Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: 2PDw3U2mPsIWQeASMivaj48euU1U+8auLBJnnHwQzlI=
Subject key identifier: 81:98:32:D3:A1:3E:4F:88:5D:29:51:B8:1D:37:4D:46:3A:10:83:1C
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 019683FF16B4490E327412CC273437683B2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 012D
Signing time: Wed 30 Apr 2025 00:00:54 +0000
Manifest this update: Wed 30 Apr 2025 00:00:54 +0000
Manifest next update: Thu 01 May 2025 00:00:54 +0000
Files and hashes: 1: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: wvcpm+JED0LiYOn5UV7AnrChF+w51ekdCKO79gMB0NQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:16:b4:49:0e:32:74:12:cc:27:34:37:68:3b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Apr 30 00:00:54 2025 GMT
Not After : May 1 00:00:54 2025 GMT
Subject: CN=819832d3a13e4f885d2951b81d374d463a10831c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e7:cd:43:dc:3f:92:58:03:c8:b0:bd:28:67:
bc:c9:27:a6:a0:ec:86:87:6b:3d:29:0e:47:8e:18:
e2:92:20:f0:08:d0:df:e0:5f:d0:74:a6:14:33:87:
07:0e:04:25:d7:39:1f:71:89:2a:24:c1:4d:6b:9f:
b3:e1:68:52:cf:73:b0:18:5f:67:60:7a:ba:3f:ea:
e9:b2:93:23:f1:1f:99:be:98:69:0f:a6:5c:ed:a1:
a8:26:b3:f2:25:24:68:7b:e8:20:71:bf:e7:8e:c8:
92:83:9d:6a:c2:a9:25:1b:98:fa:fe:0d:d8:5f:29:
1a:3e:24:54:62:dc:f2:b0:5d:4f:01:a1:c8:c0:ad:
b1:82:e0:52:5e:aa:56:32:25:65:8e:69:6d:67:df:
e0:df:51:c6:31:22:cc:e0:b0:07:d8:ce:77:33:73:
0e:3e:80:96:35:53:6b:a8:9e:cb:11:cf:f1:3c:52:
36:cd:51:57:90:ea:ce:d8:07:b4:10:f2:a6:9f:c3:
49:f0:10:20:65:01:a4:e2:1b:69:a7:ea:11:90:36:
e3:22:d5:07:24:55:49:c0:56:06:41:73:9a:db:49:
34:db:4a:65:6d:1b:a3:02:39:f1:c8:04:d4:0e:9e:
86:bf:b2:fb:23:b7:99:85:4d:ad:c9:16:5a:3c:76:
46:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:98:32:D3:A1:3E:4F:88:5D:29:51:B8:1D:37:4D:46:3A:10:83:1C
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:76:0c:af:14:8a:d9:d9:ad:bc:cc:81:41:37:a6:0c:1e:eb:
fa:5c:57:78:a7:2d:92:58:96:86:2e:35:fb:ea:97:cb:5f:3c:
0c:2c:a2:69:11:5a:48:7d:e9:d4:1a:3d:65:b9:f9:78:22:12:
4e:9c:f4:cb:ed:e2:1f:26:e9:d5:9f:6a:14:8b:89:e7:8a:f7:
e5:86:79:20:c3:b0:70:63:bd:fa:f1:88:76:89:30:2c:73:27:
65:e4:f5:0e:ef:14:e3:d9:bb:75:41:3a:0b:73:c9:ef:ce:17:
e2:ca:1d:73:7c:8e:a7:32:a6:30:03:85:43:23:e2:1a:e7:38:
9a:91:98:b7:2c:7b:4c:9c:bb:8a:53:6f:66:97:98:ab:b1:87:
46:bc:00:5a:ad:b4:2f:27:45:5a:23:af:a7:43:c2:d7:30:5f:
01:ba:61:ba:4b:d7:35:d1:d5:a2:90:91:6a:35:5a:cb:4b:60:
e5:d5:2e:35:34:d0:00:7e:16:cd:50:f9:56:31:07:09:e0:e5:
20:ae:6c:bd:c6:df:22:96:ea:52:48:e3:62:9c:e5:7a:6c:82:
ad:2e:da:53:bb:ce:b5:92:59:50:df:ed:e9:8d:eb:09:e5:66:
69:85:fa:65:cc:d4:49:ff:85:c7:44:77:51:7b:33:43:50:4d:
c5:7d:d8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 08:11:31 2025 by rpki-client