Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: n2JQPab6yaMYpCLB0/gR02RuznHt0U4aLpmZ+8PfwZE=
Subject key identifier: 79:8A:5E:91:87:1A:62:D6:83:CE:93:8B:3B:59:14:D7:C3:BE:82:61
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 01965B71205BAE061C927259DCA00BB20DC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 1500
Signing time: Tue 22 Apr 2025 03:01:02 +0000
Manifest this update: Tue 22 Apr 2025 03:01:02 +0000
Manifest next update: Wed 23 Apr 2025 03:01:02 +0000
Files and hashes: 1: 9-nqsKi4Ev5jKkuKWzG_WIBo83k.roa (hash: SHAm2ssxR7ZkFZ7Brw788jEHfHi8MZS6JxMLuTDqDJs=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: MxAdASSIbN3viKc01Bk4GXHHxAsxI9Tx157zLIf8ygQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 03:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:71:20:5b:ae:06:1c:92:72:59:dc:a0:0b:b2:0d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Apr 22 03:01:02 2025 GMT
Not After : Apr 23 03:01:02 2025 GMT
Subject: CN=798a5e91871a62d683ce938b3b5914d7c3be8261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:b2:42:3d:98:40:54:c8:3c:a0:43:e7:be:
b1:94:71:33:d2:ff:bf:02:2f:5e:52:f5:8d:22:c3:
56:e3:c9:c5:b4:6c:05:c7:41:ad:ce:de:01:00:49:
90:6e:ad:c5:39:59:1f:95:c1:e7:2c:fd:da:ee:84:
84:2b:73:8f:36:a4:8b:a8:49:bd:8e:57:7d:67:52:
72:8e:6e:b5:9c:c3:54:de:69:bb:f9:cf:33:29:39:
e2:c2:a8:6e:1e:63:79:b0:7c:44:ae:c4:fb:33:00:
4b:7c:08:dd:29:f6:8e:f9:82:82:96:13:50:51:49:
e6:86:2b:b8:56:fb:e2:d5:de:51:6a:26:bf:69:6a:
f4:d2:6d:84:58:b6:8c:2a:22:6d:e5:6f:41:1e:b7:
8c:9c:64:bd:4f:38:e3:57:29:98:34:ea:90:5a:e9:
fd:fd:bb:69:0e:d8:55:d7:c9:27:00:19:ca:9a:4e:
10:8a:0e:95:d9:fb:89:9b:31:3e:b0:3f:61:bf:09:
fb:09:6e:b5:99:e1:eb:2e:75:da:ff:3d:1e:e7:96:
cf:f1:89:be:17:59:49:ae:37:c9:41:78:56:6a:2f:
c9:de:ae:22:e2:4a:df:fd:bf:be:82:b7:2d:7a:48:
a3:36:d4:dc:72:1a:d2:f3:10:bc:01:e3:e2:c3:3c:
52:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:8A:5E:91:87:1A:62:D6:83:CE:93:8B:3B:59:14:D7:C3:BE:82:61
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:17:45:3e:09:48:c4:15:e1:b8:11:5e:f1:22:74:2d:47:c0:
8b:30:5d:0e:7e:9e:92:75:e8:68:e8:e2:9e:c1:97:6b:73:39:
69:93:98:73:da:a0:df:8e:aa:57:1b:e6:80:72:b9:6f:62:b9:
00:87:fe:ce:eb:69:1a:f6:4a:83:87:c7:53:93:6b:7b:21:43:
49:0e:85:75:29:cb:7a:66:8d:6b:b4:ee:77:b4:f2:b1:ea:44:
fc:95:5a:be:49:cc:59:18:31:2a:60:69:02:41:c6:b8:a7:a7:
e4:5d:11:f6:33:f8:d0:f9:83:c9:8a:4d:04:20:53:6e:8d:c0:
a2:30:f2:68:64:c2:97:6c:0a:6e:77:dd:9c:0c:90:29:98:82:
b8:7f:8c:1f:b8:9a:96:19:aa:77:58:e7:05:75:ff:ee:03:67:
ea:71:a2:8c:ec:5b:e7:12:47:f7:92:97:11:0a:99:45:ec:ea:
aa:5a:2f:92:7a:51:6a:28:2a:77:43:31:74:58:cd:ae:bd:49:
33:88:e6:c0:3f:9b:07:32:94:cf:b8:d5:13:9f:b9:96:61:44:
7d:7f:37:fa:b0:75:7d:cb:05:dc:f6:54:f3:de:79:18:45:07:
26:3e:4a:b4:ee:03:d1:fc:35:59:44:16:a9:88:56:96:2a:5b:
39:89:49:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:28:16 2025 by rpki-client