Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: 8DWEKFh3VvcpkVdxtyUY5A1Un2aJLKJwcUHfDlbxVq8=
Subject key identifier: 85:23:15:3D:5A:79:E7:9A:72:02:ED:CB:0D:06:D9:19:03:40:5D:D4
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 01967B69D71F6ED61A09798EC4794586044C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 14AB
Signing time: Mon 28 Apr 2025 08:00:56 +0000
Manifest this update: Mon 28 Apr 2025 08:00:56 +0000
Manifest next update: Tue 29 Apr 2025 08:00:56 +0000
Files and hashes: 1: Kyq8dvDQCWTM4SDI01T-WEma_xs.roa (hash: csmuD1qBTRKUBvLNGvxDwNNOARNFB8rqYka6vl5ZQvQ=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: a7mnIGAywyJNVa4p7EOkPW27SfP1O38YPwzI5DM4GBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:69:d7:1f:6e:d6:1a:09:79:8e:c4:79:45:86:04:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Apr 28 08:00:56 2025 GMT
Not After : Apr 29 08:00:56 2025 GMT
Subject: CN=8523153d5a79e79a7202edcb0d06d91903405dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:04:ef:71:1b:90:e6:30:d5:91:be:0b:60:f8:
e2:45:da:66:9b:74:02:22:62:25:e2:15:42:d6:cc:
76:7e:44:a4:3b:ad:e6:40:f5:17:e6:7a:ae:de:0f:
4c:89:ac:05:7b:cd:73:6d:27:42:0e:e5:3a:ac:92:
6a:25:1e:4f:c6:2d:53:a9:46:f0:27:e1:ca:4e:0b:
cf:f8:90:4b:3e:33:ce:5a:43:ee:44:b2:31:1e:c9:
aa:d2:df:8c:ad:8b:57:dd:de:08:86:0e:f8:bf:32:
e8:43:49:ac:23:d4:56:aa:9e:4e:b1:86:07:c1:da:
8d:0e:8c:63:69:ee:50:69:8f:7e:46:78:22:e7:21:
26:6b:10:cb:d5:c3:ef:31:1e:16:b9:08:ad:fd:91:
9d:c9:1f:6f:74:6e:a2:92:4e:e5:f9:b4:63:a7:7c:
59:c2:8c:f9:5a:48:bc:6a:d5:de:9e:27:b2:29:25:
d7:8e:56:59:4d:a0:05:77:61:ec:33:10:e3:47:f6:
45:59:7e:4a:5d:33:58:5c:e2:8a:7f:8d:70:e4:19:
fb:e3:dc:77:15:b9:dd:f4:85:c4:d2:87:06:70:5d:
bf:56:34:c1:c5:78:a7:c8:4c:d6:0f:1f:24:90:0d:
2c:77:b5:ae:ab:9e:1e:c0:5e:62:82:f8:3b:88:f8:
6c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:23:15:3D:5A:79:E7:9A:72:02:ED:CB:0D:06:D9:19:03:40:5D:D4
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ee:f3:23:4b:5e:54:be:69:bc:bc:4e:6e:da:8f:e0:75:ec:
91:7a:dd:22:56:9b:09:a4:ca:b6:fe:95:c9:de:25:3e:40:d4:
d7:6d:c9:fe:17:71:eb:c8:e3:8e:86:ec:50:9a:a7:a5:43:06:
19:6d:6a:3b:6b:dc:e5:cb:e8:46:67:c1:e9:53:04:8e:bf:0d:
74:1b:1c:fe:db:73:7c:22:60:60:62:52:5e:36:05:8b:98:1c:
dd:5f:35:05:ea:9f:87:b0:ff:a2:15:42:44:dc:f4:2e:7f:f0:
3c:65:2f:4d:7f:a1:f8:05:86:61:39:cf:e7:e5:11:e8:dc:d3:
e3:79:a3:f7:2b:8d:78:f4:b8:ec:8c:ce:57:52:48:44:a1:c6:
d1:4b:bc:cf:fe:4f:ae:24:15:7b:c9:b7:ad:24:33:27:a3:0f:
10:f5:e3:e2:fe:7b:e7:90:f0:79:68:b9:95:4c:88:96:d7:25:
d0:5b:a5:b4:67:d0:a6:32:a9:cd:f6:b9:b7:9a:c4:e6:1f:a7:
36:f6:21:33:cd:77:09:5f:f9:4d:90:57:c1:be:fc:e8:86:d9:
1f:a8:b4:43:00:7e:e4:21:71:ed:f4:d1:63:f2:5c:6b:97:ec:
3f:dc:5b:b7:44:64:dc:ed:cf:cf:c7:3f:f4:c6:85:25:f1:84:
40:02:b8:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 14:05:09 2025 by rpki-client