20:ae:c3:87:e4:15:57:bb:e4:4a:9f:21:10:9d:3d:
31:e7:cb:12:39:d1:2b:b3:b2:80:74:bc:ad:fe:78:
23:7d:8e:35:1b:09:da:80:8f:ad:16:d4:fa:c8:3f:
4e:4c:10:3e:af:80:18:10:e5:99:c5:f7:76:9e:26:
85:cf:2a:68:4e:90:24:32:a2:25:a5:2a:0c:16:0d:
e5:01:87:e2:f4:1e:9a:a6:f1:f1:b2:c7:b4:6d:48:
8a:35:e2:a3:ec:14:d7:db:49:18:72:d0:a3:cb:2b:
4b:72:2e:a9:36:cb:59:6f:55:93:7a:0b:46:84:c7:
49:df:c2:34:f8:6c:bf:39:51:fb:c4:42:83:69:4f:
4e:84:aa:ec:42:31:3e:88:84:43:73:68:74:bf:85:
03:50:aa:36:52:62:4b:5b:05:a1:cf:18:c1:7c:55:
8f:29:5e:55:5b:ce:23:d3:76:aa:cb:07:0d:49:02:
fc:7c:dd:27:6f:d3:24:21:90:d9:76:cb:57:10:0d:
0c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:5B:DD:57:5C:93:4F:7C:98:75:BB:5C:D7:F9:E4:86:4A:C2:B4:C5
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f1:18:85:ec:e4:13:35:2d:66:ac:99:00:97:e9:29:a8:f8:
43:27:f0:9a:14:8c:b9:54:35:42:77:10:a4:2b:68:ce:22:25:
d2:cb:d2:5e:5c:3c:9e:11:1f:a9:59:0f:a2:1c:55:0c:2b:b3:
85:ff:e3:7f:99:d8:67:08:d1:f2:32:00:a6:37:4f:20:55:07:
02:39:23:67:f9:2d:3e:d5:68:d2:ff:4d:97:08:6a:fa:80:5f:
0d:21:6b:d6:12:30:b6:8c:d1:80:6e:47:f8:ea:64:21:67:04:
95:85:27:a4:b3:90:f0:e6:a1:1d:a8:9a:e6:f1:a7:4d:ac:08:
fc:26:52:be:72:ae:13:d2:ad:aa:51:7f:43:b6:5a:ff:08:0a:
2d:a1:40:69:8f:38:0d:6b:c5:1e:44:94:91:35:87:22:ac:bf:
51:90:2f:6a:db:12:5b:ef:3c:0c:a1:85:b9:ce:d7:33:21:0e:
d4:4d:81:32:b8:da:be:d4:3e:0b:26:cf:97:d7:5a:36:a2:51:
b1:62:4d:ee:13:eb:57:69:e6:33:bd:fd:ab:fb:4e:df:7d:f7:
50:d8:f1:1c:ff:dc:01:ab:ec:ac:80:a3:95:59:42:8c:78:80:
2d:80:53:38:17:5e:68:82:6e:69:c5:f8:86:fa:d7:5f:31:5d:
67:e6:e8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:01:05 2025 by rpki-client