Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: Tehxq5HoCDSiPCNglWWA7tFt2V2y39h7sUWt0Lpv0z4=
Subject key identifier: 52:B1:52:FE:4C:82:18:92:C6:F1:D3:45:30:74:F5:71:70:B1:70:D9
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 01965914B828B6191D7229DC61B2A69D56AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 04AD
Signing time: Mon 21 Apr 2025 16:00:52 +0000
Manifest this update: Mon 21 Apr 2025 16:00:52 +0000
Manifest next update: Tue 22 Apr 2025 16:00:52 +0000
Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: DdT2q5sHpTyqB1fi5MpxOlrEOVCTPs1S1ZIn8g1TGjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:b8:28:b6:19:1d:72:29:dc:61:b2:a6:9d:56:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Apr 21 16:00:52 2025 GMT
Not After : Apr 22 16:00:52 2025 GMT
Subject: CN=52b152fe4c821892c6f1d3453074f57170b170d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:64:2c:c6:da:04:15:0d:ae:f6:40:21:e2:
03:17:3f:4d:c1:1d:e3:81:f0:d4:35:b4:5f:94:e3:
44:40:52:33:29:66:66:74:43:b7:17:d9:e6:d3:05:
c8:36:5c:de:d9:01:c0:37:62:f8:d5:8a:a7:2d:20:
ef:ab:bd:26:5c:26:52:04:05:36:d1:99:33:98:27:
01:7b:2e:aa:b2:02:85:8b:f2:95:e5:c0:22:bb:0e:
92:06:54:9c:bb:e6:5e:a3:e8:ba:7d:00:46:e4:0e:
ca:be:ed:13:55:61:37:f0:f3:e9:ad:a3:42:d1:aa:
a8:59:5e:4c:23:17:43:54:24:94:fc:c7:90:72:58:
02:1a:1a:f7:7c:88:81:6f:7b:22:76:81:95:a2:c2:
ad:5b:df:58:1a:80:a1:15:6c:a0:23:d1:f7:7f:cd:
64:fd:fb:17:ee:f9:53:47:8e:c1:57:3e:af:0f:b0:
2a:d8:f8:e0:ac:35:33:cf:41:aa:7c:e8:31:48:4d:
d9:65:25:b7:90:e0:be:de:b6:b7:96:eb:56:3b:46:
b8:79:ce:09:d9:0a:3e:eb:68:6f:ce:bb:04:b4:8e:
1e:13:fa:66:e5:2c:e3:51:64:c7:3c:2a:9b:84:06:
f7:0b:be:26:16:e1:8e:55:20:8a:03:57:d7:63:4c:
eb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B1:52:FE:4C:82:18:92:C6:F1:D3:45:30:74:F5:71:70:B1:70:D9
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:5c:fa:2c:a1:2a:d2:4a:3c:41:09:fc:67:40:fd:83:e4:84:
2e:3b:aa:52:f0:59:9d:e5:00:0e:69:cf:bc:ea:40:fe:c6:0c:
b2:24:7f:99:a1:2d:16:34:3e:4a:27:0f:2e:10:ae:9c:c7:90:
9b:26:15:c1:77:6a:99:67:1d:b8:81:1d:e8:b0:8e:72:42:ab:
13:c7:04:15:17:6a:13:0c:39:bd:ff:9f:68:5e:88:34:94:a5:
0c:76:ce:a2:6f:8e:53:8b:06:55:79:89:7b:e0:73:56:d3:f8:
fa:8d:af:b2:42:dd:2d:5c:13:75:a2:65:56:f2:f6:cd:bf:5a:
89:32:a1:12:ee:98:b5:e3:76:5a:00:45:d7:fc:e3:81:92:45:
ca:bf:44:66:51:b0:f1:ea:c0:f3:5e:3f:76:03:c4:d2:75:0f:
a8:7a:bd:21:d1:d1:b0:98:64:64:5a:b1:59:40:d1:a2:36:67:
70:fb:bc:8b:5c:16:71:ea:80:0a:fb:21:e3:49:43:6c:36:90:
cd:3e:eb:19:65:ad:a7:5d:e5:eb:58:45:dc:e1:8d:f8:51:74:
a5:87:bc:78:10:69:26:64:ac:af:b7:a1:47:1f:96:c9:7c:85:
49:54:73:83:6a:77:28:af:40:06:d6:15:07:6c:e3:0d:2b:99:
aa:b4:82:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:11:51 2025 by rpki-client