Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
File: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft (raw, json)
Hash identifier: vAlkCvmplSq0efg+N0BiicQEKxuwbt9Idf2dTPOY+yk=
Subject key identifier: FC:1B:5F:7D:82:DA:67:32:AD:A9:A6:90:0D:21:5E:AD:93:C4:EC:80
Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Certificate serial: 0194C350EB2FF723122578E9B28FAD86B34A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
Manifest number: 09E0
Signing time: Sat 01 Feb 2025 21:00:47 +0000
Manifest this update: Sat 01 Feb 2025 21:00:47 +0000
Manifest next update: Sun 02 Feb 2025 21:00:47 +0000
Files and hashes: 1: pbWUlF6kph4C-luLlJFzTT778aw.roa (hash: FFtm0Ye7lx+oD8pt9jf446A0y5P8uQmRXJuEy3Pug1Q=)
2: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl (hash: lv5v9lgQmqUEF1npyqiCDEPVMXiR8N3JWyiOdPtIyys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:eb:2f:f7:23:12:25:78:e9:b2:8f:ad:86:b3:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Validity
Not Before: Feb 1 21:00:47 2025 GMT
Not After : Feb 2 21:00:47 2025 GMT
Subject: CN=fc1b5f7d82da6732ada9a6900d215ead93c4ec80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f9:7d:dd:aa:64:71:9c:6f:cd:4c:8a:2c:40:
82:cf:0f:cf:1a:c6:da:f5:65:0e:d1:7a:6d:34:0c:
e5:69:7f:ce:58:a4:55:1f:26:69:12:c1:ea:00:ce:
1d:cd:71:41:fc:42:42:f7:16:90:6e:5b:87:28:61:
c4:10:8e:f2:1c:e9:8f:35:68:e6:2d:14:42:a6:50:
76:dd:bd:1d:af:bd:64:c0:e7:e4:b0:f0:fa:40:27:
52:33:37:48:63:c1:4a:c5:4f:d1:37:9f:c1:ef:06:
8f:10:58:b5:97:ef:ee:17:3b:e2:0f:23:81:b4:5a:
c3:69:cf:1d:2f:fc:4a:46:7f:ab:79:81:01:fa:a6:
4c:56:5c:ce:78:2d:1e:e5:5c:c3:11:a1:46:f7:6c:
82:9d:7b:49:07:44:2f:bd:87:ce:fd:ec:78:db:28:
cb:06:3c:29:31:80:05:26:83:a3:7e:19:a1:63:f9:
31:9e:25:8b:5d:a2:97:67:fe:fe:2c:6c:19:06:c9:
36:92:0f:a1:0c:d4:fc:3d:45:1e:8b:59:82:fb:35:
ec:e3:a7:18:11:22:93:22:f0:34:a5:c0:27:15:64:
39:2f:5c:15:1a:7e:f2:3c:d7:f6:cd:fe:5f:55:4c:
ba:c1:40:91:02:b0:27:d7:9d:bb:cc:33:7b:e5:ee:
dd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1B:5F:7D:82:DA:67:32:AD:A9:A6:90:0D:21:5E:AD:93:C4:EC:80
X509v3 Authority Key Identifier:
keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:75:7b:99:31:40:4d:e4:92:cb:e7:f3:af:c3:2b:e0:63:ff:
1b:52:8b:3e:63:5f:6d:ab:5c:cb:5b:73:bf:21:0c:4e:7c:a6:
b6:9f:20:67:38:90:8d:4a:43:79:df:b9:b8:df:b7:52:34:cf:
66:4c:ec:a3:38:c9:c8:ce:f7:2f:fd:5c:bc:5f:64:ff:bb:2f:
74:bc:7f:f3:61:ed:ad:f7:86:71:ae:3e:09:86:b1:80:ce:18:
da:7f:83:b7:bc:7f:f8:0f:82:a1:72:43:87:a3:ec:4d:1a:ea:
97:e8:28:34:40:45:94:71:13:ac:53:12:ce:ec:7a:cf:3f:ed:
4c:0b:db:a6:96:40:fa:4a:44:d5:f4:a9:56:95:b0:57:a3:4b:
43:fd:29:be:5f:26:f2:9c:59:fe:57:05:e0:b3:92:3f:09:b6:
b6:d2:aa:a5:ca:e5:55:98:5b:e7:46:a0:af:a5:60:ca:82:c6:
07:13:1a:ce:b2:72:e2:48:e7:86:90:14:ce:fa:24:d5:7f:00:
2e:af:98:72:3a:be:8d:fd:db:71:66:58:0f:be:eb:18:96:37:
32:00:2f:4a:74:1a:69:df:58:55:a7:a2:c2:74:c5:21:3f:98:
6e:3b:a6:33:29:2f:60:af:27:10:82:43:fb:74:a4:0c:40:72:
30:a5:89:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:46:59 2025 by rpki-client