Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: pADiPhQWMs7r+WUnfjuAk67uNtZih2Iuduj7soHBQqY=
Subject key identifier: C5:9D:4A:5E:A6:92:71:F9:70:83:D8:03:C9:3A:60:E1:BB:AB:71:41
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 01964A466E0088759C813195733D3793A53E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0D14
Signing time: Fri 18 Apr 2025 19:00:51 +0000
Manifest this update: Fri 18 Apr 2025 19:00:51 +0000
Manifest next update: Sat 19 Apr 2025 19:00:51 +0000
Files and hashes: 1: n79crWM-L0W_-YTIs0SA8x1g-4g.roa (hash: WTPugh0CrOL+7geJ0TTyRViJCXrCGCyNH+3nK4QxB48=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: swSWeeiGCMUf8u8ZesDu1BGpK4EHnwyoQL3T+Of8/4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:6e:00:88:75:9c:81:31:95:73:3d:37:93:a5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Apr 18 19:00:51 2025 GMT
Not After : Apr 19 19:00:51 2025 GMT
Subject: CN=c59d4a5ea69271f97083d803c93a60e1bbab7141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:16:80:94:3b:2c:2c:2f:e1:c3:58:37:4c:79:
82:11:4f:06:66:4e:77:54:d5:69:b6:ec:4a:dc:da:
90:d9:65:94:f7:63:34:b5:0b:78:be:73:f0:21:4e:
25:8a:e5:9d:4a:c5:b0:e8:62:88:62:f3:d6:78:63:
67:9f:7a:9c:51:35:d5:92:b0:2e:b4:00:14:50:63:
ee:c0:c5:5e:30:b3:5b:5c:e6:68:77:25:3d:35:62:
57:c2:99:73:8d:ad:67:fd:2a:4c:1b:d5:13:2b:b1:
50:ea:8c:f5:85:27:e3:d5:92:80:0c:95:0b:ba:01:
88:45:c9:9d:7e:91:d0:c6:de:de:79:6c:50:11:f7:
70:99:f7:ab:b6:99:84:47:3d:2c:a9:33:ea:43:75:
56:ac:eb:1a:c0:4f:b9:bd:33:1f:fd:c6:25:1f:76:
43:5b:e2:b7:cb:e8:a5:c8:0f:4b:c9:39:97:3f:9d:
a2:ac:d7:f2:c5:23:05:5f:96:17:94:9c:32:3d:24:
21:64:e7:9e:15:06:54:7a:57:fc:cb:6e:c8:90:4f:
f8:de:9d:aa:53:43:2f:8e:45:70:5c:d8:cb:44:77:
22:09:72:39:f1:d3:37:eb:49:6a:81:90:04:d3:70:
08:75:ef:e7:f9:57:00:5f:b5:87:a9:79:e8:e6:cf:
50:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9D:4A:5E:A6:92:71:F9:70:83:D8:03:C9:3A:60:E1:BB:AB:71:41
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:8a:ea:ed:0c:42:7f:79:e9:63:ba:6b:4e:ef:c8:31:af:18:
bc:38:ed:b7:b1:81:5e:6a:40:8a:61:74:42:14:ea:9a:82:3f:
26:fe:70:98:22:71:d1:a4:84:f7:24:19:42:cb:ef:74:ec:0c:
70:b6:fb:62:0f:b1:71:cb:01:03:f0:81:70:49:c2:e9:f4:bf:
f6:da:93:a2:f9:4c:f1:a6:f7:4c:d9:7d:48:f4:f8:11:22:e9:
b8:5f:30:5a:a3:21:13:5b:f6:f7:24:77:98:7e:fe:83:0a:5a:
94:7e:d8:a1:32:ee:c7:bf:25:19:26:0f:01:b1:26:14:45:c7:
01:42:2a:c5:38:49:d4:f3:69:ab:1f:96:37:65:65:eb:fc:bf:
18:14:14:5d:6e:b8:df:c8:86:5b:88:22:32:60:44:e2:cd:7b:
14:9c:1a:2a:a5:a1:31:06:44:db:d8:34:e0:a0:75:74:d9:dd:
cd:c6:6b:14:c5:95:70:70:c8:43:ed:e4:a0:bf:66:60:19:c6:
d4:1c:5d:91:9b:f4:11:35:f4:c8:c7:fe:e1:46:42:24:43:f9:
2c:d3:6f:26:79:1b:2a:08:85:22:f5:1f:ab:59:38:f9:dc:7f:
87:0c:85:49:2b:ee:86:f6:ce:d8:e8:71:0f:a5:32:35:99:9f:
0b:14:d5:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:04:19 2025 by rpki-client