Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
File: zy7ueKAITYMd4aJQAYPhZIlRbM8.mft (raw, json)
Hash identifier: 5WQMzTpYDT9DszdrUGUd4WDGw2uEtXCHUv/QRb+z8HY=
Subject key identifier: 7A:25:6A:9E:38:A3:6E:01:BD:E9:92:E5:25:7F:15:2E:32:1E:42:C3
Authority key identifier: CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
Certificate issuer: /CN=cf2eee78a0084d831de1a2500183e16489516ccf
Certificate serial: 01958C6120F78F419371AE10B20914354522
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
Manifest number: 0D9A
Signing time: Wed 12 Mar 2025 22:02:10 +0000
Manifest this update: Wed 12 Mar 2025 22:02:10 +0000
Manifest next update: Thu 13 Mar 2025 22:02:10 +0000
Files and hashes: 1: DoG2UFHCOj7zOTIUPjjt5XZyaMI.roa (hash: o5jRgA59QPQWDTQLvIg+41ICmEKRDLb8Qb3vB5Fkcs4=)
2: zy7ueKAITYMd4aJQAYPhZIlRbM8.crl (hash: 0/agoSRV/7ip+SjElWvQ72gCSKphAa0/F3QkBl1CSaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:61:20:f7:8f:41:93:71:ae:10:b2:09:14:35:45:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2eee78a0084d831de1a2500183e16489516ccf
Validity
Not Before: Mar 12 22:02:10 2025 GMT
Not After : Mar 13 22:02:10 2025 GMT
Subject: CN=7a256a9e38a36e01bde992e5257f152e321e42c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:43:75:3b:bd:3d:f4:36:be:27:ae:06:a5:
35:c2:0e:0d:eb:56:ba:99:a1:ae:a6:2c:aa:a6:6f:
64:2b:d5:b2:c1:65:45:2e:91:c0:af:50:f8:3a:1e:
29:99:06:db:3c:a6:bd:25:9e:17:17:cd:11:9c:8c:
07:97:b8:11:84:e3:b2:78:25:93:ca:81:f6:f5:33:
a5:40:04:a9:c6:3b:06:2b:a0:6f:2e:c9:9c:0b:cd:
36:9d:17:ec:06:90:01:1a:db:50:85:2c:47:e7:3b:
64:59:7f:c5:59:43:17:56:de:5e:3a:ac:63:b6:69:
78:4d:27:6e:e9:7f:c3:e1:fb:3b:49:70:83:23:33:
a4:d6:72:13:7e:43:6e:99:f8:8e:27:30:be:11:9e:
94:86:43:3f:ba:fc:ac:aa:57:0c:eb:bc:f4:fa:e1:
9e:f6:a6:c6:5f:e8:eb:ba:8d:d9:9f:8f:3b:84:28:
35:56:ce:1c:47:a4:db:1e:75:3e:d7:31:50:4e:11:
7b:2f:b6:d4:f0:1b:62:bd:63:ad:8f:60:4b:25:81:
ea:6a:a9:18:d6:a6:90:1d:a3:ce:ba:65:09:73:cc:
4a:68:bd:8b:42:44:b2:a2:64:fe:77:21:4f:f8:52:
84:5a:af:8d:99:36:21:f2:17:4f:3c:ee:7d:78:56:
a0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:25:6A:9E:38:A3:6E:01:BD:E9:92:E5:25:7F:15:2E:32:1E:42:C3
X509v3 Authority Key Identifier:
keyid:CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:e2:33:48:76:2f:e5:0d:6b:9f:54:a6:80:3f:4b:43:c2:c1:
f0:87:4d:93:3a:d5:b6:ae:d4:4a:fc:9f:b9:1d:a8:c4:c9:3d:
8b:2b:15:f4:ab:cc:aa:6b:7e:4f:21:ff:6e:9d:c2:84:95:d0:
6f:86:13:4f:08:f1:a0:66:07:87:c1:08:95:3d:8a:a3:37:1c:
b0:6b:f1:d6:6c:6d:db:ff:81:f0:9b:af:c8:13:67:44:d8:b5:
1a:9c:9a:6f:80:52:b2:70:cc:d4:4f:fc:e5:92:f6:08:79:9e:
82:5f:e4:a0:67:25:e7:8f:0a:9a:2e:0c:dd:e9:c9:f9:bc:c3:
62:38:fc:24:3a:b6:3e:f9:d6:51:9f:ca:50:f2:e7:72:cf:41:
24:cc:61:70:f9:31:9e:b5:e3:de:25:0c:6b:8a:41:37:ff:f9:
5c:b4:24:bd:e7:aa:b6:b8:b5:b5:3d:6a:dc:30:8a:57:29:89:
5c:47:c6:8d:e8:77:a6:98:1e:fa:f6:f1:c8:57:84:27:89:26:
70:20:7f:be:e2:54:97:de:ee:de:c3:bc:b7:7c:5d:76:6c:0d:
d2:f1:8d:1b:b9:f9:39:d7:94:8b:5d:01:87:4c:06:86:e4:93:
e5:e7:8a:cc:2d:8e:6b:30:61:b7:e5:70:80:5d:24:08:7f:a2:
0e:0c:ca:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:36:19 2025 by rpki-client