Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
File: zy7ueKAITYMd4aJQAYPhZIlRbM8.mft (raw, json)
Hash identifier: 8W21zFa9sUW75DxZbSAW1J2esQKVINdHoDBAwduglu4=
Subject key identifier: BE:C3:5A:BC:D4:AF:38:7C:69:46:14:C9:6B:29:46:EA:6F:66:D2:EC
Authority key identifier: CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
Certificate issuer: /CN=cf2eee78a0084d831de1a2500183e16489516ccf
Certificate serial: 01965537964B00C7628485054672EB15B424
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
Manifest number: 0E02
Signing time: Sun 20 Apr 2025 22:00:28 +0000
Manifest this update: Sun 20 Apr 2025 22:00:28 +0000
Manifest next update: Mon 21 Apr 2025 22:00:28 +0000
Files and hashes: 1: DoG2UFHCOj7zOTIUPjjt5XZyaMI.roa (hash: o5jRgA59QPQWDTQLvIg+41ICmEKRDLb8Qb3vB5Fkcs4=)
2: zy7ueKAITYMd4aJQAYPhZIlRbM8.crl (hash: lqjvFJIE5xrIN4T9od1u17Rd3dLzKBSwnUgknmUQop8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:96:4b:00:c7:62:84:85:05:46:72:eb:15:b4:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2eee78a0084d831de1a2500183e16489516ccf
Validity
Not Before: Apr 20 22:00:28 2025 GMT
Not After : Apr 21 22:00:28 2025 GMT
Subject: CN=bec35abcd4af387c694614c96b2946ea6f66d2ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fb:ee:6b:1c:ee:c8:ef:39:d5:d8:cf:c8:ae:
9e:52:1f:06:4c:bd:44:89:f7:e3:c4:88:b8:61:ed:
b4:a9:fd:61:cd:7e:69:bd:c2:d0:c6:30:a3:62:3d:
d1:9d:30:ca:7a:11:8a:63:2a:57:77:6d:1f:4f:f4:
82:b3:21:4e:fd:40:a5:2b:42:35:ac:d8:24:61:eb:
85:ef:4d:18:be:92:1f:d1:99:45:33:ca:4a:82:23:
32:4a:c7:1d:03:6c:ba:d5:05:24:17:c9:c1:d8:78:
15:fd:bd:e4:1f:97:a5:4b:5e:39:4b:30:2e:d0:46:
62:b3:20:f3:3f:36:ae:cd:ce:4c:6a:4a:7a:00:e7:
90:eb:4d:b9:5d:1c:9a:37:f5:25:d5:45:40:98:ed:
ec:b5:dc:80:f7:54:86:34:0b:23:79:55:5b:a6:66:
72:c7:0d:cd:dd:16:22:1e:d1:81:20:e5:7b:d4:13:
11:b4:a2:b3:25:2d:39:5e:92:c9:c3:3e:e2:ac:58:
20:5b:1e:f4:c7:90:a7:0a:68:11:d0:ea:6e:16:3d:
e8:e0:5a:74:8f:69:21:b4:f3:00:c0:5b:3b:2e:11:
a4:9a:2e:f4:88:07:6c:95:cb:17:71:ab:76:93:68:
fb:ae:e1:0d:4a:23:70:14:be:0d:fa:7b:45:c7:bc:
4a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C3:5A:BC:D4:AF:38:7C:69:46:14:C9:6B:29:46:EA:6F:66:D2:EC
X509v3 Authority Key Identifier:
keyid:CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:b2:af:87:03:4f:04:65:0b:e4:c5:6f:35:fd:a1:01:5e:c0:
80:78:87:32:d6:ea:58:bc:cd:70:c9:6d:de:0b:cf:84:4b:03:
63:48:56:cb:26:bc:7f:36:1b:f0:b9:3c:a1:71:db:05:d6:49:
f9:30:11:bf:ff:ae:7f:f2:bc:57:30:13:51:39:08:a2:60:e0:
1e:70:c7:57:8b:13:39:da:56:3d:2f:1b:bf:ba:7c:6c:16:73:
47:19:9c:e8:f4:a3:c1:93:89:70:49:93:e3:f4:3a:c8:56:a0:
95:ac:eb:07:5a:d4:bd:19:cd:6e:dd:5e:aa:40:a5:54:c9:2e:
d5:c4:71:82:a4:f1:6a:ec:82:3a:31:9d:1d:43:2f:dc:68:54:
3d:97:a8:7f:af:cf:30:91:07:dd:2f:c3:a8:1d:9b:8c:32:86:
ae:6e:de:5d:4f:72:03:4c:64:62:dd:34:71:72:19:5d:0e:2b:
71:6c:63:fc:17:14:e8:3c:e3:0b:37:13:c7:c3:17:fe:5f:f7:
bb:66:1c:2a:54:c4:2f:92:0d:34:58:54:d1:e8:91:fd:60:6a:
e2:44:c1:12:c3:46:29:8a:f3:1e:4b:14:00:95:63:ef:7d:bf:
f4:3e:88:45:c0:01:86:e1:a2:15:a5:c8:b2:cb:34:81:b2:2d:
1c:2c:fc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:14:48 2025 by rpki-client