Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
File: Fzn5ZM1In80lALN2gdWEedVTyKs.mft (raw, json)
Hash identifier: bxCaeOybQNeKiSf0mZeX5lesdjBbCMAcydYQS88nYAc=
Subject key identifier: D7:D5:41:6E:38:9C:DB:2E:32:28:76:91:32:11:CA:8E:3F:CF:9A:8F
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Certificate issuer: /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial: 0196760CD774EC8586BAA38DED69E5C3DD3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
Manifest number: 0FAD
Signing time: Sun 27 Apr 2025 07:01:15 +0000
Manifest this update: Sun 27 Apr 2025 07:01:15 +0000
Manifest next update: Mon 28 Apr 2025 07:01:15 +0000
Files and hashes: 1: E7khi_dy64NAplQCGIYWONm6XWs.roa (hash: B7pDURftKO1TVaIjuNJYi/KUiJRc83FFsiFwUHpeKCw=)
2: Fzn5ZM1In80lALN2gdWEedVTyKs.crl (hash: TvOINuz2Z1tthzMA6eMRwYkMWVrWeZEMwRd6Xq0k6Fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:d7:74:ec:85:86:ba:a3:8d:ed:69:e5:c3:dd:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
Validity
Not Before: Apr 27 07:01:15 2025 GMT
Not After : Apr 28 07:01:15 2025 GMT
Subject: CN=d7d5416e389cdb2e322876913211ca8e3fcf9a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:c0:34:ba:7e:86:df:10:c6:79:82:6f:17:
df:fe:f5:d1:19:82:df:77:13:29:d8:c0:ff:a7:1c:
b8:94:c9:7f:27:35:01:02:d8:a9:90:87:7c:90:f8:
18:74:c6:ba:9e:84:2d:a6:e1:24:4f:14:f1:e7:c4:
58:a6:b6:f8:ae:63:c3:21:69:3f:3e:64:41:19:35:
97:0d:a9:11:fb:d3:34:7f:d0:3e:e8:ab:b2:c6:71:
1c:9e:23:c2:33:59:0b:58:f5:9b:93:81:39:24:bd:
48:4b:24:a9:ac:da:6b:0b:cc:cf:3d:d7:02:a5:3e:
e6:c5:3b:33:28:84:8a:78:ca:a1:c2:4a:7b:47:71:
0a:71:66:7a:78:d8:57:e7:ef:40:1b:93:c2:18:42:
bf:55:42:f2:06:a8:90:2f:e7:1d:f1:40:83:30:36:
51:6b:cb:df:1a:67:31:8b:90:9c:8c:c3:ef:ed:c7:
5f:21:42:67:11:59:63:ba:24:6a:a9:60:f2:48:c3:
3a:78:74:28:ec:68:19:2b:ed:54:e3:b6:44:1e:b8:
60:b2:e4:f9:e3:0c:a4:b6:d6:dd:fa:f9:0c:73:de:
b1:96:a4:b5:3f:42:22:50:5c:84:6e:91:f2:00:4e:
59:6c:9e:fe:8d:4c:b9:14:93:5e:46:12:97:72:62:
70:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D5:41:6E:38:9C:DB:2E:32:28:76:91:32:11:CA:8E:3F:CF:9A:8F
X509v3 Authority Key Identifier:
keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:8d:15:04:51:8e:f0:20:f6:3b:a0:b1:0b:95:6e:00:c4:39:
41:76:5e:c2:22:9d:00:4d:7e:b8:33:b8:1c:04:5c:3e:f1:58:
21:3f:d3:24:59:0e:f0:d2:3d:d7:b8:f0:07:bf:ab:68:10:25:
e3:c1:07:16:08:2c:4b:cf:73:69:60:e8:2a:c8:f8:d8:b1:41:
70:ee:29:d4:66:9a:0f:14:33:9d:60:f7:bb:84:47:e0:46:4a:
05:b5:30:6d:13:23:92:b2:2b:02:66:2f:ef:18:9e:4e:9b:a3:
ed:92:49:dc:15:42:4e:70:92:35:72:9b:ee:f6:c0:b6:8a:39:
8b:60:b3:5d:15:65:6e:31:1d:73:b7:7f:cd:93:0e:91:b4:8b:
55:13:52:2d:bf:3f:3d:7e:69:29:c8:68:6c:42:e1:10:4a:7d:
7f:fe:2b:62:17:df:d2:b0:3b:df:7b:06:4f:ea:e3:ac:69:d9:
f9:2c:e3:08:23:45:f7:f5:c1:72:d0:65:02:63:f9:64:38:98:
d4:3c:d5:f3:08:6c:0f:34:2c:0d:e6:24:5c:3c:0d:a1:00:08:
ba:f8:31:aa:d0:f5:74:e7:53:7c:f8:19:81:bf:44:9e:d6:fd:
56:9b:07:52:54:99:04:9a:2e:fb:c3:03:b9:e8:97:09:f7:63:
e4:28:ab:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:02:53 2025 by rpki-client