Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json)
Hash identifier: Paqw8Iq9xVtAt/mZaVA0kBTOa6YbLNp55IUxXTlyF3c=
Subject key identifier: 3B:48:F1:30:F3:51:92:9E:99:5E:E9:AD:F2:01:22:14:0F:A1:82:F4
Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84
Certificate serial: 019654C9C6A2A8878C5C6002584D98F28010
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
Manifest number: 1497
Signing time: Sun 20 Apr 2025 20:00:31 +0000
Manifest this update: Sun 20 Apr 2025 20:00:31 +0000
Manifest next update: Mon 21 Apr 2025 20:00:31 +0000
Files and hashes: 1: Kyq8dvDQCWTM4SDI01T-WEma_xs.roa (hash: csmuD1qBTRKUBvLNGvxDwNNOARNFB8rqYka6vl5ZQvQ=)
2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: Ntacrh+npuAQcwE7kAD1PkNPg2dAqm5krJ30MR4p5Ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:c6:a2:a8:87:8c:5c:60:02:58:4d:98:f2:80:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc8df88054060df685bba9739123e8342d479e84
Validity
Not Before: Apr 20 20:00:31 2025 GMT
Not After : Apr 21 20:00:31 2025 GMT
Subject: CN=3b48f130f351929e995ee9adf20122140fa182f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:81:6c:15:a3:35:c3:d7:38:bc:e5:b0:60:60:
a3:cc:1a:bd:f2:4f:f1:f9:10:c9:50:6a:85:bb:54:
7e:81:bb:29:f3:b7:82:3e:d8:21:51:89:89:ca:29:
e6:cd:57:b8:5a:75:4b:e5:c9:56:bf:ec:ef:95:78:
d5:b0:04:f4:eb:5f:0a:e8:31:e2:bc:21:ca:bf:83:
43:56:14:35:48:8b:98:9f:76:a1:40:49:da:7a:1b:
56:0d:51:ac:94:96:cd:2b:5b:51:4e:95:fb:f9:49:
e8:9d:d8:d9:7b:85:fb:d5:27:a2:39:b6:7a:03:0b:
bd:a0:14:b0:16:21:0e:28:9f:ff:f5:53:45:8f:b4:
1d:f0:a4:2a:7c:85:b9:17:98:96:c5:b2:60:b9:24:
5e:4a:7c:6a:15:8d:ae:bf:4d:b6:1d:36:ff:e3:fc:
79:99:d8:47:99:60:53:39:19:59:2b:af:cf:53:4b:
68:0e:d2:64:48:97:07:0a:c2:12:2d:ad:6c:67:e2:
6b:45:16:0e:fd:57:5f:6e:f0:7c:5b:c0:7a:ff:73:
fe:b4:76:61:6b:fd:ac:1d:70:43:49:cf:4e:da:55:
c6:41:5c:74:44:1a:e9:5f:b8:9e:24:9a:6e:6e:21:
a2:20:3a:52:1b:49:b5:a5:9e:ab:b8:13:79:15:6a:
25:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:48:F1:30:F3:51:92:9E:99:5E:E9:AD:F2:01:22:14:0F:A1:82:F4
X509v3 Authority Key Identifier:
keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:6d:83:a3:5d:43:0c:07:70:ce:6b:ab:d5:8c:f3:d8:93:64:
23:f5:26:62:04:fe:c0:8b:83:d6:f1:41:f9:71:3a:75:b3:7f:
07:e0:0c:19:1b:d3:f1:bb:fd:50:fe:a4:a9:c0:84:e0:6d:7b:
7d:16:a8:4d:a7:a2:f6:05:67:3e:e8:85:68:4e:6a:9f:c4:dc:
2c:66:2c:21:7b:b5:52:a6:73:4d:d7:5c:9e:36:40:a2:52:a3:
bc:59:c4:b0:b0:b7:c1:68:d8:a4:ee:4d:47:b5:ef:53:36:66:
f6:09:56:0a:66:a8:b0:27:68:1c:83:4a:57:93:74:4c:0f:fe:
54:58:15:fb:fe:2c:42:28:59:22:98:c4:0b:1f:a7:a2:ca:84:
74:69:64:e6:30:18:ee:62:85:a6:a2:14:34:bf:65:5f:4b:bf:
1f:ef:62:f3:d3:d0:84:0c:38:d6:aa:92:46:d8:13:5d:70:5a:
17:61:1b:78:19:9e:73:15:79:9d:62:5b:66:ce:d5:89:e5:0d:
9e:06:b2:f9:c3:f9:b3:da:c5:6f:47:10:9f:bd:89:58:bf:91:
ff:ef:e6:0e:d3:02:08:f8:75:6d:eb:1b:36:c0:2e:20:5e:13:
37:05:f2:04:fc:e5:c5:8e:d4:e2:bd:98:97:04:7b:09:45:3e:
23:33:72:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:27:53 2025 by rpki-client