Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: wIe51rTrD4F9wv/ipxhaTudKczd9Nuq2xehc8JEamas=
Subject key identifier: 56:9A:82:5D:BC:A2:2B:2B:FF:49:B4:88:80:3C:89:06:09:44:09:94
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 01958CCE5DB0A933F935B690D3177FC36C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 0C4A
Signing time: Thu 13 Mar 2025 00:01:29 +0000
Manifest this update: Thu 13 Mar 2025 00:01:29 +0000
Manifest next update: Fri 14 Mar 2025 00:01:29 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: 037pzEV4HjoQfN50pwaG1TUhva1ZGmUl9W+izocek6Y=)
2: anoG2QxpBajiR81r5Nnqj0baENo.roa (hash: KO9yPbtejqfpWJpsarLnmq3okmJ48dSkW7G2+vLUOFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:5d:b0:a9:33:f9:35:b6:90:d3:17:7f:c3:6c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Mar 13 00:01:29 2025 GMT
Not After : Mar 14 00:01:29 2025 GMT
Subject: CN=569a825dbca22b2bff49b488803c890609440994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:3b:49:04:f9:da:32:14:e6:70:50:61:d5:a9:
68:1d:2e:c9:bb:fe:d0:c6:d7:8f:cb:35:a3:db:97:
13:6c:c5:ed:5d:99:87:e8:db:10:e8:aa:f0:1e:64:
1b:c5:e9:1c:e3:b7:57:53:e4:59:fc:a9:a2:94:15:
22:42:16:31:42:55:0a:10:2c:8c:06:f8:88:18:69:
d0:8c:19:98:69:32:4b:85:71:7c:e7:12:37:ff:e7:
1b:15:97:34:59:39:98:09:97:1f:0b:c6:fc:21:96:
25:fd:3a:b8:23:30:74:8a:6d:f3:88:97:fc:26:86:
a5:73:09:03:94:97:89:a3:fb:ed:8c:80:5c:52:2c:
87:cd:98:b9:fe:da:8c:81:d4:0f:10:3d:f9:19:d8:
a4:e1:d7:22:85:82:96:48:02:53:6c:d7:48:84:f3:
29:f1:d0:0a:84:6f:7b:8d:b9:0e:41:da:32:56:9d:
d1:aa:47:c4:af:78:60:cb:cb:ca:60:ba:31:8a:06:
3e:b8:4f:28:d4:7b:57:7b:7e:d8:5b:c6:7d:da:2a:
a6:9e:8e:e2:2c:d9:da:e8:89:09:cf:c0:31:26:cb:
09:1b:b4:33:84:8d:8d:99:5e:d2:86:14:17:5e:1a:
06:e1:ea:95:39:2d:cb:75:09:de:94:08:88:f2:b1:
0f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:9A:82:5D:BC:A2:2B:2B:FF:49:B4:88:80:3C:89:06:09:44:09:94
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:f7:23:d6:ab:9c:9a:d8:5d:06:70:bd:e2:5e:ec:22:20:db:
fe:9b:e9:c5:10:8b:48:63:11:0e:eb:c1:9a:5c:d3:c2:c5:ff:
3e:e2:f8:6b:65:ec:0f:b4:45:e5:da:6d:73:1c:ff:3a:ea:21:
57:0f:91:84:cd:fd:08:6e:19:3e:6a:82:20:d5:83:30:2d:f5:
cf:43:d4:5f:13:8e:16:c1:e2:f4:47:3d:3c:e9:80:52:99:eb:
99:bb:b2:af:ee:b7:db:a0:96:a4:c3:1f:47:8f:e8:f1:e0:cc:
bc:de:ce:60:1b:f8:97:6e:48:44:bd:b3:41:cc:85:2f:3d:a4:
48:9c:22:60:2f:74:2f:da:3a:58:bf:2a:29:cc:5a:3e:ad:86:
9d:e6:f0:68:01:a6:7d:57:ab:b0:7a:51:53:7c:a5:6c:a8:fb:
86:e5:12:47:e5:16:2f:a8:aa:04:1c:9a:1c:e2:bf:46:18:85:
db:60:53:7c:4e:79:9a:34:8b:e2:9f:93:40:c7:92:b0:31:62:
a5:c6:ff:b7:61:e9:b9:db:99:81:ee:ce:fa:f7:ab:2d:b9:e5:
c4:aa:1e:4b:95:b4:1c:2b:bc:e9:10:7b:24:56:cc:93:49:c7:
1b:9c:31:be:c0:bf:09:a2:50:6a:89:05:89:7d:6d:a0:e3:99:
eb:37:b0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:39 2025 by rpki-client