Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
File: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft (raw, json)
Hash identifier: ZdghKqfxt4BKJHMRuNU35CRmiZtZUKwGtBW8fR7zVcI=
Subject key identifier: C5:5F:E9:6A:43:12:A5:8F:99:74:3E:F7:DC:20:20:1C:27:FF:99:42
Authority key identifier: 66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
Certificate issuer: /CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Certificate serial: 0194C507CDBBC5160C6427DB721462A13839
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
Manifest number: 0FBB
Signing time: Sun 02 Feb 2025 05:00:10 +0000
Manifest this update: Sun 02 Feb 2025 05:00:10 +0000
Manifest next update: Mon 03 Feb 2025 05:00:10 +0000
Files and hashes: 1: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl (hash: XtIksQFVnkcH/Mx4vJ5nA7dWXwnIIM+5lJMn0Bp6L5k=)
2: uoOTDO3I8Ju9HNeb_RrUnxiXqMM.roa (hash: uWLf97UT0+0lxJvC3noTnvF0IVTFV5k9XbA2AIDmE6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:07:cd:bb:c5:16:0c:64:27:db:72:14:62:a1:38:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Validity
Not Before: Feb 2 05:00:10 2025 GMT
Not After : Feb 3 05:00:10 2025 GMT
Subject: CN=c55fe96a4312a58f99743ef7dc20201c27ff9942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:54:06:a6:a0:76:a2:6e:3d:fe:29:a7:73:
4b:96:07:fe:a2:bb:0b:5b:f0:f8:c2:30:70:ed:13:
c4:23:eb:9d:dc:de:f4:95:38:22:54:b9:83:f7:1b:
a4:25:37:bd:fe:fd:39:07:47:16:cb:de:ac:c3:bc:
58:41:fb:7a:32:21:61:9a:e8:6a:8c:cf:f2:b0:0c:
38:1b:a4:1d:f2:ad:81:f8:84:85:db:0c:a8:31:6b:
cd:a9:27:34:b5:d4:dd:c5:32:45:4c:37:ea:03:3a:
f2:56:3c:e5:2f:1f:da:5a:2c:e3:1d:86:0f:7d:03:
ad:89:1e:d4:cc:0b:e0:88:26:49:a6:80:f9:22:78:
45:f7:00:ae:7d:9a:5b:00:0d:0b:58:91:1f:2b:8c:
d5:f5:2d:d4:8a:eb:6d:09:9b:21:82:3c:63:b5:d3:
6a:af:0b:b5:83:2b:a9:5c:1f:30:ce:24:60:2d:65:
b9:3d:61:24:b3:e8:67:10:03:99:ce:73:1a:97:d3:
f8:47:a5:25:da:a2:c6:97:6f:16:33:74:9e:10:b5:
82:a8:b3:5e:c0:5b:fa:3f:3b:fb:40:18:c8:7e:1b:
8d:9e:73:84:e5:30:23:f6:70:c2:d8:ab:7f:79:b2:
20:12:06:47:0e:92:50:a4:f2:5a:d9:98:d0:44:1a:
25:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5F:E9:6A:43:12:A5:8F:99:74:3E:F7:DC:20:20:1C:27:FF:99:42
X509v3 Authority Key Identifier:
keyid:66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:42:2a:cd:72:84:81:cb:2a:27:ab:21:58:14:4b:8b:ad:82:
79:d1:aa:6d:0e:71:ea:eb:60:02:db:2b:28:ae:34:11:09:0f:
cc:a6:fd:aa:7d:90:04:5c:e3:f4:f0:de:4b:7a:1c:1d:b4:99:
57:94:04:b0:e8:c6:e8:49:4e:92:89:3f:6c:bc:b5:84:55:10:
66:26:85:aa:ec:01:82:94:6f:2a:6e:92:6d:4e:ec:9d:0f:2e:
8f:4c:cd:df:19:79:60:ad:6e:06:0d:27:17:03:9f:4f:2b:85:
c2:97:93:49:61:b5:20:67:84:d6:13:b6:ed:2d:61:9c:e9:c6:
cd:03:b9:d9:dd:7c:ae:c7:01:27:90:86:54:29:35:1d:2b:6c:
2d:47:9f:c9:36:df:f5:75:e7:59:a5:3c:3e:da:8d:16:c9:4a:
7d:81:40:13:90:b6:65:e0:f5:cc:d5:ca:b6:50:2d:dc:a8:52:
f7:42:12:47:87:32:15:a3:75:28:ac:13:3e:83:30:9e:d9:a8:
b7:48:c7:be:ec:71:f4:6b:be:82:ba:64:56:a0:cc:02:89:65:
1c:3a:3a:eb:bd:6c:e4:cf:12:47:d1:a2:96:d3:75:da:e8:34:
56:16:e6:fb:c2:a6:a4:cd:06:f5:42:fd:06:59:e8:76:a2:00:
6e:64:be:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:49:47 2025 by rpki-client