Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
File: zSC8r3ISPi2fXieIazg5t0JEELc.mft (raw, json)
Hash identifier: HmwI93XlgIcFNaS/9+N4HWCGE8XHLI9X5b80TQ1C97Y=
Subject key identifier: F2:C4:53:BF:16:10:1C:52:AB:E0:55:84:E3:F9:C9:2B:15:A5:79:63
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 019676B0DEE5D07846CFB956F6C5D28C444E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
Manifest number: 0AFD
Signing time: Sun 27 Apr 2025 10:00:24 +0000
Manifest this update: Sun 27 Apr 2025 10:00:24 +0000
Manifest next update: Mon 28 Apr 2025 10:00:24 +0000
Files and hashes: 1: YvvxlYUE1Sa5OVkc6cN_zQjcrsc.roa (hash: 755pvpPS6YdCIfa/QNyMrmXmYNI2VVu3cPA+IlhoyYY=)
2: zSC8r3ISPi2fXieIazg5t0JEELc.crl (hash: kQ4uNpalrh3Jb/5oJWdZrLNLmfP6ieJf3qqHwS7CqM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:de:e5:d0:78:46:cf:b9:56:f6:c5:d2:8c:44:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Apr 27 10:00:24 2025 GMT
Not After : Apr 28 10:00:24 2025 GMT
Subject: CN=f2c453bf16101c52abe05584e3f9c92b15a57963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ac:b6:a0:9b:33:47:28:9f:6a:fd:58:43:aa:
59:3c:b2:c8:6e:dc:8e:a1:7a:4f:36:f1:ca:69:ef:
b5:5f:63:9c:36:c1:fb:e7:6c:2b:38:e5:2e:ae:ba:
13:ea:8c:44:c6:0e:d6:11:a4:1e:3d:98:bf:2c:39:
a7:dd:b4:88:8c:4b:c6:b2:ec:9a:72:14:93:d8:bc:
d8:a3:13:53:f8:ef:c2:21:ca:45:d9:33:02:5a:fe:
71:41:44:0c:76:17:c9:af:87:56:b5:4d:5b:b9:9e:
e1:55:60:75:bf:e7:03:d9:8e:fc:30:7c:7f:f8:77:
79:ea:79:69:11:b1:17:d5:22:81:d3:a7:fb:7c:0c:
a8:31:a0:24:20:d2:0f:ca:9c:14:bb:d0:f7:24:98:
d2:6e:82:aa:79:c1:fb:dd:f3:53:80:e3:38:bb:33:
4c:62:a2:5e:05:4c:9b:11:92:8d:fa:40:c6:3c:cf:
87:58:27:ad:8f:8e:d4:cd:2d:ae:27:7a:29:9d:9a:
67:ad:96:cd:38:ca:bc:28:97:3d:24:bb:f2:18:da:
bf:94:24:80:04:91:01:6e:90:e1:40:ca:ff:ea:e2:
81:2d:d7:4a:0b:f8:88:29:f3:79:d4:d9:12:24:3e:
7c:ab:e3:bb:76:f0:4f:87:2d:f6:1c:fd:93:0e:29:
a4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C4:53:BF:16:10:1C:52:AB:E0:55:84:E3:F9:C9:2B:15:A5:79:63
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:78:7a:7b:f7:67:5a:77:ea:1e:af:cc:bc:bb:f8:39:63:c8:
cf:75:be:59:8c:2f:bf:01:b9:2e:38:7c:a8:6f:7d:ff:3c:c6:
f5:a6:38:33:35:01:81:7e:b4:bf:bb:48:72:dd:77:08:91:b1:
04:30:bc:e7:22:bd:cd:19:b8:cb:de:82:3b:df:91:5f:23:37:
d6:00:d2:4a:44:e5:a5:99:bd:12:e0:62:36:7a:28:74:9d:d8:
03:df:3d:ff:fc:a6:b8:56:2b:b8:55:5c:71:ed:39:f6:48:8b:
e5:d3:3b:d1:26:e9:1e:f9:de:ae:62:78:3f:40:fe:f0:e4:aa:
ff:b2:e1:91:0e:f9:c4:af:17:d4:83:dc:ad:ef:53:5a:d6:d3:
62:81:eb:b2:6e:c3:5b:03:a6:74:a7:4f:ba:f8:58:b7:03:19:
0d:d0:1d:f7:4f:2c:e9:ce:eb:2a:3a:50:f3:a7:46:56:53:86:
8f:bb:a6:7e:12:bf:36:8d:7d:9f:f6:4c:a5:11:5c:e3:66:2a:
f1:a1:7e:c4:63:c9:e3:4f:2b:73:ef:91:06:6a:78:83:24:06:
a8:f1:67:29:7a:74:64:70:a8:7a:5e:3a:e2:d7:85:7d:9c:a8:
50:f2:82:1a:f5:2c:a6:f8:aa:a9:b0:30:a8:61:30:ab:30:e0:
e4:84:0d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:18:22 2025 by rpki-client