Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: U7P/iE5JP6Wz+6ka9XDRDysPyG4mVNmg+U76luYt8+E=
Subject key identifier: 99:C3:B8:EC:6C:04:00:74:99:DC:2B:54:03:29:7A:B2:55:7E:D5:45
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 01965493221D7A5FD93664EFC27CA4C8C984
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 0358
Signing time: Sun 20 Apr 2025 19:00:50 +0000
Manifest this update: Sun 20 Apr 2025 19:00:50 +0000
Manifest next update: Mon 21 Apr 2025 19:00:50 +0000
Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: sVkR3d9yD3qr2j6MeUYXIYGspWQOkXhVM2zFzEtxwG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:22:1d:7a:5f:d9:36:64:ef:c2:7c:a4:c8:c9:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Apr 20 19:00:50 2025 GMT
Not After : Apr 21 19:00:50 2025 GMT
Subject: CN=99c3b8ec6c04007499dc2b5403297ab2557ed545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:53:d1:98:78:75:81:97:1b:97:fa:57:2b:26:
c6:f7:3c:3f:34:52:de:1b:36:08:38:d4:a7:38:0b:
c7:b4:83:73:01:fc:c6:9b:b9:55:9c:e3:f8:d6:b6:
95:19:89:21:15:9f:ca:a1:c9:83:ba:be:4f:3d:8b:
d9:28:5f:3e:fd:f7:71:1c:16:05:4a:84:72:fe:62:
fb:4b:65:8f:49:29:64:93:b1:35:5e:0a:f9:ab:d3:
98:b7:47:2f:b1:0f:89:32:02:f2:40:d9:46:cf:62:
1f:e9:04:1b:ba:f1:98:c2:6f:c4:49:2a:64:60:1e:
59:00:18:97:b1:7e:5b:a2:7e:14:56:91:88:3d:6c:
4b:02:86:eb:7c:2a:52:fd:d5:e4:da:d7:ed:f7:f2:
e5:79:02:f8:bf:5a:5f:9a:b0:ce:f6:dd:33:84:94:
2f:21:b0:cb:4f:cc:66:c1:43:af:06:52:f7:ed:bf:
b3:c9:b0:bd:05:33:f9:99:09:d2:6e:dc:52:f3:bd:
60:ff:e8:fe:7e:58:0d:ad:15:66:1f:aa:30:f4:10:
2d:b1:46:c2:da:c9:19:40:8b:40:ac:19:22:c8:d0:
cc:43:6d:b0:21:a2:ce:29:3a:e3:d1:a2:f1:0a:ee:
6e:32:70:e7:a1:1d:89:5e:cb:09:59:fa:fd:5a:17:
da:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C3:B8:EC:6C:04:00:74:99:DC:2B:54:03:29:7A:B2:55:7E:D5:45
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:07:55:61:5f:c4:1d:ff:ee:30:3f:5b:bc:bf:54:6b:84:44:
9d:07:0c:8a:a3:f5:f1:19:b4:92:75:e1:f2:b2:d0:b2:92:c2:
d0:f8:77:ed:3b:98:0b:8e:50:2a:67:0c:43:99:f4:92:7f:8f:
92:e0:5d:ab:38:95:28:fd:01:ea:f8:0c:f1:8f:5a:a2:d6:03:
96:01:13:08:03:32:2d:9b:98:b2:26:3e:45:db:85:e7:c2:b6:
dc:11:82:ef:23:0d:0b:2b:1a:dc:b7:88:ec:1a:ea:95:0a:2f:
8c:f5:4b:82:dd:a3:6d:ba:f4:06:d5:15:5c:cf:73:71:81:7e:
3b:f0:df:6c:06:29:ee:90:d3:53:34:a2:0d:fa:de:43:d6:ce:
6f:96:41:d4:77:94:3e:0f:22:e1:be:9d:48:a3:4a:bb:21:97:
d0:7f:2e:00:c1:39:61:20:0c:91:8b:fa:55:56:de:8a:55:f4:
7f:38:f1:d2:5a:7a:a2:89:44:b2:e6:96:72:e5:be:74:f2:81:
9b:fb:12:3e:cf:51:d3:f1:b9:82:e7:24:b3:22:44:ad:42:4f:
d3:0f:a7:5e:3b:b4:44:a8:a5:e3:91:25:5e:ff:0e:7a:25:01:
32:db:e9:a2:27:d4:21:33:87:dc:2a:5f:0e:6c:26:a4:9e:3a:
fe:51:7c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:33:24 2025 by rpki-client