Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: X1FRap2HLZXedrTDhXLJviJIY5TF2zZk32FHvlpQRyA=
Subject key identifier: 1D:1D:A0:EC:44:48:3A:D5:CA:2E:40:33:87:E8:EF:9C:0F:35:55:89
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 0195109035866671DDED3DDD5E2E8239C249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 036B
Signing time: Sun 16 Feb 2025 21:00:41 +0000
Manifest this update: Sun 16 Feb 2025 21:00:41 +0000
Manifest next update: Mon 17 Feb 2025 21:00:41 +0000
Files and hashes: 1: 4boeBlk7o1BaTuZdEOVxwc-y71c.roa (hash: RGuBRtk99FPER/w90B0w3hwMlxFq4HdA7ruV2FfydxY=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: 0gEu8zamGLvWRV5D17DWqTUgAdJXAcEsT/yvoMgGdu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:90:35:86:66:71:dd:ed:3d:dd:5e:2e:82:39:c2:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Feb 16 21:00:41 2025 GMT
Not After : Feb 17 21:00:41 2025 GMT
Subject: CN=1d1da0ec44483ad5ca2e403387e8ef9c0f355589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:15:f5:d7:65:77:35:85:b3:7f:3d:5e:bc:c3:
8a:8d:3c:1c:b2:25:26:15:9d:62:52:b7:32:42:c0:
d3:b9:ae:d3:4c:93:31:0f:65:d9:33:16:c9:53:ef:
90:ce:78:72:a2:b9:7e:12:58:9a:2e:be:8d:56:4a:
e7:aa:7a:ef:50:4e:0d:42:a8:ec:12:58:36:be:e0:
70:a2:80:ef:27:32:4d:fb:a6:46:87:56:96:67:df:
53:4b:36:98:be:71:a6:63:34:ec:56:9e:6c:de:0c:
3b:47:eb:b9:d7:8d:5c:b9:d7:6f:bc:b6:7f:10:d1:
61:cc:84:e4:09:72:a9:b3:94:79:27:5e:7f:fe:69:
c4:63:9a:f4:64:29:13:06:be:aa:43:5b:cb:d4:ff:
df:fc:89:ee:ce:54:2b:cd:a3:42:c7:22:dd:d0:a5:
cc:48:21:b1:7d:16:67:fe:3d:39:27:1c:03:f3:c2:
8c:7b:a9:6c:11:bc:9a:03:43:ad:ed:e6:77:b7:30:
bc:0e:db:0c:75:20:45:ab:ba:5e:7f:61:b8:9a:2b:
3c:c1:68:f2:ed:76:22:81:21:cb:49:e9:ef:32:51:
00:31:66:4e:33:a5:65:a3:92:b4:50:86:a0:5b:f5:
90:4b:d6:db:80:d7:ee:dd:f5:f3:0f:74:b9:53:61:
25:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1D:A0:EC:44:48:3A:D5:CA:2E:40:33:87:E8:EF:9C:0F:35:55:89
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:28:af:d3:33:07:11:c3:7f:3e:3a:a2:d3:40:e2:83:51:05:
e3:3a:27:0a:f9:82:e2:f4:27:c1:15:ff:1e:ab:28:bc:41:85:
e9:48:25:65:0a:86:53:2b:7f:ed:ce:3e:de:2a:c1:95:fa:46:
15:d8:e5:56:d5:8b:80:3a:6e:35:a2:43:98:85:55:68:32:d6:
4c:1e:81:45:d2:1f:26:6d:74:a7:a5:e7:93:de:3a:8a:ab:4b:
55:d6:b0:c1:35:75:51:ee:b1:74:a0:8e:c2:42:d2:4e:e3:d1:
b9:7e:6a:92:a9:68:1e:e0:d5:c4:e7:98:b0:2c:37:2d:e1:29:
ed:8a:41:3f:d1:90:49:6d:ab:fc:27:93:9f:89:30:cd:b3:aa:
6e:55:f8:56:bc:f7:06:22:86:57:59:4b:4b:c0:eb:0c:42:48:
18:36:31:d7:e5:4d:18:82:5d:f4:c4:02:a4:63:4f:81:2e:03:
7d:a9:26:60:db:14:bf:90:43:c1:f5:b6:d2:26:59:f2:b9:ab:
7f:b4:50:93:fc:74:a2:8b:de:4f:e9:14:67:26:1e:16:4f:04:
28:69:f7:64:f2:7a:7a:bd:34:7c:25:ed:8f:25:c3:26:fb:6b:
cc:16:3e:9d:d3:d4:00:25:48:69:bb:78:34:52:81:8c:67:57:
0d:9c:fd:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:14 2025 by rpki-client