Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: 07Q7MC+ad+tlJgk6zi6ydGXm3dnWU1VYMDBkR4r2+Gs=
Subject key identifier: 54:44:A2:76:94:91:EC:D9:66:6F:F9:B0:99:4B:07:4A:47:DE:94:27
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 0196458D714F204CAC5819C2EFB24AD10096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0666
Signing time: Thu 17 Apr 2025 21:00:19 +0000
Manifest this update: Thu 17 Apr 2025 21:00:19 +0000
Manifest next update: Fri 18 Apr 2025 21:00:19 +0000
Files and hashes: 1: UD4cQq7SyCABLCZHHC1Ou_EeL6M.roa (hash: tfgZKXi2rZuQqy6q4ZM+ZUGFDVqdyYkcUnUVHT5tgpI=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: DyfZ0hlKGBqFdfR4+pbLREfQJcaz8OXKmbndlBLHwVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:71:4f:20:4c:ac:58:19:c2:ef:b2:4a:d1:00:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Apr 17 21:00:19 2025 GMT
Not After : Apr 18 21:00:19 2025 GMT
Subject: CN=5444a2769491ecd9666ff9b0994b074a47de9427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:97:a7:54:07:34:f3:49:e7:bf:12:ce:49:0d:
24:f0:5e:3f:95:c6:16:cd:01:6c:8b:16:cc:53:c6:
e8:96:9f:7d:14:76:aa:50:d5:df:a9:8e:91:4c:df:
8c:3c:8d:c4:12:84:32:27:03:a3:8d:fe:e4:aa:8d:
40:8b:e3:b5:f3:d7:3d:97:5b:6a:a1:c3:6d:8f:c7:
bd:5a:9a:f1:b7:4c:1d:c1:df:b5:71:79:4d:21:0c:
f5:94:c0:12:d5:82:5b:64:38:32:32:21:d4:e4:d5:
2e:61:2b:17:a5:f5:64:ec:b4:42:d4:54:90:96:3a:
4f:9f:b7:bc:07:e7:be:e1:9e:e5:45:b2:77:27:06:
2e:e9:45:39:20:dc:c0:27:79:68:f9:b9:26:76:10:
54:1f:11:15:c2:3e:b1:14:fa:d1:f5:4f:9e:c9:64:
ab:20:fc:64:cd:58:14:bb:9e:6c:52:b4:fe:25:69:
cf:8c:c8:dd:c6:07:b9:2f:3c:c9:fd:0a:a2:31:c7:
93:68:9f:07:6c:63:4f:02:da:d9:ca:c0:27:bc:39:
ae:e9:54:44:98:02:14:8c:d9:9d:83:f9:88:e6:4c:
15:57:19:4a:16:64:9d:57:7a:fb:72:cf:69:da:7a:
c5:ba:a3:fe:26:28:6b:00:bc:09:a9:ce:10:25:12:
40:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:44:A2:76:94:91:EC:D9:66:6F:F9:B0:99:4B:07:4A:47:DE:94:27
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:45:d9:2b:61:28:8f:ee:4c:42:d9:f6:42:c9:64:16:bb:0a:
c7:07:32:28:48:99:d4:a6:b8:a7:64:7b:9c:ce:7c:71:44:ed:
a5:b0:ac:96:32:c6:cc:ca:48:40:c8:51:f9:8c:71:81:45:93:
61:3f:a4:a0:47:0d:90:4a:67:96:e6:87:f0:d5:c5:3e:76:66:
7b:2f:f1:ed:e5:8c:86:ee:f4:ea:76:9a:1a:b3:63:fa:6c:fc:
4c:41:5a:54:5b:56:83:79:48:e9:fc:43:f9:40:87:64:1f:63:
46:fe:c0:70:91:5f:59:52:c3:0d:ad:e1:62:7e:bb:07:98:87:
c2:35:3c:54:ff:cb:57:19:50:81:c4:06:a7:2c:1f:18:00:14:
62:12:8d:e2:3f:c9:1a:93:94:bb:6e:b6:d9:66:10:b7:93:84:
5d:23:43:eb:cc:6c:23:c4:a2:36:bf:a7:bf:27:31:8c:40:5f:
cd:cf:26:eb:6c:f2:31:01:43:b6:8a:a4:43:fe:c2:5b:03:7a:
2d:6a:6b:01:7f:29:a1:e0:69:45:52:58:7e:08:4b:e1:97:99:
d9:6d:e8:ad:48:19:09:75:04:f9:62:1b:90:a8:ed:72:1c:92:
91:ca:cb:07:0c:fa:7f:dc:2e:a2:85:43:66:ba:a3:e2:fc:e9:
af:fc:0b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:47:14 2025 by rpki-client