Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
File: zdpbTOlfoL32BUFp53rvyCZd28Q.mft (raw, json)
Hash identifier: hTx6f5dqdYOLCq+y41VtGCkrMX4HtjyyEMDCfZdaLX8=
Subject key identifier: 75:4D:B5:57:A5:29:6E:32:AC:5E:20:8B:EC:B4:81:3B:26:96:16:D9
Authority key identifier: CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
Certificate issuer: /CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Certificate serial: 0194BAF22F8CB4EBCF741DA823765567D40B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
Manifest number: 13BC
Signing time: Fri 31 Jan 2025 06:00:21 +0000
Manifest this update: Fri 31 Jan 2025 06:00:21 +0000
Manifest next update: Sat 01 Feb 2025 06:00:21 +0000
Files and hashes: 1: 40_j8EnMOslOGeaUGeLQNCGHg64.roa (hash: BOU6u1kQjKsVBkJf+h9lI/7YbpbYLn1ZXJQhHit/Gyg=)
2: zdpbTOlfoL32BUFp53rvyCZd28Q.crl (hash: SW8jHjyvLHvYeMTBUNJfMsZO26EmC/TXWP1k2aIy+vQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:2f:8c:b4:eb:cf:74:1d:a8:23:76:55:67:d4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Validity
Not Before: Jan 31 06:00:21 2025 GMT
Not After : Feb 1 06:00:21 2025 GMT
Subject: CN=754db557a5296e32ac5e208becb4813b269616d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:2a:22:0d:73:7d:54:9d:d3:1e:f8:18:23:
29:e5:e1:c4:92:93:bd:71:7e:1a:c2:dc:18:c1:31:
f0:a2:31:99:10:15:9f:b9:06:a3:bd:f0:d4:1f:38:
9f:aa:dd:72:28:99:78:29:c9:df:69:1a:ef:38:b7:
a8:f1:3e:a3:6f:b0:66:f9:d6:93:30:fb:b5:a0:2a:
e7:85:27:df:29:25:88:b9:44:44:31:76:a3:70:2f:
6c:c4:66:ea:06:36:66:78:86:eb:3f:7a:65:b9:57:
5a:c9:9d:49:da:54:1f:81:0d:02:65:64:c9:ce:32:
16:2e:07:07:41:c5:a9:22:ec:b6:af:3d:04:e1:e2:
b2:15:ec:b0:52:63:8a:c9:8e:06:25:89:05:4f:16:
f8:3e:74:8a:cd:60:5f:41:1d:84:f8:4f:73:68:1b:
40:12:b4:f5:12:18:2e:7d:28:5f:b5:bb:c2:20:05:
1b:65:41:b6:8c:00:f1:2f:5e:ce:bf:07:c7:3c:20:
e4:d6:19:7e:20:1b:34:eb:c0:e9:37:e5:81:ba:2c:
58:e6:02:37:a2:c8:69:33:81:e2:17:a9:37:37:fa:
96:c9:4c:eb:8a:a6:2a:d5:21:ff:3f:4c:3d:11:06:
ca:ca:6a:b7:e4:8f:f3:1a:3e:5f:ac:51:bc:8b:3c:
c0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4D:B5:57:A5:29:6E:32:AC:5E:20:8B:EC:B4:81:3B:26:96:16:D9
X509v3 Authority Key Identifier:
keyid:CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:b6:55:30:63:b1:56:08:96:bd:41:c9:65:e6:3d:89:d2:f2:
89:63:97:0a:5f:5c:c7:32:37:24:32:df:28:26:65:8e:b9:18:
a9:2c:18:33:7d:45:32:22:e6:df:68:0d:1e:34:3d:14:49:f9:
71:4d:2e:b9:2d:0c:e5:27:f5:60:93:7c:1f:ce:a1:6b:9a:0e:
a5:4d:d0:68:c9:01:59:d4:ec:b8:f4:d7:13:a2:55:0d:b8:3b:
82:ad:0c:f4:4f:8e:eb:81:d9:e2:b2:0a:09:fc:e9:d5:34:db:
dd:79:18:54:22:4c:df:d5:24:34:49:74:9e:bb:4c:2a:a6:94:
d8:4f:4f:05:fa:33:f4:f4:c3:2a:90:00:ed:88:86:01:6d:d2:
a1:6a:fa:e0:0c:a4:44:c2:0f:73:4f:70:bd:24:04:59:de:e5:
cc:28:84:2d:d4:f7:4c:da:24:ee:be:2c:d7:95:4a:d3:4c:1e:
4c:69:6a:8d:7a:50:87:75:11:69:b2:83:57:1b:02:76:fd:c0:
9b:38:42:3f:40:24:91:05:6d:20:f7:e6:13:d8:74:9f:2d:d8:
e1:d3:f0:eb:5c:cf:8a:4e:72:6c:98:9a:84:df:88:ee:0e:9d:
a7:8b:e1:3f:61:29:ec:1b:1a:a7:e3:8b:45:d4:81:93:c5:1d:
21:70:30:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:57 2025 by rpki-client on console-fra.rpki-client.org