Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: Tb41QclSQ4KobA20nER6oh4avTWA0RRBuUZSkAsQv9Q=
Subject key identifier: 74:45:2B:7D:7C:3C:69:72:FE:DB:F9:5B:15:61:C5:2B:84:5E:65:BB
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 019683232891855A45219F1A183319669D72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0B03
Signing time: Tue 29 Apr 2025 20:00:41 +0000
Manifest this update: Tue 29 Apr 2025 20:00:41 +0000
Manifest next update: Wed 30 Apr 2025 20:00:41 +0000
Files and hashes: 1: pZ2-rl1wvNOlZXWq6r9tiMcpCLE.roa (hash: UTgRZg+3/3Y1WSaSgU/Ax1MIkqu5a18zaZd2IsaahgY=)
2: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: crqXgkZXodcJctNkf852lHNWo0t9uULZpYCvnVyR7F4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:23:28:91:85:5a:45:21:9f:1a:18:33:19:66:9d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Apr 29 20:00:41 2025 GMT
Not After : Apr 30 20:00:41 2025 GMT
Subject: CN=74452b7d7c3c6972fedbf95b1561c52b845e65bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6d:69:c1:23:4f:3f:ff:63:26:8c:2b:ea:a2:
eb:e6:94:97:1d:63:c5:e3:d0:72:4f:44:33:65:e3:
ec:82:6e:57:13:bc:19:be:27:12:74:f6:25:24:4b:
ff:f6:0a:f9:f8:7b:61:bc:e6:2d:2b:ed:9c:66:50:
04:fa:f8:68:84:13:3e:99:9c:17:fa:75:14:68:0d:
17:db:e1:97:08:7a:6d:56:3c:1d:11:15:09:3c:19:
90:a4:35:82:75:14:a2:dc:06:64:88:18:a6:64:8e:
38:91:0b:c5:48:50:d0:96:4e:70:52:5e:c7:50:4a:
1f:5d:69:ac:b7:6e:33:5e:77:65:52:06:84:a2:c7:
ba:ef:aa:ce:01:68:76:29:7f:87:8c:31:d6:75:35:
0c:47:8b:7d:dd:48:5f:68:b7:80:80:2d:86:33:cd:
77:4f:14:4f:93:74:8e:80:ff:6c:f3:7f:74:4a:cf:
93:d2:60:43:8d:a0:a7:06:86:a6:5b:81:76:64:43:
04:4c:ec:d2:2d:15:71:e0:b1:64:7f:18:09:4c:eb:
50:47:12:d6:8c:28:38:bd:42:d1:1e:e4:9b:86:a3:
8d:68:48:00:44:15:66:80:40:a4:c9:9e:dc:31:f4:
d7:ea:44:40:75:eb:d6:df:64:43:c3:4f:4a:3a:56:
d4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:45:2B:7D:7C:3C:69:72:FE:DB:F9:5B:15:61:C5:2B:84:5E:65:BB
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:cc:65:31:f5:39:18:95:c8:8b:88:7b:ca:9a:d2:ca:5d:d9:
91:b1:a4:8c:66:55:bb:a9:28:1a:d2:69:5c:0f:e6:e3:7a:fd:
cd:8c:b0:f9:8f:d6:a9:8a:27:ff:e0:47:7e:da:68:e4:d2:48:
87:ec:31:fd:d0:8f:5d:e9:d9:da:2b:53:b5:f9:df:64:48:30:
0e:90:59:8d:3e:53:4b:7a:a1:18:1e:30:55:14:2f:36:f2:2b:
a9:93:62:4d:11:b5:a4:b5:36:ec:03:61:66:9e:3f:4a:ee:f3:
5e:60:3e:f0:49:02:32:3d:19:0b:ea:7b:83:37:3f:4e:e2:a4:
2f:67:54:60:81:36:e0:8a:f8:39:1d:29:0f:67:34:37:39:5e:
f6:48:c7:e8:cc:38:43:9b:75:ff:bb:d0:2a:b1:35:be:b0:bd:
cc:83:e0:e1:3b:8a:0e:d6:72:91:a8:34:b1:6a:9e:18:e8:39:
ea:f1:46:08:40:38:12:2a:00:54:e9:55:31:41:df:42:3c:42:
7c:88:df:20:31:9b:b5:da:c8:2d:61:62:18:85:bd:ad:fa:38:
e9:01:be:9f:42:54:4a:55:8f:cd:ca:10:61:f9:cb:ae:bf:2a:
f6:6a:93:c3:db:8d:f6:62:8f:5c:45:ac:9d:eb:3c:d9:c4:67:
ed:dd:96:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:25:02 2025 by rpki-client