Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json)
Hash identifier: VsM4GOCm6+KAZ0JnRXrAXjzTSMgtgpDlquhEopQXxjM=
Subject key identifier: C1:58:CA:03:16:4A:B9:DD:42:CB:32:4E:8B:6D:F0:CC:24:53:09:C6
Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Certificate serial: 019644B272BB6CB4909754D1E19B43F4569D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
Manifest number: 0819
Signing time: Thu 17 Apr 2025 17:01:07 +0000
Manifest this update: Thu 17 Apr 2025 17:01:07 +0000
Manifest next update: Fri 18 Apr 2025 17:01:07 +0000
Files and hashes: 1: 3EEDSMX4c2BQtUFlexj7ViVaNFg.roa (hash: i/HEM5WN4SpMsFYFUufkSvdwrDOTS979dTw2WJmTqxo=)
2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: KJjkDT6pEE/SzoTqR4zskk2QEhprj7kfPkY5hDpqO0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:72:bb:6c:b4:90:97:54:d1:e1:9b:43:f4:56:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Validity
Not Before: Apr 17 17:01:07 2025 GMT
Not After : Apr 18 17:01:07 2025 GMT
Subject: CN=c158ca03164ab9dd42cb324e8b6df0cc245309c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:68:13:2d:4e:67:48:d9:89:df:a9:27:40:3f:
8a:e2:cc:9b:1a:34:93:af:4e:13:f3:25:2b:98:8a:
c1:d6:15:20:4c:79:bb:1a:b8:42:79:c0:25:b2:0b:
aa:de:a5:93:e2:e9:a8:b4:73:db:46:50:56:5e:ed:
53:69:45:04:42:14:2e:95:b1:16:68:e0:57:a4:b0:
ae:af:c0:fe:0a:7a:63:cd:4f:d0:9c:c3:3a:4c:05:
b4:d6:76:1c:f2:da:a1:23:d3:86:4e:5d:9d:27:3e:
a8:f4:7f:2b:8a:68:9a:48:b9:4d:6d:96:4b:3c:d2:
01:3d:f9:3c:36:91:4d:31:3c:43:80:58:cb:75:7d:
26:07:32:8a:35:7e:36:7e:44:88:01:39:fc:77:b8:
e2:3e:cd:83:86:f4:a9:c3:c3:47:17:4d:d1:99:4a:
e5:5b:89:2e:34:2f:52:89:94:be:00:2e:77:f6:8d:
f6:8b:2f:77:3a:b6:ba:f3:53:15:67:1c:8a:ac:d8:
44:82:fe:0b:22:50:0c:3c:7b:b6:5c:2b:be:e7:0c:
0c:66:ee:85:47:2c:37:e8:80:b1:d8:14:0e:ac:a3:
bb:4e:4f:a5:aa:09:bc:7f:9d:e6:57:4c:8d:4c:2b:
db:1d:61:3b:56:a3:01:27:9d:f9:38:29:71:ab:87:
07:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:58:CA:03:16:4A:B9:DD:42:CB:32:4E:8B:6D:F0:CC:24:53:09:C6
X509v3 Authority Key Identifier:
keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:9b:a9:35:f3:39:6b:08:5f:8d:cf:1d:c3:d8:a3:e4:23:62:
18:82:f8:79:b5:8f:86:16:3a:32:78:f1:a4:bc:8e:40:80:39:
05:23:b1:e1:df:44:af:af:a7:34:c5:38:c4:cc:60:24:ef:c0:
f8:63:98:16:e9:94:fa:57:54:c6:d4:ca:6f:0d:26:48:f9:85:
b9:71:03:9e:d5:00:d2:9e:c7:4c:07:e8:94:e9:1a:53:8f:0b:
88:8e:58:e6:7f:2c:51:a2:f3:72:eb:e3:ec:ed:c5:3b:b4:7c:
ba:0a:30:9c:d2:ca:f2:01:26:a7:a1:b2:78:ff:7f:fe:41:52:
99:c7:7e:fa:5d:10:a0:0e:76:f1:3c:fd:ac:41:93:bd:05:6c:
f5:25:03:bc:66:29:25:0f:66:01:86:31:25:89:e7:ac:84:f4:
5a:7c:ef:17:4b:67:c2:da:c3:b2:44:b0:db:f9:eb:96:0c:91:
57:3c:cb:3e:86:19:5e:1a:10:a3:4e:7f:9e:0f:99:f1:20:d4:
4e:ce:3f:55:40:8f:63:74:21:c0:6b:0d:4c:4c:df:c3:b0:d6:
31:92:b6:ae:52:df:10:39:ca:f1:ab:94:7c:bd:ce:02:97:40:
08:ba:d6:64:a7:68:17:52:51:f1:c2:bb:74:c2:49:9d:7d:71:
48:01:94:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:34:39 2025 by rpki-client