Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
File: mZK1NCb7YU2aWm2D9ABWamYMndI.mft (raw, json)
Hash identifier: QQDNWZYg4t2rDtrHUpnqVeqBSxPiHfk1DzFeNdwO8bo=
Subject key identifier: 15:E8:10:3B:42:33:17:6F:1D:E0:4E:D0:64:A1:D5:B1:07:30:58:83
Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Certificate serial: 0196564A647C256B44375C02334B3303F650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
Manifest number: 10D2
Signing time: Mon 21 Apr 2025 03:00:37 +0000
Manifest this update: Mon 21 Apr 2025 03:00:37 +0000
Manifest next update: Tue 22 Apr 2025 03:00:37 +0000
Files and hashes: 1: iG2Qj8n6fZw-GirtzGhiiR4VwRI.roa (hash: C/swOHl78EzDeIac5yTERHHT18YviZO0RyNpfkEvBQE=)
2: mZK1NCb7YU2aWm2D9ABWamYMndI.crl (hash: suYeLMHl1WO2SQ25MKPujc2RsyDUJy7Fv+vfRLIYdQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:64:7c:25:6b:44:37:5c:02:33:4b:33:03:f6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Validity
Not Before: Apr 21 03:00:37 2025 GMT
Not After : Apr 22 03:00:37 2025 GMT
Subject: CN=15e8103b4233176f1de04ed064a1d5b107305883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:23:4b:12:61:58:56:30:94:35:f5:da:8b:
1e:54:77:0c:fe:04:d8:69:91:04:8e:a5:3a:fb:e5:
9d:ed:46:c6:28:62:4c:33:5d:af:1b:71:7a:b1:3e:
85:0a:c4:47:38:de:e3:8d:33:94:d8:54:75:a9:ad:
d4:fc:aa:c0:a5:60:42:d4:af:3a:15:22:88:7a:16:
6b:04:0a:8a:4a:12:13:b0:3b:97:ac:7b:90:84:6a:
93:68:3e:34:ad:2b:f6:58:60:d4:db:0e:dd:f5:ec:
89:00:40:f4:1a:a9:0b:10:f3:15:d3:ff:9e:f9:ae:
b0:57:ad:c0:d4:0c:ca:96:ab:f0:e5:9a:d3:14:fb:
93:af:7c:96:cc:9e:b6:61:9b:83:c5:d2:92:e9:11:
47:ea:7b:20:b1:b7:84:64:7e:8c:2e:5b:63:04:4d:
8d:2f:48:e6:48:a3:08:93:f0:54:4f:35:67:8a:21:
8e:aa:0b:4f:d6:1a:81:85:9a:8d:d7:13:0b:f8:a9:
d0:c7:35:23:29:2f:54:64:4f:6c:10:f6:b1:d0:bf:
03:68:91:01:95:e7:f0:ed:32:d2:70:0d:74:4a:30:
d8:7b:56:58:81:e6:c9:75:39:c2:25:dd:65:30:41:
9a:46:8d:8e:9d:c7:be:f6:8e:77:04:f1:3a:0f:be:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E8:10:3B:42:33:17:6F:1D:E0:4E:D0:64:A1:D5:B1:07:30:58:83
X509v3 Authority Key Identifier:
keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:4a:a0:7e:e5:13:e2:71:d1:dc:f3:8a:3d:e8:36:47:5c:27:
d6:bc:da:4b:9c:d7:53:df:49:fc:17:28:f9:dc:76:43:35:bc:
77:1e:da:fd:c3:ca:cc:e3:e6:b3:8f:3a:5f:43:61:2c:7d:7e:
01:1b:3e:96:23:a9:e5:79:71:f2:f2:78:cb:df:94:c4:ce:48:
5b:0a:69:04:e4:73:b9:fa:96:99:23:ef:c8:6b:a3:7c:3d:ea:
8a:6c:38:b6:c7:0d:f8:d3:34:9d:c2:1a:e2:58:96:00:3a:69:
03:c2:1f:28:1b:87:21:46:0a:bc:e4:5f:3f:43:ab:7e:77:4a:
26:8c:68:c3:28:72:65:7d:52:b8:c7:63:7e:fe:b7:48:38:fc:
fb:f4:c9:49:b5:71:05:8c:92:f2:60:6c:f3:01:b9:45:c7:60:
68:4d:0d:b4:ac:c7:11:56:a7:37:1d:b6:e0:73:3c:fc:a6:38:
42:50:f1:8e:5f:31:3f:a4:72:47:b7:8e:30:a1:d2:41:56:18:
e0:2e:2f:57:30:31:76:52:f0:ae:ef:1e:e4:b6:2b:6f:cd:f7:
03:c4:07:83:f6:8b:61:cf:90:e9:a4:98:da:ef:35:43:d1:b8:
28:da:13:1a:a1:1c:94:17:ec:bd:3a:4b:95:02:b1:a4:c1:52:
24:6d:30:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:33:38 2025 by rpki-client