Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
File: RoZEuS85TK82Z722rz44aZxU8xU.mft (raw, json)
Hash identifier: sxTetxn4ZkUlMjZDkbKXkJGtExXNIeJmgpJXOSFSLLY=
Subject key identifier: A7:64:F2:5E:A8:2F:27:0B:CA:14:C3:68:D1:F1:2B:F8:52:7F:B1:5F
Authority key identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
Certificate issuer: /CN=468644b92f394caf3667bdb6af3e38699c54f315
Certificate serial: 01961E80C23920F2D4C96BD5C9FA9B82E358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
Manifest number: 04E8
Signing time: Thu 10 Apr 2025 07:01:16 +0000
Manifest this update: Thu 10 Apr 2025 07:01:16 +0000
Manifest next update: Fri 11 Apr 2025 07:01:16 +0000
Files and hashes: 1: RoZEuS85TK82Z722rz44aZxU8xU.crl (hash: vSc2546dvCJShtZpGTpRB55zFEw+1+xAYRmlTHARBx0=)
2: vtks1RpdqgJjRnpqZTuHlojpnC4.roa (hash: oX7oOIAU1k9nkdCgElwN7eGh9pUqSpohl3tUy6kjtQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 11 Apr 2025 07:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1e:80:c2:39:20:f2:d4:c9:6b:d5:c9:fa:9b:82:e3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468644b92f394caf3667bdb6af3e38699c54f315
Validity
Not Before: Apr 10 07:01:16 2025 GMT
Not After : Apr 11 07:01:16 2025 GMT
Subject: CN=a764f25ea82f270bca14c368d1f12bf8527fb15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e9:67:f2:6c:5e:d0:4f:e4:47:2a:51:cd:71:
21:5e:07:22:05:51:0c:dd:97:ed:49:c1:6f:fc:07:
16:24:88:e9:a7:84:5d:ac:1f:03:56:08:ea:91:7c:
b8:60:69:83:02:da:cc:92:2d:fb:a9:04:90:07:2b:
46:f7:06:06:e4:b7:c3:e4:de:67:ca:60:e4:cb:6e:
48:f9:85:fd:4d:9f:e1:46:30:5a:0a:6d:d0:72:1c:
ec:8b:a9:c0:90:a6:93:f3:69:9c:ab:3a:d8:1b:fb:
24:f6:aa:8e:38:1f:f0:a2:f4:f6:b1:7b:97:fb:a1:
88:19:bb:90:af:7f:72:11:b7:86:4d:b1:13:9b:2d:
ba:01:64:4c:cd:55:31:6a:02:eb:45:ac:a0:9a:25:
84:90:d6:41:51:27:42:d6:07:f5:66:07:37:6e:4c:
5e:83:58:99:53:c4:d1:49:42:62:fb:20:44:e0:71:
07:1a:87:47:28:4c:90:ce:a0:07:d7:05:cf:f4:49:
c2:c4:60:c5:1e:a5:4e:16:9a:c6:41:a7:ce:8a:70:
fd:fb:6e:a9:20:39:18:4a:7a:74:17:9b:5f:a5:6c:
7e:46:3e:f1:b5:17:d3:c4:7c:b6:a4:91:e9:f0:9e:
6b:56:e9:54:81:e3:74:e9:54:a5:61:e7:10:9e:6d:
3b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:64:F2:5E:A8:2F:27:0B:CA:14:C3:68:D1:F1:2B:F8:52:7F:B1:5F
X509v3 Authority Key Identifier:
keyid:46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:c6:66:0e:39:06:19:07:9d:6f:8e:f3:0b:a8:8e:40:1e:36:
97:1e:e9:41:5b:e2:24:82:4b:42:b2:13:49:07:93:01:b3:fe:
14:0c:cb:7d:e8:b7:d1:2f:6a:ad:2b:fe:9e:90:49:b0:8e:7c:
f4:41:89:47:f8:d5:30:9a:8b:34:ed:fb:6d:6a:02:7c:32:24:
23:cc:82:6f:f4:b4:02:10:fd:71:84:1c:a2:26:ca:b1:cb:17:
76:45:04:f6:c0:5d:7a:00:f3:37:21:ed:0a:b2:3b:f5:f3:a9:
a4:2f:5a:03:5d:d8:e3:1d:11:61:43:65:c3:d5:92:61:a6:36:
72:2b:82:1c:32:7f:cc:9d:14:30:7f:59:7a:5a:7f:a3:25:50:
4d:98:56:11:10:d1:d0:3d:42:cb:f5:94:90:e2:97:df:8b:4f:
5e:b3:c3:09:9b:61:5f:0c:b7:00:e8:7f:10:53:d3:10:6b:2a:
eb:a9:dd:02:a2:fa:3b:c4:40:20:7d:71:09:91:4b:79:69:bb:
fc:23:a7:27:fb:79:9f:a1:4f:ca:28:88:d0:48:ec:cb:7c:06:
74:ff:87:f6:43:24:1e:d6:d1:9f:8c:07:7f:75:24:41:40:5a:
84:c4:80:b2:cb:fc:1a:d6:c0:28:31:6d:95:fa:a2:bb:f6:dc:
56:66:e3:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 09:54:09 2025 by rpki-client