Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json)
Hash identifier: oapOXusjRijX6bDz9K+S7V//jbXDQq0KihOWELVaL2Q=
Subject key identifier: A2:FF:E9:E8:DB:3E:35:1E:31:40:DC:05:6B:43:08:19:09:05:81:3B
Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Certificate serial: 01951134D5B3DAC5D5FA99BA199D5AB358B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
Manifest number: 0778
Signing time: Mon 17 Feb 2025 00:00:29 +0000
Manifest this update: Mon 17 Feb 2025 00:00:29 +0000
Manifest next update: Tue 18 Feb 2025 00:00:29 +0000
Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: PajymONA7iRqGpH4AJ3cxFdKwRQ0cSVDGILFvlo6C5c=)
2: PMHzHrS6vvRZOElfdDEFLn4owdU.roa (hash: UQqloSoHMyhRkRNOpx686QqPQutsxYq/mxr1bVAeLpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:d5:b3:da:c5:d5:fa:99:ba:19:9d:5a:b3:58:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc
Validity
Not Before: Feb 17 00:00:29 2025 GMT
Not After : Feb 18 00:00:29 2025 GMT
Subject: CN=a2ffe9e8db3e351e3140dc056b4308190905813b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:10:75:e7:5a:f1:fb:6a:68:d3:c3:c9:05:ca:
66:4c:be:d7:7a:8d:8e:92:0b:c6:12:82:06:58:0e:
54:24:98:9c:8e:f2:78:dc:34:4e:94:b8:e9:f7:cd:
50:00:a1:5f:3f:05:53:8d:04:1f:fb:e0:5e:ba:0b:
5b:a7:c9:40:1b:aa:43:9e:18:86:82:91:1b:07:b5:
19:ab:6b:44:f0:e4:1e:b2:96:7f:2c:08:ca:d1:a0:
6a:c3:29:fe:03:38:0d:90:d6:e1:8d:eb:68:d5:23:
4a:82:c4:71:be:f3:6f:25:c8:42:b5:cc:97:d7:60:
42:4d:10:a7:42:01:f1:59:b5:1d:08:18:12:97:80:
bc:87:53:af:91:da:32:a0:de:83:53:3b:2c:01:38:
88:91:9f:1f:a4:cc:9c:79:9f:bb:83:8e:6e:d4:27:
49:5e:7c:22:b4:c7:b5:40:f4:56:fd:f6:7b:7a:a5:
fb:fd:fa:b0:4a:b2:fe:1d:01:4e:35:a7:a5:8a:87:
96:27:90:43:1d:de:fd:7f:66:10:be:70:be:69:f6:
78:c0:00:11:84:9f:7d:00:0b:2b:bd:14:76:c1:d6:
17:fb:67:35:04:e1:17:15:f5:7f:f8:00:4a:78:9f:
e2:8b:f5:d4:15:53:09:d5:48:bd:38:a6:fb:a3:dd:
f0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:FF:E9:E8:DB:3E:35:1E:31:40:DC:05:6B:43:08:19:09:05:81:3B
X509v3 Authority Key Identifier:
keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:46:1c:02:59:7c:64:47:99:d2:9c:d4:fc:86:dd:c6:76:5b:
ba:51:47:f7:cc:a3:d0:0f:ce:2c:b4:ec:f0:18:ae:b7:2d:1f:
4a:3a:f2:b7:75:14:fc:94:ae:b9:8c:b2:77:e6:8e:90:9f:5b:
df:da:50:a1:5a:cc:10:8f:82:3d:a7:cc:c8:b0:f6:cb:3f:58:
63:6d:ef:49:e2:5b:44:ef:7e:e1:b7:46:8d:84:ba:64:98:2e:
e1:35:a2:47:9c:45:5e:ff:75:3b:33:cf:72:81:e1:4c:3c:82:
e5:31:01:77:5e:10:e4:36:98:5d:98:dc:91:93:14:d0:f1:00:
fe:28:bb:80:fd:de:59:4d:e6:15:d6:3a:e3:5b:7e:59:20:4f:
ce:88:33:dd:f1:e5:67:17:77:45:ba:94:60:b7:88:95:41:32:
99:67:8d:1d:22:c0:55:35:a4:15:47:eb:3b:90:af:8a:de:f6:
77:85:88:4f:38:c9:06:59:05:0f:16:f1:88:d7:1e:c4:c6:f6:
86:e7:1e:1a:36:e4:15:21:30:83:bc:40:67:b6:6b:50:69:13:
bf:90:73:3a:a1:94:07:06:fc:7c:a6:0c:19:ae:14:8b:5c:20:
5e:08:0e:83:16:6b:90:b8:06:8c:af:ef:4a:65:f0:72:52:75:
e3:7b:61:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:12 2025 by rpki-client