Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: sDQIDDx5FckxxZTr71YrZqN5K4YhYkUr2J5orzMAVT0=
Subject key identifier: E3:F9:8C:B2:7C:7B:5F:71:BB:DF:C7:FA:AB:66:8C:5C:8B:0B:6E:C7
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 01968A0093896EBE2D2862EEA2D900224C4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 08B2
Signing time: Thu 01 May 2025 04:00:15 +0000
Manifest this update: Thu 01 May 2025 04:00:15 +0000
Manifest next update: Fri 02 May 2025 04:00:15 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: 62qIFuXnVG1Mxuzj9FxQ9Q02ewzLptrG82ZZpBYMRpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:00:93:89:6e:be:2d:28:62:ee:a2:d9:00:22:4c:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: May 1 04:00:15 2025 GMT
Not After : May 2 04:00:15 2025 GMT
Subject: CN=e3f98cb27c7b5f71bbdfc7faab668c5c8b0b6ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8e:52:38:b0:81:c9:9b:d5:9a:91:d4:bc:80:
f9:00:c8:a6:d4:6a:9f:71:60:17:08:8f:85:c7:dc:
cd:01:e7:6e:62:d2:97:6f:4f:57:fe:1d:75:2e:e7:
99:72:ce:5b:78:58:c2:96:20:d7:44:85:fc:45:59:
34:97:b8:78:09:fc:56:0c:63:0b:2b:31:59:22:af:
5c:a8:0e:bb:91:22:55:24:96:e1:33:00:ff:a7:81:
34:4a:19:88:ad:e3:da:e6:5e:61:4b:22:3e:54:9c:
16:f4:87:60:23:c9:24:30:da:9d:6d:3b:7a:a6:3f:
2a:8a:29:89:ad:b9:e3:d1:70:72:3d:51:86:00:92:
91:00:ae:27:3c:19:32:51:af:28:9f:cb:18:13:74:
74:32:fc:7c:10:d2:a1:93:02:5e:d2:ca:fc:4c:d9:
12:fa:15:81:45:51:2f:f6:9b:fe:ab:61:2f:5d:08:
7b:d4:7c:76:0a:02:d0:64:da:16:bd:51:01:d3:31:
58:02:92:fe:5a:28:a5:d5:e7:18:e0:e4:d4:52:ca:
27:90:a0:9d:a2:a1:31:95:eb:27:5f:66:ce:57:c3:
b0:6d:f6:f5:f9:39:12:42:3f:91:3c:76:83:40:6a:
c2:00:c1:ca:84:99:a6:ee:1f:85:69:85:d4:1d:4b:
cd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F9:8C:B2:7C:7B:5F:71:BB:DF:C7:FA:AB:66:8C:5C:8B:0B:6E:C7
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:1f:07:c6:8d:38:2a:91:12:fd:f6:75:c1:0a:2c:95:b1:82:
b5:27:41:73:db:1f:83:30:c2:0d:35:c7:da:ad:3f:c2:d8:55:
43:ec:d9:10:0f:16:f3:ab:d2:6c:93:6c:9d:e1:97:99:98:23:
10:c1:08:96:fe:b4:05:25:15:cc:0d:26:1e:35:98:d4:c8:a1:
66:44:89:44:8c:4a:25:a3:fb:ce:ee:5b:9d:3a:fc:51:99:74:
a7:85:30:c6:cb:6f:7e:d5:d5:b6:34:17:58:41:b6:c8:cd:35:
82:fa:3c:a1:cc:e9:2f:f1:c2:1e:3c:59:61:ce:0b:87:8c:2b:
fc:f6:55:53:95:62:7b:14:d6:3d:e7:99:ac:2a:a1:cd:b3:e5:
6b:43:bb:9e:fe:15:bd:4f:e7:e0:3c:b9:24:66:a3:92:89:72:
a8:7d:fb:0a:2f:70:e3:62:f5:38:1f:4d:cb:5b:d6:de:77:a8:
ca:c5:a4:3a:29:2f:1f:32:5e:58:28:ff:21:ad:8b:93:65:d4:
66:df:1b:2c:73:4a:e7:9a:3e:d6:9c:59:ee:a0:a7:24:6b:a7:
52:e3:89:e8:20:92:ae:7c:ad:d9:58:72:ca:2a:b0:aa:1a:0a:
d1:e8:00:e3:7f:90:db:d7:dc:b0:89:23:06:83:a3:4a:e5:cb:
71:bf:28:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 08:20:29 2025 by rpki-client