Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
File: VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft (raw, json)
Hash identifier: YN0/kT65w15ijQ3Ezv1ibc+HZWU/50MiIVVuLBhK6To=
Subject key identifier: 19:B8:10:38:00:F4:A2:B7:E0:7A:54:82:12:B7:B3:41:9D:42:C6:95
Authority key identifier: 55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
Certificate issuer: /CN=559a769412d2d963b491ebe31d44111dcafccc94
Certificate serial: 0194C387D17FA081BC38BA72E94FCF60E939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
Manifest number: 0311
Signing time: Sat 01 Feb 2025 22:00:45 +0000
Manifest this update: Sat 01 Feb 2025 22:00:45 +0000
Manifest next update: Sun 02 Feb 2025 22:00:45 +0000
Files and hashes: 1: VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl (hash: k5Qm90DTFsaAnkXFpM9MQ9DZy75CQNiCWIsJ0XlPOw4=)
2: r1lquQ-XjIWjOg1LAkyGn6KMjo0.roa (hash: wZhXEM3Xxa5+Fz5oyJ1++QkvfDJcpfPRAfCqMyTq70w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:d1:7f:a0:81:bc:38:ba:72:e9:4f:cf:60:e9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=559a769412d2d963b491ebe31d44111dcafccc94
Validity
Not Before: Feb 1 22:00:45 2025 GMT
Not After : Feb 2 22:00:45 2025 GMT
Subject: CN=19b8103800f4a2b7e07a548212b7b3419d42c695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ab:63:e9:e7:f5:b9:47:26:5c:98:92:10:e8:
ef:8b:da:89:44:31:ad:06:12:7d:e6:39:57:61:a0:
e9:5f:f6:b1:e0:e6:0b:b3:4e:9c:48:1e:39:8f:5e:
2e:f8:59:84:bb:39:8d:4d:55:2e:b2:6a:72:cd:58:
b1:78:81:c4:a2:19:b7:67:56:b0:da:2a:6e:30:61:
56:5a:10:66:b2:c7:3d:92:77:ae:f2:12:da:d8:ba:
4f:ba:7c:1a:d6:1a:91:1e:42:00:7c:fa:8e:99:e6:
2d:55:62:56:2a:40:7c:7c:0b:d5:87:f7:24:48:d6:
a0:77:14:46:29:6e:19:b7:66:90:30:c9:85:4c:a7:
df:6a:42:a0:51:7c:66:1e:6b:8d:32:0f:c6:ce:09:
72:d7:79:ec:79:84:5e:9f:69:6c:cc:93:ac:c3:8c:
f1:fc:97:6d:b0:b8:ea:dd:a2:10:1b:ee:e7:5f:ff:
e7:19:a6:68:49:91:c0:94:e9:51:27:fc:81:1a:d6:
0f:8b:3d:ac:ad:80:c7:40:06:e4:29:42:0e:2b:8c:
60:86:47:7c:4f:ec:23:1a:b5:c8:f9:34:0d:c8:4f:
41:96:c6:a6:f6:da:75:8c:11:ec:d9:ee:d2:19:46:
9d:99:6c:9b:d2:33:4b:36:e3:d3:18:40:b2:05:ae:
74:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B8:10:38:00:F4:A2:B7:E0:7A:54:82:12:B7:B3:41:9D:42:C6:95
X509v3 Authority Key Identifier:
keyid:55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:31:f3:b1:4e:38:58:82:35:f4:9d:86:24:3f:03:4a:41:09:
80:e0:15:0e:25:c3:27:1d:a4:5a:2d:10:38:f3:b6:76:96:bf:
16:9a:31:92:4a:fd:0f:08:d4:bb:4c:1c:53:47:9b:6a:d7:11:
eb:bc:e0:de:53:cd:a5:3a:cf:ad:73:b7:bd:ab:85:61:1b:e1:
96:26:bf:dd:6b:e5:fc:4b:72:cb:5c:b0:11:2b:81:b9:50:c0:
ec:88:1d:09:a7:c6:65:ef:56:97:7f:de:69:54:0c:68:bb:14:
3e:ff:3e:c6:16:b2:63:76:0c:3e:ec:70:2f:4d:c4:5d:b9:ca:
7a:d9:49:7d:8b:b9:d5:32:78:da:75:e1:b3:df:5b:2b:ee:01:
ba:88:cf:92:5b:78:76:2f:f1:90:df:c0:bc:2d:6b:d1:5a:97:
71:b9:90:f7:cf:00:5a:91:73:e7:1b:20:e9:0f:97:2c:8c:1a:
23:92:da:d3:f2:88:2c:fe:84:a4:52:1e:a4:40:bd:81:0c:b9:
6a:cf:61:e5:20:fd:01:d6:7e:76:b7:7b:80:70:0a:8d:40:52:
0e:df:ed:e3:9f:d1:3b:a6:04:72:83:00:eb:c2:9d:de:1c:7e:
ef:9a:75:24:37:1a:8d:33:ed:8d:60:90:c4:e2:ed:84:32:90:
21:61:a5:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:57:47 2025 by rpki-client