Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
File: zo2SrOCAEcTQrsjyKGVxW9kaASI.mft (raw, json)
Hash identifier: X34HmcP5M5n8pFdokpHeSjC6g9wfxDaVNh7mhG2Gi/w=
Subject key identifier: 5A:31:B0:58:17:A0:78:E6:11:F0:26:49:2F:49:FF:94:D5:47:6B:68
Authority key identifier: CE:8D:92:AC:E0:80:11:C4:D0:AE:C8:F2:28:65:71:5B:D9:1A:01:22
Certificate issuer: /CN=ce8d92ace08011c4d0aec8f22865715bd91a0122
Certificate serial: 0194C49A5D3291FC6B95CEB173BB8D39A811
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
Manifest number: 142F
Signing time: Sun 02 Feb 2025 03:00:38 +0000
Manifest this update: Sun 02 Feb 2025 03:00:38 +0000
Manifest next update: Mon 03 Feb 2025 03:00:38 +0000
Files and hashes: 1: c9T1Kx5A7nWBX74YKnmxrK2YxWk.roa (hash: z4gK4/Y9ltoru7dKh2/m8n1YWOzp0cICAUx0PffNJmo=)
2: zo2SrOCAEcTQrsjyKGVxW9kaASI.crl (hash: 7CBrpUrw8S01soqpuTSosbYAU5dWEVPPe6cp3HblACg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:5d:32:91:fc:6b:95:ce:b1:73:bb:8d:39:a8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce8d92ace08011c4d0aec8f22865715bd91a0122
Validity
Not Before: Feb 2 03:00:38 2025 GMT
Not After : Feb 3 03:00:38 2025 GMT
Subject: CN=5a31b05817a078e611f026492f49ff94d5476b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dc:a3:b7:0e:21:4a:98:2d:d3:51:c4:c2:e7:
c9:25:99:2f:f0:06:38:ca:c0:8f:a5:8e:c4:2b:2c:
6c:41:7e:55:8c:98:52:c7:34:5c:fe:5c:eb:bc:df:
84:6a:4c:2a:bc:05:e4:2d:43:ee:43:e1:e1:84:05:
5b:18:12:89:31:d0:4b:c5:d3:a3:e1:ec:a2:74:fb:
8c:76:f1:3e:85:fc:d0:99:c8:30:30:d3:c5:62:33:
44:dc:46:4a:c4:49:65:2e:62:54:19:c1:3d:74:12:
41:40:d1:e6:33:87:9a:94:9e:24:a8:ca:cc:b9:88:
92:e3:9b:d3:03:f0:67:63:f2:b5:70:68:27:a7:16:
f2:58:18:23:10:8a:ac:65:c1:c0:0c:59:9b:a2:e0:
2c:ad:89:ff:9d:99:25:fd:85:37:6e:bb:07:c0:83:
46:4f:99:5e:42:af:96:89:d2:90:a7:34:ba:bb:fd:
49:fe:91:00:f2:26:d7:8e:d2:94:66:ed:4d:0c:0c:
d4:15:e6:6f:c4:6a:9d:5b:1c:3a:b2:7c:b3:31:6f:
80:9c:24:7d:72:d0:09:5b:ec:ac:8e:48:7b:4a:32:
c0:be:50:4c:ee:da:38:5f:99:42:8c:bf:fa:08:46:
57:b0:b3:5c:a6:4a:31:85:73:a3:56:81:72:e3:25:
4f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:31:B0:58:17:A0:78:E6:11:F0:26:49:2F:49:FF:94:D5:47:6B:68
X509v3 Authority Key Identifier:
keyid:CE:8D:92:AC:E0:80:11:C4:D0:AE:C8:F2:28:65:71:5B:D9:1A:01:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:07:76:bf:3e:4f:23:b1:d2:12:35:3f:95:33:8d:61:a2:ae:
89:2a:82:16:63:37:c1:37:c1:85:39:8e:29:62:55:68:e1:d6:
50:13:5f:d1:52:4b:a8:e5:30:c3:75:3e:53:32:d9:3c:a5:85:
9a:ed:12:75:7a:2f:83:a1:20:cd:c8:c4:ee:67:bd:43:ba:38:
3f:5d:ce:aa:e6:c3:d6:58:01:07:ae:fc:b4:c6:15:73:b8:c0:
68:e4:26:5f:66:cb:da:0c:27:9f:6a:99:10:09:c3:91:0d:0c:
a2:3c:34:48:e8:80:99:e4:c8:26:a3:b4:21:69:4b:5e:97:37:
72:04:44:bb:1c:a7:55:d7:0f:16:c7:f0:ed:47:44:7b:7e:ac:
7b:2e:6a:e1:39:59:d1:76:88:8c:58:51:49:a6:1f:2a:8d:af:
9a:aa:37:0e:a9:73:56:17:1d:d4:56:61:82:0a:8c:f7:ca:46:
21:e6:e6:12:4f:9e:58:d0:13:dc:30:28:d8:89:58:8d:a7:fe:
64:f0:4d:62:b5:39:a1:bb:e2:da:d7:82:d4:93:53:9c:ea:fa:
f5:fe:b3:a0:87:d3:17:5f:af:aa:82:b9:48:25:c8:c8:db:c9:
8c:f3:23:cc:a2:a2:86:c8:bd:65:7e:e4:e0:e7:c7:d4:9f:d2:
5e:d8:1f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:05:51 2025 by rpki-client