Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
File: zsY7h6iuwJPb5H3MqShg6oQSKOA.mft (raw, json)
Hash identifier: jN6VKUaSTexKjLSTS9PeiMYUS5lF+WS79+j+Fk45ACI=
Subject key identifier: 3E:5D:29:DA:68:94:5D:68:EA:00:DA:7D:FC:C7:30:6F:AC:2C:3D:64
Authority key identifier: CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
Certificate issuer: /CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Certificate serial: 0194C4D10F5638137217895653C4AB6038E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
Manifest number: 0937
Signing time: Sun 02 Feb 2025 04:00:22 +0000
Manifest this update: Sun 02 Feb 2025 04:00:22 +0000
Manifest next update: Mon 03 Feb 2025 04:00:22 +0000
Files and hashes: 1: oDVjxYPm7vPq-9FQVAv-wdPcmhE.roa (hash: SVNTWU/SFE8BeAZ7Bb0M+S0ysWhdx0WLLM1QECYtWDg=)
2: zsY7h6iuwJPb5H3MqShg6oQSKOA.crl (hash: /TtG8u+l13SYf11VSeZh3S6c383f6yyGoUNKqJWv/co=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:d1:0f:56:38:13:72:17:89:56:53:c4:ab:60:38:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec63b87a8aec093dbe47dcca92860ea841228e0
Validity
Not Before: Feb 2 04:00:22 2025 GMT
Not After : Feb 3 04:00:22 2025 GMT
Subject: CN=3e5d29da68945d68ea00da7dfcc7306fac2c3d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b6:70:9b:ee:6d:a1:2c:7a:4f:6a:a2:0a:af:
83:05:9c:cb:79:69:fa:db:54:56:ae:eb:2c:11:d2:
e4:54:59:6b:81:e7:f0:8a:27:bd:10:0e:26:ba:31:
93:78:d6:70:77:d1:97:3a:d8:f1:ce:32:68:40:b8:
d5:3d:88:6c:ef:17:23:be:c4:7c:63:43:05:4a:43:
f9:37:cb:e9:e8:03:1f:69:2e:f7:6f:ab:b8:0a:37:
5e:aa:ad:22:a3:fe:87:81:9c:d0:a6:70:b9:6d:9d:
6b:97:57:4c:8f:0b:10:b1:a0:d7:e1:8e:c5:f6:dc:
2a:88:b6:80:2e:a8:80:2a:b9:3a:ca:5d:fb:41:2e:
6e:35:51:4a:50:b3:64:e0:8b:ac:ed:63:1d:71:54:
bf:b5:5e:ad:bd:f7:2f:96:6d:44:4c:7a:e6:48:65:
33:88:03:33:58:c5:1d:0f:5b:29:1b:c0:59:6e:21:
ca:d1:bc:fa:f8:fa:73:7b:94:e2:fd:b8:0b:16:38:
f7:07:10:db:16:68:9d:ef:d5:9d:ab:67:08:cc:c0:
1e:46:71:1b:8a:a8:ec:3a:4c:50:ee:21:20:01:c3:
88:4e:36:03:6b:d3:e7:20:81:74:50:68:8b:98:15:
b0:84:da:1d:ba:d8:e3:e3:30:bd:64:b1:23:eb:48:
9f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5D:29:DA:68:94:5D:68:EA:00:DA:7D:FC:C7:30:6F:AC:2C:3D:64
X509v3 Authority Key Identifier:
keyid:CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:5f:d1:e0:b9:47:56:67:4b:fa:42:16:1f:46:6f:90:1a:fb:
d3:85:90:fc:96:ec:1d:af:cc:fe:df:46:84:a6:b7:e8:54:4d:
42:f8:61:fb:b8:8c:e4:3d:d6:08:da:18:11:a6:d9:ba:18:0d:
0e:26:4c:4e:d9:34:a0:87:a7:ea:40:13:33:98:61:1a:9b:29:
f2:c8:2f:d1:90:cb:37:e5:61:46:09:ab:72:e2:05:1e:fd:0a:
ed:9b:c7:8f:86:39:be:36:95:7d:13:94:6c:82:ce:c1:50:2f:
a1:64:61:f0:59:46:6a:29:0e:02:4d:75:b6:ad:73:f8:02:07:
e8:95:01:1d:dc:79:03:8d:7c:62:ca:b8:f2:19:a4:47:f5:4f:
0b:a8:81:59:30:e6:9a:58:9f:d7:84:20:b0:5c:55:f9:4a:90:
c4:55:e2:ce:f5:d4:f1:0d:56:4a:1e:42:37:4b:28:61:51:e5:
0b:e2:3a:5a:6e:db:0b:26:68:30:64:f2:d6:1f:53:15:2d:b6:
20:d9:e6:21:03:02:c7:34:04:e6:01:ec:76:0e:a9:10:36:2a:
8a:cc:2a:55:b0:29:96:e6:2d:bd:32:54:54:c3:a4:ab:80:39:
d0:93:05:e1:fb:93:71:ca:10:53:1f:0d:f5:fe:70:a5:17:e7:
d4:f4:e2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:58:16 2025 by rpki-client