Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json)
Hash identifier: t3G9AMo7L0jkUFqmkL341Rh3IKPdEI3cBOnfjR4fY9g=
Subject key identifier: EC:76:98:C0:66:41:C2:E1:64:08:12:BF:E2:9E:52:FD:1C:45:20:07
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 0194C42C99344D6FF093582D0E493913B86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
Manifest number: 0CDA
Signing time: Sun 02 Feb 2025 01:00:44 +0000
Manifest this update: Sun 02 Feb 2025 01:00:44 +0000
Manifest next update: Mon 03 Feb 2025 01:00:44 +0000
Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=)
2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: rR72pBbzAtTrTUu+KOqTLzYMVlJJ+bYQ524XRp3W6RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:99:34:4d:6f:f0:93:58:2d:0e:49:39:13:b8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Feb 2 01:00:44 2025 GMT
Not After : Feb 3 01:00:44 2025 GMT
Subject: CN=ec7698c06641c2e1640812bfe29e52fd1c452007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:02:40:f2:bc:33:19:8a:3e:c5:54:f5:98:03:
eb:34:ed:48:46:17:bf:a4:e1:94:2c:93:2c:9b:d4:
30:82:c9:45:a5:9c:7e:23:31:8c:0e:86:c3:79:b7:
61:9a:5f:c0:bc:e5:12:9b:24:b6:dd:ba:7c:71:72:
14:cc:be:13:18:c4:33:bd:42:a3:bf:50:a3:5e:bb:
b7:47:e1:8f:5e:f6:b8:5b:f6:1b:fd:40:4f:2e:de:
7e:ab:f5:7a:85:bc:67:57:dd:a5:dc:06:1a:53:ee:
9e:f7:d7:2e:7d:e5:b9:83:ef:1e:36:7b:dd:5b:c0:
0f:49:43:07:31:1a:c7:e4:9d:ca:c7:56:f5:38:13:
bd:85:60:15:b5:1e:04:40:f8:98:a7:2d:fa:8e:36:
71:71:44:8f:1e:40:90:ed:47:42:dc:29:70:2c:c3:
6d:92:8d:c0:46:eb:2e:eb:e5:8b:86:9c:f4:93:ec:
d5:0d:aa:7a:05:c1:36:bd:af:e1:22:cf:08:3e:91:
8c:bb:43:52:a9:3b:77:a3:6f:87:5c:e8:8e:a1:4e:
37:14:4c:38:77:8d:67:78:08:eb:b2:7f:fd:6e:b2:
2a:b0:4c:20:41:ab:7a:88:02:9a:af:06:b8:ab:bd:
51:da:7e:1f:da:ad:34:2f:e8:72:80:f4:59:46:da:
23:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:76:98:C0:66:41:C2:E1:64:08:12:BF:E2:9E:52:FD:1C:45:20:07
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:f6:10:19:e8:8f:53:b7:5b:72:ca:3e:30:46:06:e0:bc:22:
65:71:63:d4:54:d2:4e:a4:03:a4:90:b7:f8:2d:bf:3e:8b:84:
2d:09:d4:4e:07:05:e7:27:5e:2f:a4:73:75:6a:70:88:04:b1:
78:3a:67:af:20:9d:5d:b7:6b:9d:d8:f5:9a:18:20:e2:a7:76:
5e:94:43:38:72:4f:de:f6:0d:2c:91:61:c5:06:c3:56:0b:b3:
d9:90:96:6e:8a:98:d3:b8:6a:84:c9:64:70:f8:ca:64:6e:de:
27:a2:62:3d:79:e0:68:1b:84:4f:34:a4:1d:31:ff:f8:47:de:
99:09:d7:e3:ee:ae:11:62:39:00:8c:72:3d:5c:5a:bd:4a:a1:
24:32:57:61:f5:b1:a2:20:7f:f1:20:51:ab:ea:50:92:0c:9a:
31:6e:4e:a5:7d:8c:24:05:e1:34:e7:5c:85:95:d0:4d:5b:de:
27:7b:aa:e6:02:07:44:76:32:8e:f7:e2:14:22:d3:df:3e:da:
45:46:ea:11:f0:61:d8:18:32:b7:c8:18:e1:d5:10:17:36:30:
da:9e:85:09:b1:e5:0b:84:ac:1b:03:6f:cc:4a:d3:40:a8:47:
16:6e:3d:f5:5e:7b:0a:9a:67:01:ea:0d:82:fa:e9:02:5a:5a:
38:a6:b1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:42:15 2025 by rpki-client