Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: nxAx70OoXIfVYoikEq7oh+7owG2RPRTcEpuCxi7qoeI=
Subject key identifier: CF:7A:B0:C1:0F:F3:7B:5A:F4:62:0F:49:40:EE:DB:7F:FA:23:54:AF
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 01967DC60941BA29337D953146DB33CD0A44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0BFD
Signing time: Mon 28 Apr 2025 19:00:52 +0000
Manifest this update: Mon 28 Apr 2025 19:00:52 +0000
Manifest next update: Tue 29 Apr 2025 19:00:52 +0000
Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: NXEVRCnmToPxzGPdgXZzLdUw//ab3kgOfHfXuzttlso=)
2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 19:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c6:09:41:ba:29:33:7d:95:31:46:db:33:cd:0a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Apr 28 19:00:52 2025 GMT
Not After : Apr 29 19:00:52 2025 GMT
Subject: CN=cf7ab0c10ff37b5af4620f4940eedb7ffa2354af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:0a:24:29:d5:1f:a9:fc:1f:cc:d4:99:ad:
82:a8:b9:cd:c3:cf:ed:2f:04:6e:ea:8a:a3:27:c6:
ef:dd:0c:ad:f7:b7:c4:f8:12:f1:ea:b0:44:e6:70:
9d:b0:18:b6:6b:e7:47:dd:3c:88:03:eb:dc:53:a1:
86:04:be:c3:5d:71:c5:f7:be:0c:33:f7:9c:56:76:
4b:3b:55:0c:de:ee:24:b0:71:dd:e3:99:26:f7:ee:
e3:0d:cf:2b:ad:32:8b:54:ae:f9:ed:c6:b5:eb:33:
3b:42:89:38:88:d9:e2:0d:29:d8:d5:6a:10:82:e1:
70:ef:71:b6:1e:52:e7:22:03:79:c4:c8:ac:c3:d3:
96:eb:67:6d:95:e0:e5:73:8b:87:06:d8:98:65:0e:
f3:00:3b:8a:d4:d3:dc:82:cf:2c:f7:ac:ff:5f:3b:
41:c5:b8:6e:67:91:24:f9:e8:b2:d4:07:80:80:25:
ec:dc:a6:c6:fd:12:dd:67:04:ce:ce:47:a2:60:8a:
de:50:58:2c:cb:ee:77:f1:8f:a8:22:3e:ab:e2:db:
ec:ab:79:b6:7e:99:f5:0c:88:ae:59:18:73:fa:73:
b9:06:0a:60:b0:80:06:5c:55:3c:18:29:d0:68:a5:
ff:f5:eb:21:b6:48:ac:62:10:cf:e7:f9:a1:0f:9c:
a7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7A:B0:C1:0F:F3:7B:5A:F4:62:0F:49:40:EE:DB:7F:FA:23:54:AF
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:bc:62:5d:e7:98:18:67:c9:cc:b6:ec:93:de:75:11:90:0a:
69:9d:4a:52:5c:b8:99:f2:04:c9:68:16:42:c6:a9:88:da:dd:
be:38:0d:0e:1e:fc:cc:8c:3d:e2:f5:67:25:ab:96:21:c2:66:
15:46:5c:9f:5c:43:5c:55:08:93:e5:ce:92:94:e9:89:64:3f:
c5:b3:4a:a1:f0:35:08:d2:dc:8a:8a:8f:28:91:81:a4:5c:6b:
6c:19:50:7c:5e:01:66:9e:88:64:7c:b6:9a:f4:24:d0:d5:cf:
9f:6b:5a:c9:cc:a2:c3:ba:61:a9:a6:dc:1a:85:90:30:f7:1d:
ba:95:9b:9c:be:ba:5d:77:2b:03:37:08:91:1b:ff:fb:b5:ec:
95:a0:fd:f1:34:d3:ed:2b:22:0a:95:99:ea:d9:d2:df:b7:11:
f6:3c:bf:f2:86:7a:e4:cd:67:aa:ad:5a:46:64:b5:04:e9:8f:
ea:63:a7:aa:12:0f:d6:04:f3:e5:c6:cd:15:97:9d:5d:32:83:
ed:ca:56:d2:9d:9a:2f:73:b8:6e:00:b8:39:04:a2:c9:10:db:
47:49:02:a3:38:7b:df:e6:df:db:bf:c9:dd:bf:2f:39:d7:2e:
52:6f:dd:fb:76:7d:85:de:0f:fd:38:3f:a1:5b:ae:cc:e4:fc:
38:60:97:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:57:12 2025 by rpki-client