Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
File: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft (raw, json)
Hash identifier: wWp6ZioXaJ1aMlgxw0b+l0mSuhTPyEZenJLnU8kFe6I=
Subject key identifier: AE:CC:2A:FF:2E:66:95:D3:8F:DD:4D:E7:13:55:EF:88:44:C0:BB:C0
Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Certificate serial: 019650ECE160CEA2817A1362083879820A9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
Manifest number: 0AAE
Signing time: Sun 20 Apr 2025 02:00:23 +0000
Manifest this update: Sun 20 Apr 2025 02:00:23 +0000
Manifest next update: Mon 21 Apr 2025 02:00:23 +0000
Files and hashes: 1: pbWUlF6kph4C-luLlJFzTT778aw.roa (hash: FFtm0Ye7lx+oD8pt9jf446A0y5P8uQmRXJuEy3Pug1Q=)
2: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl (hash: jiPdlJ7BIQQENT/a2UT42duYwx5J5sBPLm0y5iVZ0ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ec:e1:60:ce:a2:81:7a:13:62:08:38:79:82:0a:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Validity
Not Before: Apr 20 02:00:23 2025 GMT
Not After : Apr 21 02:00:23 2025 GMT
Subject: CN=aecc2aff2e6695d38fdd4de71355ef8844c0bbc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3f:f9:78:eb:e8:10:e7:76:69:53:54:b6:b3:
ae:3e:7c:61:20:4a:95:97:32:29:1c:b3:05:06:c7:
95:18:9c:83:95:4a:d9:5d:59:e4:b2:07:48:3c:9f:
b5:80:a6:ac:d1:88:ab:c6:99:02:28:11:bd:7c:40:
62:06:fe:61:f1:cd:99:0e:91:63:10:45:04:72:a0:
b8:2f:15:1b:c5:dd:b7:6a:e0:14:bc:11:1f:eb:42:
38:bb:ff:25:a9:e2:87:5c:53:8a:cd:98:67:35:8b:
1b:f8:f9:a4:e9:0d:d8:b5:ad:d8:2b:2f:ae:20:3e:
0f:68:05:01:ce:71:92:f0:dd:3d:b0:bc:f4:ec:6c:
71:c7:b8:49:36:a7:45:d5:41:a0:44:e9:4d:20:84:
ca:6c:f1:38:ff:1d:d4:e7:30:e9:3d:76:97:13:55:
9b:6c:db:be:e5:45:77:66:43:c5:07:43:39:d7:95:
65:08:ec:03:53:42:46:35:a2:0b:70:a8:e7:5f:7f:
11:3f:26:af:65:75:9c:05:78:09:4b:ba:b3:7c:ab:
f6:e6:85:aa:ed:5a:d6:19:72:30:2e:a4:1a:d9:33:
f1:8d:3f:6a:cf:e3:b7:fa:83:00:80:d7:f8:58:f1:
59:3c:18:e8:a1:e5:d2:e3:03:ef:1e:d5:0a:13:f6:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CC:2A:FF:2E:66:95:D3:8F:DD:4D:E7:13:55:EF:88:44:C0:BB:C0
X509v3 Authority Key Identifier:
keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:dc:b4:e1:e2:1d:41:3c:95:46:fe:34:b2:69:53:01:5f:f2:
67:65:c6:7e:43:8a:b4:0d:59:cc:bd:14:9d:b9:01:61:9e:49:
69:c6:89:32:ca:ff:be:31:80:cf:fb:7f:83:56:f9:84:91:81:
3e:ae:c5:51:93:ee:07:16:ef:39:bf:e1:a8:93:56:ae:7b:49:
d6:78:7d:ef:6e:02:23:94:e2:bf:7e:7a:48:0a:15:14:97:3c:
f0:95:75:4d:a2:b0:96:5e:e4:7b:5b:2e:49:ad:0c:b6:0f:19:
a1:a7:c4:4a:b3:9c:f5:77:17:43:0b:83:2d:8b:81:da:41:33:
31:01:7a:02:26:da:ec:0d:73:c9:63:02:55:6a:f9:8c:fd:4f:
c9:46:9d:33:23:0d:51:e5:bf:56:58:12:1c:b2:18:b4:7d:a4:
d8:cb:d0:c3:0a:e2:a7:fc:7c:05:13:b1:e3:e9:db:d8:d2:65:
f5:5b:49:79:11:80:1b:1f:d4:60:b7:ce:dd:8a:59:1b:e8:27:
b0:6d:cf:7e:f7:04:56:d7:47:84:62:46:64:97:55:fc:8c:d8:
2b:23:27:09:46:60:dd:a9:40:10:31:9a:25:b6:dd:8a:a1:6d:
d5:26:ca:49:5f:16:67:77:5b:67:08:2e:a7:2a:44:ff:b3:3a:
92:29:79:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:15:36 2025 by rpki-client