Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: NYGtYntSmzV0m13eL+RTf+cli85w4+2+eGa76OX8KxU=
Subject key identifier: 75:50:9C:53:63:78:BD:8B:10:95:2F:C9:20:4E:A8:D7:36:DB:1D:2B
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 0194BB5FDFC976279182462E67B615D9306E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 13BB
Signing time: Fri 31 Jan 2025 08:00:10 +0000
Manifest this update: Fri 31 Jan 2025 08:00:10 +0000
Manifest next update: Sat 01 Feb 2025 08:00:10 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: qy7WdRpGY5Un4EjACoJ2VehGwqYhh38dohzPZmR7+bQ=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5f:df:c9:76:27:91:82:46:2e:67:b6:15:d9:30:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Jan 31 08:00:10 2025 GMT
Not After : Feb 1 08:00:10 2025 GMT
Subject: CN=75509c536378bd8b10952fc9204ea8d736db1d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7b:9e:a5:cd:fd:7a:7b:5f:f5:0a:90:f2:3e:
a6:79:65:7b:45:c6:f8:6f:26:33:e2:d5:e0:de:4a:
a5:e3:d9:fe:94:3c:11:bd:4d:df:2c:0f:98:22:09:
07:74:b6:8a:da:a0:de:39:1a:23:46:a0:cd:92:53:
a2:be:17:3f:b2:c9:fc:56:b0:a5:ef:50:c8:e6:31:
87:9b:3f:59:6a:b9:b6:ad:fc:16:40:33:ba:3e:5a:
da:ee:63:6a:0d:f9:45:6b:60:1d:85:ce:64:8f:e5:
5a:f7:ac:02:d6:f6:9f:ea:00:fe:54:18:9c:cb:fd:
bc:d6:0e:af:e0:67:d4:0a:c7:b6:58:25:a5:13:46:
52:b3:10:4b:17:32:46:72:7c:d0:47:ed:66:1b:fc:
be:85:79:16:1d:77:58:bc:8b:c1:56:6c:b3:45:37:
49:b0:a1:5e:6c:d8:f0:ec:c5:cf:e1:5d:a4:04:91:
df:58:ea:5c:94:05:83:0c:d2:71:d8:65:5a:51:83:
11:fa:b1:79:9f:65:e6:1c:6f:a7:d7:3b:1c:dd:bf:
f7:44:73:77:fe:bd:29:6f:d0:45:cc:de:02:0f:fb:
ad:2c:46:a3:19:dd:25:b8:6b:f0:9c:7a:ab:4f:96:
cf:ec:f1:fc:e3:83:ba:d8:65:e5:41:bf:e3:5c:93:
1c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:50:9C:53:63:78:BD:8B:10:95:2F:C9:20:4E:A8:D7:36:DB:1D:2B
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:b8:32:2d:f7:95:8c:70:91:ee:e0:07:e4:9c:12:d1:15:cc:
fc:5c:ba:2b:09:53:5c:d0:10:a8:e6:aa:82:35:21:82:44:bc:
49:e1:f8:0b:50:5f:9a:1d:08:a7:98:ed:5b:4a:e6:33:56:b5:
57:14:69:58:80:ea:44:e6:8a:04:b2:59:4c:55:b5:10:50:03:
0f:aa:79:65:d4:89:71:4c:1f:bf:83:87:a5:d0:20:35:c5:a9:
72:41:de:aa:da:de:9b:fb:7f:29:ae:a9:7c:4e:93:a9:18:eb:
07:b7:1d:1b:f9:8f:41:eb:d0:7b:5e:ce:ef:7a:a0:4f:68:af:
2c:16:59:25:d9:44:13:ca:bb:37:d0:8c:2a:71:12:9d:2c:04:
9c:1d:4d:c7:ad:b4:bf:42:97:89:8e:2b:20:a1:90:9d:c4:48:
b9:a1:eb:26:09:bb:b1:e6:e8:12:b7:d8:ac:d7:de:1b:eb:fc:
d1:a1:1b:7d:81:e3:f1:a1:5d:a2:fd:b4:3b:f3:ed:1c:7a:17:
8f:1c:92:44:26:50:45:79:a2:c8:26:e6:d2:66:df:4a:24:2e:
47:5f:e2:22:a4:f6:fc:96:cb:0c:2e:15:ba:c1:ea:6e:2c:8e:
d6:fe:7c:fe:20:83:74:f5:cd:98:cc:36:f7:54:be:57:a1:30:
be:28:c0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:36:58 2025 by rpki-client on console-fra.rpki-client.org