Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: kMHTsVDIC8RYAqdTsqWEJPoXNOe2J+EWXAEieBK/cAY=
Subject key identifier: 88:A5:23:32:2A:A4:49:68:8F:5E:00:00:2A:8B:79:81:54:A8:61:6F
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 019511349A405FE7A3AE7C0239B899672D75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 1455
Signing time: Mon 17 Feb 2025 00:00:14 +0000
Manifest this update: Mon 17 Feb 2025 00:00:14 +0000
Manifest next update: Tue 18 Feb 2025 00:00:14 +0000
Files and hashes: 1: 9-nqsKi4Ev5jKkuKWzG_WIBo83k.roa (hash: SHAm2ssxR7ZkFZ7Brw788jEHfHi8MZS6JxMLuTDqDJs=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: orrcGtMEzFCNBkBRyJPKSFHcaC12lgE/swMb3N8E7Lc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:9a:40:5f:e7:a3:ae:7c:02:39:b8:99:67:2d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Feb 17 00:00:14 2025 GMT
Not After : Feb 18 00:00:14 2025 GMT
Subject: CN=88a523322aa449688f5e00002a8b798154a8616f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:da:6f:2c:b1:56:51:40:1d:a2:08:fd:e0:ba:
ed:e1:cb:f8:23:5c:77:2a:27:6e:32:5f:e8:76:d7:
cc:95:b3:a5:b4:ef:a2:4b:e5:73:e4:21:ce:57:85:
a5:34:64:54:a0:36:f2:8a:5a:05:61:b1:26:b9:48:
71:7f:f4:9c:65:ad:94:cb:4d:57:62:19:ca:39:f1:
3a:78:05:4c:68:d0:6b:80:93:96:69:f3:28:6a:fc:
2c:9c:14:1d:6f:6f:f6:91:26:1c:54:1e:c4:a4:69:
29:7b:49:21:d8:4e:52:87:93:9d:94:6d:c2:0b:40:
cf:27:ee:be:a1:f3:e8:1f:d5:a8:44:77:01:9d:14:
b8:b9:5b:78:d0:7e:fe:8d:cf:15:04:a4:bc:46:93:
ae:f4:48:8b:2a:48:52:73:58:6c:df:63:7a:b5:80:
3c:d7:98:0b:5b:c5:1c:ec:32:97:4f:d9:e8:87:1d:
78:d0:5c:9d:5e:a6:0f:53:cd:f5:c7:29:68:70:cf:
86:97:6d:0f:66:6c:83:98:f7:80:5e:4a:a8:23:9d:
11:80:32:c3:fa:a1:21:e7:cd:7b:ed:99:52:55:b4:
3c:77:08:a6:af:b5:da:53:2c:c6:c9:be:49:23:94:
26:c1:cd:e6:f5:69:91:e5:5c:78:97:35:1e:e4:ac:
71:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A5:23:32:2A:A4:49:68:8F:5E:00:00:2A:8B:79:81:54:A8:61:6F
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:5a:5b:9a:f9:15:57:a2:c4:98:9c:b7:47:2c:b9:6d:34:4b:
d9:2c:8e:74:8d:1d:dc:34:6f:75:84:96:30:e7:2c:ea:eb:cf:
97:6e:63:c1:01:d2:b7:87:72:0b:b9:59:19:ba:68:81:bd:19:
3f:04:39:d0:14:49:ba:fe:44:9c:b1:d8:3b:1c:a7:3a:d0:4e:
69:b3:5e:53:3e:64:41:ae:1f:00:06:ce:cb:1d:b5:bd:90:6e:
2a:c9:d7:15:6a:db:2c:53:dd:a5:14:e3:da:95:77:b4:0a:e6:
26:85:15:57:94:cf:d4:42:5c:12:5e:33:42:9a:8d:dc:78:c1:
79:0e:1a:fa:87:2e:8d:3c:a9:20:a6:4a:86:33:54:59:25:8c:
c8:1f:5c:f5:a5:ef:6a:9a:6c:5c:ea:fc:a8:7c:73:3f:bb:57:
42:c6:93:3f:40:f5:5f:4d:8a:f3:b4:0c:0a:d9:c6:d5:3f:97:
34:05:9a:e7:e5:b6:f9:ed:d9:b6:9d:36:0a:c4:87:bc:30:25:
6b:84:55:d7:91:32:87:21:6e:49:2c:16:e0:25:ed:ca:df:09:
81:dd:75:3c:03:cd:c0:02:40:90:cb:7f:9e:8a:6d:ac:6d:a7:
bb:3d:7c:9f:e4:ab:3b:81:1b:99:04:24:8b:61:e1:61:95:15:
3e:44:d0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:11 2025 by rpki-client