Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json)
Hash identifier: veca5OxVIP4IJZdCg2FEPw90jMUiQBWfSWUuWsmhERc=
Subject key identifier: 6D:B4:D0:1B:35:6C:A1:3A:84:8F:CB:5A:4E:9D:97:33:3C:6E:A9:EA
Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Certificate serial: 0194C387EE865D8487AA441CB7CB4A365A09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
Manifest number: 0BC7
Signing time: Sat 01 Feb 2025 22:00:52 +0000
Manifest this update: Sat 01 Feb 2025 22:00:52 +0000
Manifest next update: Sun 02 Feb 2025 22:00:52 +0000
Files and hashes: 1: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: QTXbG9Bf876rI2396HDVPr6gKH6xFo9x/F/xJnaTzFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:ee:86:5d:84:87:aa:44:1c:b7:cb:4a:36:5a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Validity
Not Before: Feb 1 22:00:52 2025 GMT
Not After : Feb 2 22:00:52 2025 GMT
Subject: CN=6db4d01b356ca13a848fcb5a4e9d97333c6ea9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:41:00:45:de:12:a0:37:36:d5:79:04:3e:f9:
ba:ee:de:5d:65:6e:ae:13:0f:7b:cd:9e:e3:45:e8:
86:53:0a:23:75:36:f6:59:26:05:86:da:b4:ba:b7:
14:24:05:b2:f7:77:b8:d5:a1:94:d6:1f:96:89:a3:
f5:79:dc:d5:49:97:c7:e2:2b:d7:22:ab:7a:b9:f6:
d2:82:b7:f5:7d:06:f1:76:c6:9f:9f:78:94:7c:96:
58:45:80:f8:3f:cd:8f:2f:7a:19:d5:9e:e6:a5:58:
93:f4:c5:5a:8a:39:6b:69:80:96:6b:d8:40:2b:2e:
2c:46:2e:7a:08:da:d8:ac:38:06:4b:7f:49:51:de:
b8:20:4e:45:ec:08:0f:22:d0:2a:72:9d:ac:94:f1:
19:ef:a6:5a:d2:de:6c:2c:1a:f3:e5:21:ae:12:d8:
a4:ee:9f:28:d1:fc:9b:b3:d2:30:7e:7d:49:63:c4:
a8:e4:50:a1:9d:05:11:21:7d:1b:0e:04:ef:e1:4e:
77:1d:87:25:b0:c6:92:c1:f0:2b:b1:da:b9:16:3e:
35:e4:57:2c:45:f5:ef:a7:c5:8d:41:9d:f5:1b:da:
3a:ee:ed:9a:cc:41:fe:73:43:85:41:53:1c:2b:24:
12:ba:95:5e:b5:71:56:15:62:36:a4:98:d1:29:49:
92:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B4:D0:1B:35:6C:A1:3A:84:8F:CB:5A:4E:9D:97:33:3C:6E:A9:EA
X509v3 Authority Key Identifier:
keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:17:b3:cc:8f:30:5d:93:c1:77:63:15:7e:13:e2:99:c6:0c:
ee:b5:a6:ad:42:9c:53:af:a7:53:bf:25:40:70:cd:cf:e2:75:
6f:6d:23:71:a9:c3:19:d4:56:5f:01:0e:c1:22:82:cd:16:e5:
51:90:3d:ce:64:91:4f:3f:24:43:ac:12:9f:ac:c6:3a:69:6d:
b3:a0:42:db:b7:76:ee:c7:a0:c7:ea:10:03:85:eb:03:4d:7d:
1d:52:0d:9d:90:8d:ee:63:45:e6:b2:dc:3c:e2:7d:8b:df:02:
c5:5a:90:6d:88:67:d0:40:ec:ce:4d:1a:09:cd:7b:f0:b4:f9:
a2:c5:05:c8:f3:a5:f9:fa:c5:3e:e6:2f:17:0c:d4:0d:6c:c5:
31:18:32:d8:57:af:4f:0d:81:1a:8c:a2:e4:1c:5c:7c:f9:72:
1f:6b:c3:34:aa:a5:1c:ee:1c:a8:90:e5:3f:c7:bb:a7:eb:72:
cb:ff:12:21:98:65:27:b8:4a:89:78:b7:22:6a:36:46:a8:3c:
47:95:aa:07:6d:1b:bf:c4:21:62:da:fe:ca:b6:4a:58:41:97:
10:13:70:70:a1:d2:90:b6:56:bd:ac:1a:b0:08:92:6f:8a:fa:
7d:37:86:fb:b7:cf:98:71:5c:c2:7d:da:7e:c3:c0:b9:e5:78:
56:71:e2:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:49:22 2025 by rpki-client