Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
File: z6ExZhMNKdWtimB9gUmNpmAm0DY.mft (raw, json)
Hash identifier: mDeKI4qJi4GbCUcP7ac4QydJT0ppKZYyf4C8iV+RhQs=
Subject key identifier: 10:FF:0F:1B:4A:E6:85:3A:41:D2:48:3A:01:5C:43:B3:29:D1:25:71
Authority key identifier: CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
Certificate issuer: /CN=cfa13166130d29d5ad8a607d81498da66026d036
Certificate serial: 019656EF4A37627CE930AD782DEBB41357F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
Manifest number: 020D
Signing time: Mon 21 Apr 2025 06:00:44 +0000
Manifest this update: Mon 21 Apr 2025 06:00:44 +0000
Manifest next update: Tue 22 Apr 2025 06:00:44 +0000
Files and hashes: 1: 8NRIip7PRvYkRKm_8iGpYTYG-fQ.roa (hash: baP/2HoWmnxywqu4ozYPStRBgvEVcCSlNjY9VrvxlOY=)
2: z6ExZhMNKdWtimB9gUmNpmAm0DY.crl (hash: 46ixZ+tO1uCfBH6Js78UtbcKvH597GJUocVCAyzBHrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ef:4a:37:62:7c:e9:30:ad:78:2d:eb:b4:13:57:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa13166130d29d5ad8a607d81498da66026d036
Validity
Not Before: Apr 21 06:00:44 2025 GMT
Not After : Apr 22 06:00:44 2025 GMT
Subject: CN=10ff0f1b4ae6853a41d2483a015c43b329d12571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e3:0f:7f:59:9b:32:96:cd:86:40:51:f3:0f:
3e:8f:a5:85:e4:d6:3b:88:94:0f:0b:3e:0b:83:e8:
38:e2:38:9b:7f:ab:e4:8c:c4:a5:48:5c:8c:ed:95:
b7:c1:3b:3c:f0:e7:df:11:bd:cc:ba:c2:af:95:f4:
9b:75:da:89:27:27:33:fd:e3:57:28:0d:12:b1:8f:
af:3f:a2:ef:f6:4a:d3:53:72:96:b5:a2:ee:5f:e4:
cd:42:0d:d4:ae:60:9c:e3:e9:9d:4f:c3:1a:7a:1f:
a9:94:89:88:46:bd:cf:5d:3f:93:28:46:e6:9c:2f:
d5:e7:2b:05:d7:77:cf:8b:af:0b:c6:43:76:1e:60:
75:8f:ad:5c:9e:cf:8d:68:7a:7d:77:59:48:1f:a3:
34:ac:91:47:09:e0:15:09:8b:cd:7b:02:82:6b:d0:
a6:d1:57:94:5f:ee:0d:cd:5f:be:4f:86:21:72:9b:
1c:d2:6f:be:52:ff:d4:57:c0:c5:a0:82:ed:96:d3:
0a:b6:47:49:bc:b1:22:d8:9e:d7:0e:d7:08:2e:59:
30:e3:50:99:62:34:f0:e2:b5:95:9f:8f:0c:67:6b:
64:dd:f2:19:6f:57:73:eb:4d:32:a4:ad:c8:7e:0d:
0d:43:2f:a0:a2:69:e9:fa:c3:ae:91:69:4b:c1:e6:
a0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FF:0F:1B:4A:E6:85:3A:41:D2:48:3A:01:5C:43:B3:29:D1:25:71
X509v3 Authority Key Identifier:
keyid:CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:25:c3:e8:3a:ea:52:a8:40:5c:a8:d3:12:53:d0:a1:d8:e1:
fc:10:aa:4d:8f:cf:61:6c:ba:8f:17:1e:9f:02:43:ba:9d:79:
eb:f5:e4:79:5c:aa:dc:dd:c4:b5:c0:2e:4e:26:03:24:41:70:
59:d6:81:4e:d0:36:14:5c:86:48:a6:78:f6:ad:fd:fa:9d:20:
66:9f:8b:48:c6:54:db:dd:2c:f1:0f:98:e3:4d:71:67:bb:9f:
1f:7e:a8:95:39:68:21:89:2c:c3:ab:f5:67:00:ea:23:29:29:
29:fe:f4:de:4f:fb:b0:7f:f0:36:7c:bf:c7:5a:c9:f4:4e:e4:
3c:3f:0d:83:ae:18:0d:bd:da:b3:e9:c7:09:e2:37:42:92:2c:
b8:ef:ae:08:27:95:97:db:81:37:9a:d2:39:ca:55:50:cd:91:
4c:c5:1d:16:03:8a:86:d7:19:d1:4e:5c:42:46:1c:9d:03:15:
10:6f:2b:55:c9:52:80:cc:79:25:c2:b7:82:74:96:ae:e0:bb:
c8:79:76:9c:c4:0f:da:92:37:0f:5b:d3:98:fe:26:f7:28:fd:
68:46:d9:4f:2e:bf:0c:8a:4a:1f:52:24:e9:85:e3:3e:1c:2b:
06:55:f5:b4:e9:13:9b:7e:6b:0e:7f:84:60:a5:6e:ba:2f:4f:
ca:f0:cf:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:22 2025 by rpki-client