Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: zQb4J2neBNZxxRGnMMYJp9GWRLyAIhGLguNdAe0y0Yg=
Subject key identifier: 7B:BB:BB:F0:0B:78:07:7D:C2:CD:D0:47:32:CC:3E:CA:EF:18:8F:EE
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 01968022712A08E797E42DC9966954B1B889
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 0CC8
Signing time: Tue 29 Apr 2025 06:01:02 +0000
Manifest this update: Tue 29 Apr 2025 06:01:02 +0000
Manifest next update: Wed 30 Apr 2025 06:01:02 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: rJe80S0nIkcVgCcQxQntV6OrkOhVE+RpRulZSODLx0I=)
2: anoG2QxpBajiR81r5Nnqj0baENo.roa (hash: KO9yPbtejqfpWJpsarLnmq3okmJ48dSkW7G2+vLUOFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:22:71:2a:08:e7:97:e4:2d:c9:96:69:54:b1:b8:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Apr 29 06:01:02 2025 GMT
Not After : Apr 30 06:01:02 2025 GMT
Subject: CN=7bbbbbf00b78077dc2cdd04732cc3ecaef188fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c9:0c:90:b9:f7:fa:f7:d2:f4:d7:81:1e:18:
2e:0e:b7:b2:e5:9f:b4:31:1c:09:a4:fc:3a:2d:56:
64:b0:5e:4a:7d:71:e9:88:f7:f6:f9:5e:de:b6:3b:
23:ee:b8:97:df:a0:18:2a:f0:37:dc:73:92:76:1a:
e5:f4:b4:91:db:3f:44:af:11:0a:c7:74:5f:47:c0:
8a:59:1e:2d:46:bd:f8:d5:85:0b:f5:d1:77:b5:16:
f9:d1:98:80:39:2d:e2:e4:45:14:93:1e:3c:98:f0:
24:61:99:f9:7c:ef:4b:88:37:0f:a8:5f:cc:e0:7a:
1b:41:32:80:9e:5f:80:ed:36:a0:25:17:65:90:55:
a1:e7:f4:b4:b2:72:eb:e7:48:d6:a7:29:22:c3:2b:
18:7e:d7:20:46:92:02:e3:4d:b3:60:6f:09:e7:5f:
9a:78:78:cc:14:a8:55:b4:37:28:a4:55:95:e5:63:
b1:7f:70:71:25:b7:4c:20:d1:fa:22:a5:6b:9c:13:
2d:b4:8c:96:26:fa:0b:bc:bd:5c:1f:28:60:12:bf:
3c:e9:f4:04:cb:7e:96:98:70:d8:c9:b1:bd:98:54:
66:44:0d:21:3b:fa:fd:9c:91:11:e5:0f:17:81:76:
3f:cd:ea:c4:db:74:ee:2a:67:94:52:4f:6e:9e:4d:
01:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BB:BB:F0:0B:78:07:7D:C2:CD:D0:47:32:CC:3E:CA:EF:18:8F:EE
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:30:38:3b:8e:c0:30:31:be:65:ce:e6:55:9f:61:04:59:3d:
fc:c3:b8:a0:3b:d4:3f:79:e2:d0:5b:58:3e:c8:5e:ae:ec:3c:
bc:3d:fd:b5:6c:e2:98:a4:7d:f0:e2:94:26:19:a9:d8:17:52:
95:9e:6b:17:6b:b6:5c:f3:d6:27:39:0d:f4:d6:62:c4:7f:e2:
ac:02:a6:78:04:02:35:0c:7d:ba:71:05:9a:d5:c5:ba:26:39:
df:6f:6d:27:d8:b0:11:93:d5:38:7f:fc:d2:da:c9:cc:08:b6:
f4:b7:17:b3:d5:bc:9a:e9:11:62:7e:ef:09:78:37:0f:61:5f:
0b:25:ab:7b:5c:45:87:d5:68:dc:b8:0b:b1:84:a8:c6:cc:94:
ab:7e:0e:23:77:53:88:fb:71:a5:82:18:08:3c:e7:d2:35:2f:
a2:62:3c:96:ac:98:b9:2d:fd:d8:65:87:ec:53:c3:4d:49:9d:
ce:be:64:f5:55:84:e3:1c:e8:8e:a2:ae:8c:1b:0e:94:46:a3:
47:ed:79:9e:1f:f6:63:b4:f0:3e:29:7e:d9:79:20:30:87:61:
dc:1e:ed:59:6a:45:2f:f2:58:1c:da:9c:6e:d1:b4:ed:31:d7:
38:24:d6:bb:8a:fa:f7:50:13:f3:23:61:65:10:48:04:3f:9b:
af:08:f0:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:23:51 2025 by rpki-client