Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json)
Hash identifier: +f38rzE5SohQkVWtPsM7Ebboj/1S7wjfjp05reR851U=
Subject key identifier: AE:18:91:E2:A8:36:6A:7E:0C:8F:30:D7:8C:97:C8:81:60:FF:DA:A9
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 01965380511352C59AA53DAF4BBE81C05EBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
Manifest number: 0C24
Signing time: Sun 20 Apr 2025 14:00:40 +0000
Manifest this update: Sun 20 Apr 2025 14:00:40 +0000
Manifest next update: Mon 21 Apr 2025 14:00:40 +0000
Files and hashes: 1: 2CYNXB5qZHN7in7RGaGVmXvb7Xs.roa (hash: n74UAylTv760Shvrd+PI6ipCj4rV+2WaR3QnP3+8e6Y=)
2: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: SyYVuBnDOOfdS6JRqRPun8NzyByRvEn2bT6s0iPKEuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:51:13:52:c5:9a:a5:3d:af:4b:be:81:c0:5e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Apr 20 14:00:40 2025 GMT
Not After : Apr 21 14:00:40 2025 GMT
Subject: CN=ae1891e2a8366a7e0c8f30d78c97c88160ffdaa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8d:5b:16:29:af:a0:28:f7:88:af:08:59:68:
93:cd:41:87:67:73:e9:7f:53:a3:bc:2f:78:c4:1e:
90:e0:6d:e5:0c:3a:6b:c8:43:e9:d9:2c:05:fa:8d:
e5:f4:31:bf:7d:e9:f2:0b:54:ce:84:10:87:13:26:
7d:48:9e:24:1c:8a:95:94:ec:d7:83:42:0c:32:73:
64:a8:25:b2:be:e6:ed:0a:74:2a:39:24:f4:4d:7f:
25:33:3c:e2:6c:cc:8c:d4:00:3f:76:c7:b1:25:a4:
11:5e:cf:c6:39:b5:77:bb:74:d7:a7:71:8b:a5:08:
9f:2c:d0:54:8f:83:ea:cf:54:1f:4e:a8:1f:40:05:
2d:e7:c4:90:bc:35:28:54:72:b6:a3:0b:ac:67:bc:
05:98:f2:af:25:bb:08:8c:95:b3:85:77:5b:eb:b6:
19:85:2f:f3:56:ec:d3:02:fc:50:98:e0:0b:ba:46:
2c:1f:91:f6:76:32:b7:34:93:c1:71:c3:7e:d5:f6:
60:61:2c:50:88:c2:20:f2:76:e3:ce:8f:7a:41:c6:
04:d7:8a:05:f1:c9:1a:57:13:19:03:2c:8a:88:28:
8c:a9:74:ca:86:a5:db:19:7f:34:13:21:0b:3f:85:
a6:2c:b9:ad:f7:bb:e3:57:eb:ae:eb:65:a2:62:6b:
79:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:18:91:E2:A8:36:6A:7E:0C:8F:30:D7:8C:97:C8:81:60:FF:DA:A9
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:df:cc:4d:48:5e:55:5a:5d:06:54:00:4a:07:6e:08:15:ec:
bb:2f:f0:90:ad:7b:f5:35:d8:c7:0d:7e:70:ca:42:6f:c8:57:
7d:ac:46:aa:db:83:84:1e:2a:ee:74:c9:9a:dd:9f:53:8a:4e:
da:5d:b9:9c:76:53:c2:e9:12:a7:ac:43:cf:2c:7a:92:90:7a:
4e:9c:22:a0:90:6b:d1:12:33:56:f1:cc:98:92:68:e0:a0:66:
3f:23:a0:4c:96:2f:11:a6:e0:73:dd:76:d2:55:d4:5c:8c:ac:
48:38:5b:16:55:9a:1b:ac:a1:8e:18:8a:8f:54:fc:9c:86:9e:
36:c1:07:88:a8:bc:e0:af:eb:c2:e1:9b:59:a0:ed:77:9d:fb:
89:bb:44:03:d9:c3:3f:8f:78:c5:a2:7e:84:07:96:27:97:bd:
27:61:3c:60:a1:fc:c7:cd:a5:c0:d5:7b:3a:61:db:43:13:81:
cb:e5:26:c1:80:33:dc:80:f3:56:9e:4f:f6:0e:b2:2b:05:fe:
1a:fe:8d:0b:6e:5f:5d:07:09:24:92:49:bf:ee:ed:e3:6f:85:
3c:bf:e9:b9:3e:83:17:77:e1:47:bb:ca:5e:f0:05:b2:61:27:
41:5f:4e:2d:a9:b9:54:0a:7f:52:8f:ef:37:a1:dd:ab:e4:92:
79:78:74:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:34:09 2025 by rpki-client