Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: nLpcsOxtc3pcLsoqW70j4oCvjEUXxPLaURsaQhFp00M=
Subject key identifier: D4:AD:F7:93:07:49:B1:2E:2C:51:66:73:FB:10:F3:66:A3:FF:DB:A5
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 01969ABDB856B7CD6B72DB69173F81349AB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 032E
Signing time: Sun 04 May 2025 10:00:46 +0000
Manifest this update: Sun 04 May 2025 10:00:46 +0000
Manifest next update: Mon 05 May 2025 10:00:46 +0000
Files and hashes: 1: hGH_yKtqtaewmmke-m1I7cISSH0.roa (hash: T3QXU6gMQq0RcA3qUlvm1jUKiUtDYtXE4Lz78+TSbU8=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: Owpkl2kTWOuzHW4n5RCa9lHminviceisjVjkP/U1d3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9a:bd:b8:56:b7:cd:6b:72:db:69:17:3f:81:34:9a:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: May 4 10:00:46 2025 GMT
Not After : May 5 10:00:46 2025 GMT
Subject: CN=d4adf7930749b12e2c516673fb10f366a3ffdba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:67:7d:74:72:8b:09:a1:de:d1:ec:f1:7b:58:
87:6a:1f:d2:c0:53:98:30:96:66:e6:8a:2b:3f:30:
a1:6c:6c:f5:29:97:88:15:56:cd:4f:9f:c5:cc:f8:
d5:22:32:50:bc:07:e1:a9:96:f5:4c:f3:f6:ca:c4:
f4:d9:27:f0:81:bd:4b:da:42:09:37:2a:10:0b:8d:
ba:29:da:a3:9d:27:c0:b3:55:09:53:2d:22:b5:69:
04:4c:62:86:5e:b8:6a:29:ff:ee:41:47:0d:cd:ca:
6b:dc:f9:fa:27:c6:98:9c:b0:c6:70:9b:91:9f:1a:
58:f2:7a:fc:05:97:64:a3:f7:3e:fb:56:55:87:30:
a9:e1:24:2c:4c:ea:55:e7:36:7f:dd:db:0e:3d:e8:
8d:68:46:3f:7f:81:bb:3e:1a:50:30:1e:2a:e5:a2:
50:ca:8b:65:02:ad:c8:28:b3:d0:a2:0e:3b:6e:ab:
fc:e7:e6:74:7d:78:b6:6e:2f:47:dc:d7:ba:5a:80:
ab:2c:69:2e:b3:ae:da:19:ab:bb:a3:8d:8a:e8:bd:
aa:97:e8:88:36:a0:47:b0:c8:d2:83:8c:bf:b5:e6:
35:3a:28:93:74:ed:9d:d2:57:38:bd:65:4b:e2:cd:
ba:ba:2d:ae:27:dd:51:88:07:c5:5f:44:65:13:a8:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AD:F7:93:07:49:B1:2E:2C:51:66:73:FB:10:F3:66:A3:FF:DB:A5
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:f5:f3:73:b4:07:c7:2d:37:6d:5c:fe:77:0f:94:fc:55:30:
52:fa:72:dc:67:6d:00:b7:fb:7f:a9:bc:b2:cd:b3:1b:f2:27:
8d:e4:d2:0a:6b:b3:0c:4a:5f:89:a7:4e:d3:98:a2:41:fa:8d:
76:b0:b8:e5:c3:a1:d4:77:ec:9b:87:50:53:9e:4f:40:fc:ab:
7b:4b:76:4b:8e:57:93:65:16:6b:bc:99:dd:42:fa:e0:e3:32:
26:b5:96:f1:68:af:17:ab:e9:ee:c7:58:2f:dc:a2:38:c7:a1:
a8:66:44:1c:16:37:73:3d:fa:32:01:71:a3:02:05:bf:b3:48:
f6:fc:76:49:3a:86:16:f1:61:d1:9f:40:22:29:f7:da:8b:aa:
18:ee:9e:79:1c:a5:63:47:48:d8:9a:f5:dd:24:c2:b0:60:92:
83:59:78:9b:03:97:6b:6f:41:a4:d3:fe:3b:57:74:60:c1:1d:
e6:a3:bb:62:db:47:4a:08:2d:cd:04:bb:a9:83:e1:04:8e:23:
d8:32:79:6e:54:7f:61:40:a5:03:c3:74:08:a5:a4:87:8f:1d:
15:9f:45:0f:bc:cd:a6:9c:29:eb:7d:f6:92:20:67:f0:88:fb:
66:ac:2e:aa:e9:c4:48:f4:91:3a:5a:e2:88:a8:13:9b:5e:5d:
c5:14:5f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 15:26:05 2025 by rpki-client