Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
File: zWj3o5G3sWSe1JA0gtPpMe0049g.mft (raw, json)
Hash identifier: n0Y903WiHtD4pNjvk51PybIzrm2iuhO8syABY/NR+Lo=
Subject key identifier: 31:0D:39:3A:23:1F:BA:DD:1C:27:F6:35:3F:ED:BF:0C:37:F7:2F:6A
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 019650119CD19CF6C5E197291641072A5B6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
Manifest number: 0DF7
Signing time: Sat 19 Apr 2025 22:00:53 +0000
Manifest this update: Sat 19 Apr 2025 22:00:53 +0000
Manifest next update: Sun 20 Apr 2025 22:00:53 +0000
Files and hashes: 1: O1GYVhxFS0M7H20Hoh1Atb3eLaE.roa (hash: tCVke6K7TW9gUgASV8dTundK+jeF3bulXbwfPaxFtHY=)
2: SWAth1mKD6FwJVqaJWtV6D-F51Y.roa (hash: REJDhZOwFyr4wdpkCheBE0DhoqN625ViwDnudBYPico=)
3: Sc-FyfdVDPaQqHGz-GI3fsuN6cM.roa (hash: zSZi5viNxy6Qez2EVg97kMrTwqojW2kb2exfumMpwjg=)
4: hkuhpnMVVYRgPxAr-LQ10OakoTI.roa (hash: oAtibnQ6KN2VeS7D1IHVgfHz1J3VS/wtW0fPG2i0OP0=)
5: zWj3o5G3sWSe1JA0gtPpMe0049g.crl (hash: 8htHpNy5RkBU/DZDyTl2MLHkBXqWXJZPkz8G1nOAWS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:9c:d1:9c:f6:c5:e1:97:29:16:41:07:2a:5b:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Apr 19 22:00:53 2025 GMT
Not After : Apr 20 22:00:53 2025 GMT
Subject: CN=310d393a231fbadd1c27f6353fedbf0c37f72f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:42:d1:44:af:fd:64:e0:c0:d3:72:a4:d7:72:
15:8d:19:45:12:10:e9:e3:d8:27:eb:3d:6f:2b:eb:
2c:53:13:a8:a2:dd:99:a6:3c:8c:73:be:18:40:a4:
48:96:7b:0a:53:4b:72:70:83:21:1c:fe:81:f3:15:
1b:df:90:43:86:6d:92:89:e2:91:41:29:4b:b9:3b:
a7:b8:ab:19:84:e4:7f:0d:da:7c:af:ad:99:24:fb:
44:82:34:c1:11:4b:ad:e3:1b:c1:db:a7:87:aa:bb:
67:de:c6:f6:8b:db:f9:78:e0:64:05:9d:a7:e0:c9:
ec:26:d3:ad:9c:48:04:4a:4a:92:49:54:ac:f3:8f:
49:72:de:da:90:55:46:27:1f:bb:b4:4d:cd:b8:3f:
b6:fd:de:85:35:aa:54:23:97:4c:43:7a:ef:2f:b8:
1d:57:32:01:ab:a7:c0:de:c1:96:69:90:2d:78:18:
46:ab:c7:18:d7:dd:6a:2e:29:c8:91:d9:03:4a:b4:
78:0b:62:ac:3e:f0:b7:e6:5a:7a:d8:46:86:79:e1:
4d:6a:e8:9a:ce:5e:e4:99:c3:42:89:c0:1b:83:bf:
62:ef:64:ea:99:aa:0a:5b:0a:c7:3d:00:29:28:e0:
1c:99:9b:dd:bb:69:ae:6a:c6:53:4a:6d:68:c9:59:
2d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0D:39:3A:23:1F:BA:DD:1C:27:F6:35:3F:ED:BF:0C:37:F7:2F:6A
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:bd:ca:27:04:81:21:ac:a7:46:98:12:6e:c9:11:e0:c4:50:
2a:f1:e2:f2:b8:55:9f:d4:cd:f3:3b:46:84:fa:9d:fb:84:19:
4b:19:35:2f:02:63:46:b0:ef:c1:0b:e7:47:63:58:5d:93:05:
39:71:cc:ca:87:db:44:4a:15:00:25:7e:4a:32:4c:6b:81:c1:
c7:0c:07:30:2e:7f:4b:e7:7f:31:1b:09:9e:42:6e:8d:9c:25:
20:9a:d3:b5:ef:ad:98:77:2b:7e:0d:35:39:5f:eb:10:3b:46:
3b:4e:a8:a1:57:ed:f7:13:07:8d:20:81:1e:7d:4d:8d:14:02:
a9:0b:c0:26:f6:fd:ae:5d:11:06:36:13:50:a4:54:3b:10:b8:
4f:8e:d2:92:17:49:30:84:9d:f4:97:19:d8:23:41:8e:45:39:
53:df:c6:6a:f4:2e:a6:2c:5b:dc:a6:e6:95:8b:08:7f:d2:ef:
b8:00:d8:1c:65:e6:8e:18:b6:cf:1a:cc:82:d5:57:ef:98:64:
b3:11:07:fd:e3:4d:76:d0:ce:b5:55:3f:04:14:77:91:9f:1b:
90:67:1f:12:2d:1d:58:97:07:8c:87:2a:4a:f3:0c:e8:54:b7:
cb:d3:76:b8:7b:5a:1f:3b:59:4f:f6:61:42:0b:10:3a:8c:a4:
f3:05:ea:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:31:33 2025 by rpki-client