Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
File: z65GEYj_we8vOhR0VxqUOaVTdKw.mft (raw, json)
Hash identifier: BV1LCUinqMMBdBsT08xrKKcQ5CpTwoogPVvt+JKJG4s=
Subject key identifier: 56:81:ED:7E:D4:44:F2:B6:FD:62:81:6E:71:93:1C:77:3E:42:3A:12
Authority key identifier: CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC
Certificate issuer: /CN=cfae461188ffc1ef2f3a1474571a9439a55374ac
Certificate serial: 019648209DF5F84FF539D0FCBCE89008FFE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
Manifest number: 0210
Signing time: Fri 18 Apr 2025 09:00:19 +0000
Manifest this update: Fri 18 Apr 2025 09:00:19 +0000
Manifest next update: Sat 19 Apr 2025 09:00:19 +0000
Files and hashes: 1: 1k7B6OZhB1CFcx64eFikJ90IArY.roa (hash: BObzQX0NmXL+SkwyifLtayjL5iVc0jp/QAmHV8ZAgNM=)
2: z65GEYj_we8vOhR0VxqUOaVTdKw.crl (hash: kAZ6myIXwbV0yKyYWeqmyb3LPvTd7oLrrr+dCuRV1BE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 09:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:48:20:9d:f5:f8:4f:f5:39:d0:fc:bc:e8:90:08:ff:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfae461188ffc1ef2f3a1474571a9439a55374ac
Validity
Not Before: Apr 18 09:00:19 2025 GMT
Not After : Apr 19 09:00:19 2025 GMT
Subject: CN=5681ed7ed444f2b6fd62816e71931c773e423a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:48:04:d4:0b:03:3e:23:47:4b:15:b0:58:0c:
c7:e3:a1:90:aa:d7:1e:e9:f2:eb:04:39:b0:e2:72:
fb:ae:e4:7c:c2:6a:f9:a0:b0:3a:c5:1c:f9:3e:cb:
a3:9c:7a:07:f7:7b:b8:00:b5:b6:9e:e9:80:33:02:
95:5b:ec:ac:3d:2a:73:69:3e:aa:00:69:e3:c0:cd:
2f:99:a4:22:9c:b9:9a:01:e4:7e:f7:65:91:a7:85:
f6:c2:cd:82:ae:26:b9:9e:4d:c3:b4:8c:fd:4b:eb:
c8:5e:75:37:cf:b2:88:71:0e:d4:7c:f9:91:02:b9:
a8:5b:ac:a6:f7:85:70:b7:f1:ed:c2:17:b2:d5:70:
c7:6f:f2:fc:6b:3a:4f:f2:78:f3:ee:10:b7:3a:84:
f9:b5:14:bd:99:4e:72:aa:3f:bb:72:d7:8f:e1:d3:
b7:d5:f3:b1:0c:93:a0:8d:45:e5:ee:09:0e:eb:68:
6e:e8:94:92:f2:b1:af:a8:98:9f:70:01:38:fe:35:
ed:f9:8a:c6:f7:46:19:a9:df:7a:33:75:b3:85:57:
a9:ea:e0:80:58:3a:a3:48:3a:ee:b9:60:ed:b1:d4:
c7:89:f3:32:5e:18:b5:bc:0f:ec:6f:f4:9f:a9:e6:
66:bd:53:89:32:22:b9:43:34:80:8f:50:5c:83:c5:
d4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:81:ED:7E:D4:44:F2:B6:FD:62:81:6E:71:93:1C:77:3E:42:3A:12
X509v3 Authority Key Identifier:
keyid:CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:68:af:2e:50:e5:35:20:db:65:c3:77:82:fd:ca:70:7b:46:
3d:6f:17:c7:0c:8c:f2:8a:b3:56:38:56:37:98:54:62:e6:a9:
99:0b:19:bb:40:cf:85:54:77:8a:4e:5d:1c:c9:40:be:b1:aa:
63:bf:1c:0d:88:d4:95:af:46:95:59:13:11:da:d2:ca:d8:2f:
4b:06:16:ba:e7:6c:53:4c:61:e1:04:e6:7d:0e:db:6d:f4:57:
a4:6b:0f:5a:40:a5:0e:99:17:ad:c5:04:96:e5:65:ab:d5:f5:
4b:3a:b9:2a:f1:90:04:a4:c6:a7:7c:d0:fd:0a:0e:7f:48:24:
de:86:35:da:c2:fa:b9:59:3f:ad:62:59:2e:8c:cd:0b:67:4d:
58:5f:b0:a0:41:06:dc:97:1d:d2:13:4d:7c:0a:f3:17:f5:b1:
1c:5b:fa:d5:d3:08:5c:fb:d3:4d:19:a2:28:15:f2:bd:6b:e3:
c7:e5:1b:c4:f4:52:e4:ee:c9:ea:86:7e:9a:69:06:da:d6:6f:
1f:67:7e:2b:55:d8:f1:e4:22:dd:5a:a0:2e:53:50:17:a2:91:
fd:dd:a5:e6:06:a1:33:63:28:e3:7b:8e:1b:86:77:24:18:99:
ad:ea:e3:b9:b4:4d:ec:4a:f5:d2:37:69:67:9a:08:af:05:ba:
2f:61:2b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 14:54:04 2025 by rpki-client