Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: QXiLegqhhYgjClKzlOTopa7C6o6T6vqg6BfVnm8sVTc=
Subject key identifier: 40:13:B4:DA:DA:B3:EB:69:5E:12:4F:5E:B8:AA:2A:30:F5:70:25:DD
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 0194BB60146C7562E2502352D90B1F4043DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0A17
Signing time: Fri 31 Jan 2025 08:00:23 +0000
Manifest this update: Fri 31 Jan 2025 08:00:23 +0000
Manifest next update: Sat 01 Feb 2025 08:00:23 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: Bxqb0jN0xR7KsY1Mh267jKexeg6R6uFDgS6/Yy6viTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:60:14:6c:75:62:e2:50:23:52:d9:0b:1f:40:43:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Jan 31 08:00:23 2025 GMT
Not After : Feb 1 08:00:23 2025 GMT
Subject: CN=4013b4dadab3eb695e124f5eb8aa2a30f57025dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:86:ac:26:88:1f:8a:83:fb:53:f8:aa:45:
5c:96:75:cc:b0:d3:40:fa:6b:fe:95:cc:23:a9:ac:
21:7e:a7:f6:ca:98:5b:59:dc:e4:81:ce:8b:b0:18:
f6:63:95:71:4d:3f:3d:11:31:77:fa:d9:cd:09:13:
3d:4f:c9:28:f5:d8:07:4c:9a:7e:fa:20:96:a7:e3:
ac:f8:5a:da:f8:de:bb:79:12:2b:d7:eb:0a:6e:9a:
d7:9d:e6:5a:20:02:2e:fa:26:56:96:40:06:62:e9:
8a:1f:fb:34:d3:35:76:a4:bd:db:bb:c4:e2:43:13:
6a:06:9b:f6:1c:cd:52:a6:4a:d1:86:f6:f8:18:18:
d6:e0:2c:21:06:26:64:bc:c9:74:82:f9:70:2d:cc:
47:33:ed:b3:80:03:ea:33:3a:94:c9:ee:2b:48:6e:
19:35:a6:88:e3:8e:85:f3:ea:a8:dc:b6:ce:af:a9:
6b:8b:2b:65:23:11:c3:0f:5c:7a:1f:71:3e:bf:cf:
0e:07:89:f0:00:c3:eb:03:56:53:85:3d:44:42:57:
a9:27:97:2d:1e:8a:ea:25:a9:57:13:ff:9a:1f:d1:
8e:02:5e:c4:84:1c:4f:0d:2e:89:77:43:a2:1c:dd:
6a:39:26:a6:45:d5:da:28:dd:59:3b:83:62:83:c4:
79:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:13:B4:DA:DA:B3:EB:69:5E:12:4F:5E:B8:AA:2A:30:F5:70:25:DD
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:80:1c:4a:bc:83:9c:e8:b0:f6:98:43:a3:6d:ca:f1:e9:5f:
cd:5a:5c:cd:d2:d4:bf:74:04:79:92:56:05:a8:63:87:16:e9:
3a:cb:3a:05:73:cf:52:94:e0:b5:6a:cb:d5:f0:52:bf:2f:22:
16:3b:69:52:6b:cb:d3:f5:f4:e3:b1:ea:20:0e:db:62:7e:99:
c8:50:76:a4:c3:59:14:91:3c:b7:65:af:d1:dd:2b:19:5c:f5:
90:fd:17:f8:86:aa:74:2d:c5:06:28:7c:52:45:f8:76:d8:55:
f4:59:6f:71:13:ac:fe:72:1a:75:fb:bd:48:37:b4:89:3b:70:
ab:ca:38:06:13:34:dc:f0:92:2c:2a:94:56:2a:e2:81:cd:38:
39:0e:71:d0:46:16:df:ff:5a:b4:ef:cd:df:fb:3e:34:ab:d6:
76:c1:54:32:6e:39:59:c2:0c:2f:dc:7e:6e:f9:36:57:ba:79:
5f:f2:70:98:4f:ba:5b:fb:46:32:58:50:84:6d:3d:82:d3:3b:
45:f8:79:cf:6d:7d:42:68:4f:68:af:f4:3e:60:dc:18:a1:97:
93:8d:c9:fb:13:29:09:d2:5c:60:36:e4:8a:21:a7:46:a8:d3:
fb:d8:fc:8d:65:07:a0:73:75:95:e1:f2:7d:43:9b:15:32:d3:
93:ed:98:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:31:47 2025 by rpki-client on console-fra.rpki-client.org