Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
File: dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft (raw, json)
Hash identifier: 4vZXz2vtsN72sIg1fjIC/+6TXbnZdGJmxQbdxUJ0YIw=
Subject key identifier: 78:4E:09:BA:6F:77:2B:85:1B:36:A9:68:F5:D9:9F:DC:D2:A0:DA:0D
Authority key identifier: 77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
Certificate issuer: /CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Certificate serial: 01965B707A69A0887F2298106CE42492A80E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
Manifest number: 11D0
Signing time: Tue 22 Apr 2025 03:00:20 +0000
Manifest this update: Tue 22 Apr 2025 03:00:20 +0000
Manifest next update: Wed 23 Apr 2025 03:00:20 +0000
Files and hashes: 1: Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa (hash: C4rOq98XQlQBOJoaFTi64wzA4+qXQilqH0FLuH6cokY=)
2: dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl (hash: sRW6G8QNUw0HVOxD3d+oWeSVrODNUOzhxhgU6BMQSE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:70:7a:69:a0:88:7f:22:98:10:6c:e4:24:92:a8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Validity
Not Before: Apr 22 03:00:20 2025 GMT
Not After : Apr 23 03:00:20 2025 GMT
Subject: CN=784e09ba6f772b851b36a968f5d99fdcd2a0da0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:05:53:f5:23:72:1e:08:56:da:fc:1f:97:
b3:a2:b9:3e:d5:1f:44:80:70:9b:99:29:8b:57:16:
ea:48:98:85:0f:e9:7f:26:54:93:5a:32:c4:a8:ad:
58:78:46:a1:7c:65:9d:b7:35:81:71:86:80:c6:08:
ce:66:84:f6:52:a5:11:ec:8e:b9:f9:cc:f1:9f:ad:
32:a4:d0:77:fe:86:10:4f:e6:c3:93:92:68:53:c1:
d6:34:94:5d:81:25:80:74:58:43:94:5d:bc:19:b4:
1b:82:b3:87:87:fb:ad:88:51:5d:37:b6:8a:98:d7:
8b:a1:dd:8c:d6:42:a9:e5:a9:be:be:b8:95:41:f2:
1d:f5:14:9b:67:c0:84:09:72:42:ac:b1:c6:75:27:
52:07:ac:2b:f5:57:07:0d:74:93:68:b6:ca:ed:6f:
11:5e:81:08:27:6d:78:50:df:f0:cd:69:4f:f6:b1:
7e:50:ba:4b:fd:87:d2:67:e2:d9:03:d1:e4:af:3b:
fb:45:4a:19:be:e6:b2:6d:ca:91:30:e6:6f:48:c4:
ad:09:8c:e9:91:de:fd:0e:55:1f:b8:a6:79:f4:41:
55:17:8a:8d:e5:33:97:17:50:fa:f6:4a:57:49:3b:
cf:6e:ba:bb:89:5b:5c:fd:09:36:91:1a:fb:8a:97:
6a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4E:09:BA:6F:77:2B:85:1B:36:A9:68:F5:D9:9F:DC:D2:A0:DA:0D
X509v3 Authority Key Identifier:
keyid:77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:42:ea:10:f8:cd:9b:3d:a6:80:d5:8a:53:b1:5a:45:4b:ca:
d3:90:c2:0a:d6:cb:b2:1a:a3:ea:77:ed:5c:ff:e9:f5:a4:9b:
23:69:77:5a:f9:53:41:60:9b:f3:f2:48:08:60:d8:7c:3e:39:
c5:90:af:df:d9:1d:07:03:c5:9b:d7:ba:3d:1e:15:fc:bd:b6:
ff:78:08:52:06:43:b1:a3:a2:23:21:b9:74:56:ed:a5:18:e2:
dd:77:1a:dd:0d:ee:b5:65:41:33:1d:cc:40:0c:08:04:a0:1d:
19:c7:a1:b7:4b:65:79:df:b6:13:38:e2:6e:a0:49:91:64:52:
19:56:7d:a9:87:4c:7d:47:d7:8c:59:b3:a8:1b:8c:59:0b:c7:
9f:21:5f:a1:09:9d:bd:f3:71:ba:aa:56:33:f4:79:62:fa:15:
76:55:8d:02:e2:c3:59:f2:63:99:d4:4a:47:46:08:82:53:51:
ca:1b:32:22:9b:15:f5:2b:f4:8f:44:c4:5c:9e:50:c1:ac:e5:
af:6f:3c:c8:f8:ce:0a:b1:08:e6:69:04:8a:cd:3f:03:5a:bc:
05:87:22:3b:07:b0:5b:95:bb:ec:86:95:9e:9a:86:03:d2:0f:
e7:a2:48:51:d1:ee:b9:8e:af:fb:cd:ec:6e:70:8e:fc:7a:27:
59:4f:62:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:48:05 2025 by rpki-client