Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json)
Hash identifier: GzPLYtVD5RRIjtfJNZxXd2A3mb/d87y1Gfr1GJ76RUY=
Subject key identifier: 2C:13:6A:3D:0F:53:50:06:D1:59:8B:11:57:4D:5D:1E:BC:35:9C:EB
Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Certificate serial: 019610571644245D52D0AC0D9B8FE8ACEEC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
Manifest number: 0873
Signing time: Mon 07 Apr 2025 13:01:04 +0000
Manifest this update: Mon 07 Apr 2025 13:01:04 +0000
Manifest next update: Tue 08 Apr 2025 13:01:04 +0000
Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=)
2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: XgEF2fu6smGOvjAXF/FSYFTz1q2VNsHn52Ohz50F/Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 13:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:57:16:44:24:5d:52:d0:ac:0d:9b:8f:e8:ac:ee:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6
Validity
Not Before: Apr 7 13:01:04 2025 GMT
Not After : Apr 8 13:01:04 2025 GMT
Subject: CN=2c136a3d0f535006d1598b11574d5d1ebc359ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9d:b2:60:de:de:ba:98:fe:c7:85:6b:56:95:
1d:7a:f1:ec:29:af:a6:c7:b6:58:1d:b4:f1:35:13:
0c:0f:9f:6e:9e:14:ad:95:5d:a3:7f:0a:44:70:a4:
11:0b:ba:79:51:be:ac:63:37:41:06:1b:49:33:43:
fe:75:b0:ac:1f:08:7d:2c:70:07:5e:4c:c0:80:52:
ac:ff:64:10:31:ac:51:7c:40:a0:a4:6e:c7:30:7b:
8c:cd:bd:b5:14:82:85:46:53:18:82:3a:f7:e8:97:
f8:0f:98:c2:a4:f0:51:74:5e:6f:66:f6:d0:88:64:
6f:74:0d:d9:c2:8a:7e:7c:05:e4:32:84:f1:f9:22:
66:da:f7:6d:5d:12:fb:df:dd:61:05:8d:9f:96:af:
1a:08:72:14:7a:d9:8a:a2:fa:97:73:3f:e7:c6:ac:
99:86:10:2b:61:d3:b9:6b:38:3a:b1:b6:75:8a:76:
0d:62:3d:72:f1:e1:3a:01:d4:eb:f4:b3:17:9c:d4:
11:8e:4e:e8:bb:4e:b9:ec:50:d6:46:e0:51:32:e0:
dc:0d:bb:1c:c7:c4:67:65:5f:99:44:54:04:21:5a:
3a:c9:1d:9c:79:4a:d4:dc:12:9d:bf:33:ad:31:2c:
9a:d3:0a:09:50:52:1e:a5:ac:25:be:b8:43:75:20:
fd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:13:6A:3D:0F:53:50:06:D1:59:8B:11:57:4D:5D:1E:BC:35:9C:EB
X509v3 Authority Key Identifier:
keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:a1:5d:a5:a7:97:b4:93:bf:fc:f2:63:27:ed:c0:70:4b:13:
e3:c9:fc:98:8c:5f:c8:33:8b:0f:33:45:c9:15:0d:cc:c7:81:
39:3e:1e:17:d6:47:9f:c1:30:06:e8:0d:88:be:06:76:82:d4:
59:b9:e4:d1:56:af:81:82:83:ff:04:65:75:82:ed:01:49:e1:
44:e7:43:2b:fe:96:92:44:25:e8:ab:15:9e:d5:4f:87:45:1d:
39:01:31:74:b4:06:6e:dc:37:2d:0c:69:19:28:ee:55:1c:e7:
7f:c4:f2:9e:91:c9:b3:55:35:bb:90:7d:ff:5f:fb:78:bc:0d:
2f:93:c5:83:88:65:2b:62:0d:21:26:71:0d:5d:78:19:fc:55:
a9:42:0c:29:8b:fa:f2:87:6c:80:66:52:4e:43:12:ee:25:a3:
f8:50:90:ef:d6:44:a1:13:cf:05:cc:1c:9c:0b:47:d6:11:04:
0b:76:f6:48:6a:24:18:8c:4d:3b:cd:20:e1:bc:db:c9:cd:fe:
a7:b5:d8:14:9b:eb:3e:d2:ae:0f:94:f4:ab:bb:f2:2f:ce:fe:
c3:2f:04:36:6b:59:16:59:3d:98:b0:cb:56:87:03:94:ee:03:
92:5c:d3:10:0e:ea:d5:0b:9b:f7:57:b3:42:5c:b6:a0:9b:66:
7e:cd:1e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:51:02 2025 by rpki-client