Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
File: rz9wBQP0ByCoL3bvFc2mICLx-ak.mft (raw, json)
Hash identifier: 8fjg3gNj199t8wCVXczehDtkUaJQiifvF7IseZB4LXs=
Subject key identifier: 17:C1:CC:77:29:F0:AF:69:DB:BA:27:10:37:B0:7C:69:44:0B:A1:23
Authority key identifier: AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
Certificate issuer: /CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Certificate serial: 0194BA84203F94B8AD256EE0216D92C9AC04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
Manifest number: 0AEF
Signing time: Fri 31 Jan 2025 04:00:08 +0000
Manifest this update: Fri 31 Jan 2025 04:00:08 +0000
Manifest next update: Sat 01 Feb 2025 04:00:08 +0000
Files and hashes: 1: rz9wBQP0ByCoL3bvFc2mICLx-ak.crl (hash: DLhUF1Y66jV5nQiROBUqPrOJ1lf0Y0l5MR1zo9nDObE=)
2: zHaHHwpWkvwMR4EBkRKLj2nL7g4.roa (hash: dEmOAj28ftGGpyQRnDV2quElsA9Yrv1JJIOo7l9XjEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 04:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:84:20:3f:94:b8:ad:25:6e:e0:21:6d:92:c9:ac:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Validity
Not Before: Jan 31 04:00:08 2025 GMT
Not After : Feb 1 04:00:08 2025 GMT
Subject: CN=17c1cc7729f0af69dbba271037b07c69440ba123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9d:8e:1b:30:2e:f2:f0:ea:ad:fc:51:e2:f8:
70:b1:b3:4c:07:dd:33:40:c3:40:bb:da:96:14:e9:
bc:c7:08:55:a2:db:81:50:e0:1d:0d:1c:cb:22:e7:
26:d7:ec:09:6e:29:bd:02:f6:da:fc:74:8f:e5:86:
71:2d:c2:4d:3b:5e:e7:b2:b0:9c:65:40:db:26:65:
a4:83:ec:42:25:64:0e:2d:02:82:16:08:10:d2:80:
41:bf:9b:c5:8d:c4:a9:49:e8:ec:23:d1:1b:4a:79:
f8:78:ca:b5:c1:1e:44:63:d4:34:66:b4:15:a5:55:
8b:4f:81:10:dc:c9:09:33:26:68:21:18:b7:44:39:
1c:6b:8b:a9:b3:d3:e4:d9:52:8d:66:aa:97:1c:c8:
16:1b:65:9f:ea:31:8a:59:a4:97:dd:be:98:86:b8:
89:e4:55:4e:4b:d1:42:b8:98:3e:74:ee:39:71:04:
a3:15:6f:2a:6c:d0:25:01:a4:54:88:e3:b7:1d:c7:
a4:3e:c7:b6:cd:25:d4:d5:b8:c4:b5:a6:81:b4:9d:
b2:84:c0:6c:1b:ab:ad:61:05:cb:29:9d:d2:c5:a4:
b1:5d:c4:ad:46:dc:36:33:c6:21:c9:13:e9:9b:2c:
ac:c9:8d:4a:cb:2e:6e:0c:f7:ea:2f:87:ec:f4:fe:
8a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C1:CC:77:29:F0:AF:69:DB:BA:27:10:37:B0:7C:69:44:0B:A1:23
X509v3 Authority Key Identifier:
keyid:AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:8b:62:6c:2e:49:95:22:28:39:e3:1b:51:03:fc:c8:7c:4b:
03:14:6c:c4:e7:b3:03:00:f6:3c:4a:8f:b9:2f:40:18:26:37:
d5:d6:30:c1:2b:56:f8:83:fc:1f:c4:e0:44:de:e0:9e:43:4e:
b5:f1:77:d9:ec:89:ee:49:8f:92:49:70:4b:76:b7:1e:65:9e:
94:db:65:ca:fd:68:b4:68:d5:90:4f:dc:c2:f1:1a:a2:f2:ad:
ab:86:61:25:ac:17:59:38:cd:e6:d8:ad:f9:35:5c:5e:42:3b:
2d:e3:59:e6:76:c9:71:74:2e:2f:8e:7d:26:ab:d9:71:28:78:
c9:c8:1d:34:1f:02:2b:32:b8:3f:9d:96:6a:4c:e8:2b:33:be:
8e:66:d9:0e:8c:57:d3:fd:34:79:89:47:b8:da:3a:22:ca:ca:
c8:e0:6c:af:37:cd:d3:d7:fd:fe:17:d0:45:b2:03:41:55:0e:
d9:f0:d6:35:5c:47:5d:92:d7:ff:7d:2c:ab:48:22:ae:b1:93:
80:5b:b2:13:a1:ab:a0:56:cf:6e:17:4e:31:2a:3d:ce:ee:25:
9d:fc:76:2f:50:47:cc:e0:09:f2:16:a5:5a:fa:6e:b6:0e:31:
8a:68:f0:85:00:2e:ba:d8:fa:6f:d0:41:4b:78:15:25:09:4e:
3f:db:63:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:36:02 2025 by rpki-client on console-fra.rpki-client.org