Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
File: 0zWMPscfwZpqyYRrr03lmDY1cpM.mft (raw, json)
Hash identifier: 5Bg9cO9aC+V46aYFUE2mVmbGzgmZ10uw+47jLM7iRVw=
Subject key identifier: 5D:CB:04:4A:7A:7E:96:E8:30:D6:2F:D2:72:C7:EB:16:B8:14:B7:3D
Authority key identifier: D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
Certificate issuer: /CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Certificate serial: 019638406A65267D77B978DF3ED7BA4EB758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
Manifest number: 1480
Signing time: Tue 15 Apr 2025 07:01:07 +0000
Manifest this update: Tue 15 Apr 2025 07:01:07 +0000
Manifest next update: Wed 16 Apr 2025 07:01:07 +0000
Files and hashes: 1: 0zWMPscfwZpqyYRrr03lmDY1cpM.crl (hash: 5HvGg4P6IkDZH/yyvXXWRXeu0zCOnDx5r5jDTQ/JqI8=)
2: LYl-ckZTCA5UyIouoIve31n38qY.roa (hash: vPSTPP2+IXPu60S6+w3ugZNedqIYo00aGNP955WAY1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:40:6a:65:26:7d:77:b9:78:df:3e:d7:ba:4e:b7:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3358c3ec71fc19a6ac9846baf4de59836357293
Validity
Not Before: Apr 15 07:01:07 2025 GMT
Not After : Apr 16 07:01:07 2025 GMT
Subject: CN=5dcb044a7a7e96e830d62fd272c7eb16b814b73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a5:18:81:bf:8c:7f:b1:69:92:1b:8f:e2:91:
20:3f:e2:96:fd:c9:c7:9d:c3:cd:c6:2e:fa:4b:70:
ee:0b:a7:85:e4:3a:64:84:19:c8:a2:50:a4:60:f2:
e1:cd:a1:04:58:24:df:61:d8:66:fa:1e:84:8c:c8:
8e:f4:a2:33:0e:cc:19:30:d4:17:d5:29:78:85:29:
53:0a:1a:c9:07:17:e7:bb:be:99:b3:5f:b3:d8:46:
2b:72:3c:da:39:8b:33:e5:56:a6:2a:20:a9:e4:0a:
db:90:97:58:ea:cd:b6:8c:74:d6:97:11:bc:8d:95:
ee:b8:e6:e7:8a:7f:73:b4:6c:17:ac:e1:7a:3f:e4:
88:9b:c0:48:d4:1d:e3:73:6b:f9:78:76:8b:b3:70:
8d:2d:c8:71:19:48:6f:15:19:90:d0:8d:70:f8:ab:
8c:10:c0:52:15:9d:26:ce:62:3e:c9:9e:52:35:6b:
5f:0f:0c:64:fa:d6:34:42:f9:d0:a6:cc:28:a4:3a:
d6:c0:eb:ec:38:2f:98:51:18:e3:36:9d:0c:5c:5d:
4e:c1:15:cc:63:fe:95:e8:f3:db:67:6a:d9:79:b3:
5a:94:58:7a:41:c7:02:96:5b:ef:5f:57:31:d8:2d:
51:e7:16:d7:cb:1a:ae:93:e9:c0:f4:29:87:ab:be:
cd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CB:04:4A:7A:7E:96:E8:30:D6:2F:D2:72:C7:EB:16:B8:14:B7:3D
X509v3 Authority Key Identifier:
keyid:D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:d8:21:de:5b:db:2a:20:71:66:d9:5e:ce:ec:4d:ce:29:b3:
ce:a0:ac:7c:54:ae:e6:1b:a9:de:c0:c4:30:d9:f1:c7:bc:d5:
ca:35:b6:35:9b:45:ad:fc:46:47:0c:c3:10:9d:bc:18:44:1f:
27:e9:cd:42:d3:9a:f8:22:a2:6c:1e:74:df:94:33:5c:df:50:
a3:75:c4:03:1c:99:59:ef:99:07:f5:40:3a:b8:62:5f:a1:5a:
6c:cd:4f:e0:f2:49:f4:db:b9:6a:f4:9e:27:d6:fe:16:42:6a:
f6:b0:13:48:e5:3c:35:f4:5e:b2:f6:0b:d4:4f:40:a0:ad:58:
bc:d3:3b:8f:94:0d:af:ea:50:25:df:d0:88:ab:46:cc:b7:3a:
d6:db:ec:4f:98:aa:ff:35:8c:94:98:57:f6:02:62:41:1b:3e:
55:27:ac:2d:3f:2a:e6:5f:d8:e0:d9:3b:82:5b:bd:0b:fe:b8:
eb:8a:05:1c:16:e2:43:da:4e:f3:94:53:09:48:aa:65:37:53:
8b:71:e4:54:d2:0c:ab:c9:3c:08:a0:3b:ca:fe:e9:6c:41:ec:
8b:85:d1:ee:83:9b:67:2c:14:4d:75:be:07:cd:bd:73:32:b9:
c4:25:77:40:e5:18:c5:8d:e3:58:a8:a4:cb:a1:de:4c:56:c2:
43:f3:ab:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 14:05:39 2025 by rpki-client