Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
File: ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json)
Hash identifier: vRjAEKRvYXqE+fc7/+TkulIEGE1xGH1H3CRshAV5KwQ=
Subject key identifier: AB:41:95:2A:BC:4B:DA:10:7E:22:0A:45:45:23:E2:FA:63:F4:57:92
Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
Certificate issuer: /CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Certificate serial: 019511A29C2C7BF39257D7240AF386AA7E90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 02:00:24 +0000
Manifest this update: Mon 17 Feb 2025 02:00:24 +0000
Manifest next update: Tue 18 Feb 2025 02:00:24 +0000
Files and hashes: 1: NJmmW764rdnW_zIUswA3g-8-n2M.roa (hash: uNbv9sZggt1kjUfoR4Ji7KAa4WT9RRySZVjN33ZdWTA=)
2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: 6SymfElGB3g8I5s4sSYPQoScuimbo7fc+LkFbPkWiuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:9c:2c:7b:f3:92:57:d7:24:0a:f3:86:aa:7e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Validity
Not Before: Feb 17 02:00:24 2025 GMT
Not After : Feb 18 02:00:24 2025 GMT
Subject: CN=ab41952abc4bda107e220a454523e2fa63f45792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ea:ed:69:0b:8b:5b:ef:0c:24:1f:78:17:c5:
39:bd:a3:99:d7:46:a2:82:87:8c:df:56:ba:61:b5:
31:12:8c:82:c4:13:99:df:2a:be:bb:cc:72:0e:15:
c2:6f:fd:f5:c6:d9:06:af:81:b3:e5:2f:d7:10:7a:
ac:4a:74:10:b9:d0:d3:d0:cd:9f:5e:3e:03:9e:35:
9c:f6:1d:2c:77:72:3a:6c:6c:67:f3:f1:cd:ef:86:
22:a0:a2:80:94:ee:e3:74:25:45:a9:35:ae:31:61:
83:89:f8:91:be:c6:9d:26:f5:f4:1c:4b:80:45:44:
52:94:d6:72:c7:fe:f7:6b:02:72:07:ac:64:29:da:
34:29:8e:54:30:60:90:af:96:2b:ce:8d:4a:80:4f:
45:1a:c1:cb:99:cd:e8:29:ba:f6:b0:9d:70:60:41:
48:57:08:97:a6:94:e4:fd:df:82:8f:29:57:5d:4e:
bb:22:3e:a8:a2:a1:22:c9:b1:e7:0b:34:66:33:09:
1f:47:91:a5:17:ad:18:97:67:82:98:be:1f:aa:78:
f5:96:3d:f3:df:84:91:25:be:d6:4a:d9:f2:c4:91:
67:b0:b0:ee:14:7a:41:e7:65:e3:c9:5a:42:8d:b3:
ba:2e:02:6e:6c:a4:bd:53:86:5b:bd:74:3d:ed:87:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:41:95:2A:BC:4B:DA:10:7E:22:0A:45:45:23:E2:FA:63:F4:57:92
X509v3 Authority Key Identifier:
keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:2a:da:e7:00:74:80:ee:fd:9e:01:e4:cf:6c:52:64:b3:33:
a4:79:27:31:4e:cd:d5:92:68:ad:b8:a9:7e:43:c3:05:5c:67:
36:ee:18:35:99:b7:fe:37:7e:59:2e:58:a1:77:f9:49:58:0d:
e2:ab:25:88:70:32:40:19:02:6b:ce:b7:97:17:18:ea:74:fd:
55:7f:94:d2:7e:da:d7:1e:fa:08:34:f0:b6:39:8c:8d:c9:23:
70:ea:ea:d4:f3:01:10:c3:60:fa:fe:75:77:4e:2f:89:8e:ce:
08:a8:ab:b3:99:36:22:b5:f1:61:03:5e:12:b0:4f:31:9b:b2:
c6:93:e4:8b:cb:d0:a5:a3:ac:20:40:10:b9:fe:8d:32:92:76:
2e:14:7e:84:b8:b2:7f:87:2c:dc:29:2e:08:88:b5:eb:55:37:
70:9c:87:ed:92:34:a4:7c:4c:18:b4:01:bb:7e:51:71:49:44:
1f:bc:a1:37:5e:d2:04:38:a7:d6:79:c0:0a:cd:49:cf:f2:b6:
2d:28:f8:f2:49:c3:54:58:63:3e:5e:2e:b0:3d:82:3f:df:46:
17:46:9b:3a:fa:14:31:ce:a8:2d:9a:e7:18:d8:87:d9:56:2d:
31:7d:7f:4b:4a:91:62:28:73:fe:0c:98:b3:e2:f6:9e:3e:81:
05:87:32:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:24 2025 by rpki-client