Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
File: bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json)
Hash identifier: sPZBhnbnxsjt92986dR8+TbcfraBQ5ZfUap6R3JzgnQ=
Subject key identifier: C8:49:9D:C1:1E:90:CA:79:B6:86:D0:12:B2:00:46:1A:41:F7:B8:89
Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
Certificate issuer: /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Certificate serial: 019511A2AE0D7E0A5C5F842C10A2CFEBA43D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 02:00:28 +0000
Manifest this update: Mon 17 Feb 2025 02:00:28 +0000
Manifest next update: Tue 18 Feb 2025 02:00:28 +0000
Files and hashes: 1: O1oreHXoGfE0x_DduepnzXbv1jQ.roa (hash: YJRrGXYLhqb/8S1lAURaXg16hfYVh9EAfo6ckQiEqy0=)
2: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: un/6uuTgmOwtcyLnsPkmiJ4y1dZcbe7b0hv5M4Ppck8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:ae:0d:7e:0a:5c:5f:84:2c:10:a2:cf:eb:a4:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53
Validity
Not Before: Feb 17 02:00:28 2025 GMT
Not After : Feb 18 02:00:28 2025 GMT
Subject: CN=c8499dc11e90ca79b686d012b200461a41f7b889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:71:d3:b6:fc:83:04:9a:10:57:2e:10:b9:f7:
e8:ae:f0:a6:90:c9:d6:ce:3c:bb:d8:f5:5f:2f:3e:
94:dc:b5:4c:0b:aa:77:a1:74:1c:7e:35:86:62:77:
c6:de:8c:1b:6a:c1:99:2b:b8:2a:1c:23:6a:a3:f2:
a8:68:c7:13:de:0b:f7:01:b7:7f:60:33:c9:9b:9a:
ff:13:70:2d:8d:22:d3:0b:0a:09:35:e1:cf:37:76:
a3:94:86:ad:f3:8a:40:7a:9c:23:e9:7a:dc:6d:c9:
bf:58:ce:de:cf:f7:78:7f:7e:de:36:5a:52:eb:d9:
a8:31:1a:bb:0b:ee:d1:50:f2:99:dc:aa:31:9d:b4:
4d:46:08:a2:11:87:e3:0b:3f:0a:3a:75:bb:9e:45:
4d:a4:22:bf:b2:de:d5:1c:b6:c6:19:cf:7b:74:68:
0b:5b:fe:c5:e8:6e:02:e8:47:99:e0:01:68:e3:0d:
03:ee:36:48:b8:bd:2b:a5:2e:fa:32:1c:1f:82:ac:
aa:a5:ed:c8:e6:4c:eb:8e:38:cd:31:78:75:32:0f:
91:d7:cf:55:78:7a:cb:4d:b7:51:90:64:13:34:88:
4a:a9:3a:05:a7:ab:19:83:ee:4e:c1:52:a4:92:b0:
cd:6f:bb:46:98:36:cd:f3:43:41:7d:87:f0:bc:40:
f7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:49:9D:C1:1E:90:CA:79:B6:86:D0:12:B2:00:46:1A:41:F7:B8:89
X509v3 Authority Key Identifier:
keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:37:9f:e3:6c:0a:c3:c5:44:f3:fd:e0:c4:b4:0c:c9:75:09:
e3:41:3d:40:18:ba:da:fe:ce:34:24:c1:bc:7a:2e:cb:1b:4c:
18:4d:0d:e8:fc:71:ad:9d:e7:ec:31:9a:8b:0b:1a:6e:d4:8d:
af:16:fc:8c:aa:14:ad:d8:ca:e5:91:6e:06:20:95:bf:f3:6f:
cc:e5:be:dc:59:e3:44:eb:09:17:c9:12:6f:9b:8e:81:68:52:
39:33:53:9c:42:2c:06:db:e4:c9:bd:32:a6:ef:8d:4c:9d:20:
8b:83:00:d4:1d:99:34:95:2c:74:06:36:d0:f5:75:63:16:06:
f9:bc:21:76:b6:1e:87:28:7d:09:4e:11:8c:f6:a7:8c:46:c3:
76:54:57:60:55:83:3a:bc:d9:0d:5c:92:04:20:4c:bc:4f:52:
bf:1c:13:54:20:51:42:15:5e:ef:e6:49:89:db:cb:c5:e3:32:
9d:6b:a6:a0:94:91:b1:ba:9a:9b:4c:5a:eb:87:62:80:82:7a:
01:97:0f:7c:6c:d1:61:ef:a5:bf:14:fc:8e:61:7c:b2:46:07:
af:72:37:ad:9f:a6:d5:9a:8b:51:46:f1:d8:1d:63:70:90:f3:
f0:20:06:99:ed:11:7d:6a:3e:f1:79:ca:af:50:61:04:1a:88:
e6:59:7c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:54 2025 by rpki-client