Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
File: g-ZAPPcyIcEX6km8kjT-b0oR14A.mft (raw, json)
Hash identifier: iBnN6N6ERIWfVDWAn+rrbQE72SNjNEK5Z4K8Uba1Co8=
Subject key identifier: 3D:48:90:D0:AA:C8:18:37:FE:B0:BA:C2:28:98:8F:6A:1F:52:EC:10
Authority key identifier: 83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
Certificate issuer: /CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Certificate serial: 0196C3BA08B65A851DBE5D8A4A4A5B82A9DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
Manifest number: 102A
Signing time: Mon 12 May 2025 09:01:11 +0000
Manifest this update: Mon 12 May 2025 09:01:11 +0000
Manifest next update: Tue 13 May 2025 09:01:11 +0000
Files and hashes: 1: F478KPNWaWgwHEjAUDWV7KlTqQA.roa (hash: fiVEyWrn82XeJgJcuTMWEO2YQxgfDNcoh754eidkrnE=)
2: g-ZAPPcyIcEX6km8kjT-b0oR14A.crl (hash: JpZgy3Uwk23M4VOSWsM+Dc7ti7en+SwhUD8RhB5qujE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:ba:08:b6:5a:85:1d:be:5d:8a:4a:4a:5b:82:a9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Validity
Not Before: May 12 09:01:11 2025 GMT
Not After : May 13 09:01:11 2025 GMT
Subject: CN=3d4890d0aac81837feb0bac228988f6a1f52ec10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:b9:9e:06:22:30:4d:9c:28:3c:70:a7:25:
6f:50:e5:af:1d:7b:75:27:39:7e:74:52:9c:c8:2b:
3f:11:87:68:5d:a0:81:2b:79:91:b3:e9:95:bb:76:
07:6b:a4:3b:ac:8f:f7:bb:92:04:ed:a2:d5:1f:95:
7c:f1:03:53:66:17:f4:24:9f:da:f9:e5:64:52:e3:
e4:43:66:52:02:41:c4:40:9d:7d:6c:ca:43:8f:f5:
2d:d6:02:83:00:fa:1a:59:9c:81:72:f4:e8:2b:fc:
26:75:7a:37:9e:f7:58:78:04:3a:40:b1:1c:fa:44:
90:33:83:b3:ce:1a:2f:ff:cd:65:81:6c:05:6f:50:
b2:c0:2b:03:de:7c:22:2b:2d:44:65:a8:b9:04:57:
e9:c9:9b:43:22:df:5a:cc:a9:c4:6b:d6:a1:2d:04:
e4:ae:7d:44:07:b8:83:3a:ca:4e:12:d6:d5:3a:5d:
96:31:74:6a:1e:98:27:0c:0c:cb:45:02:2a:e2:d0:
e1:a2:da:45:7b:bf:66:4b:b7:ee:3c:19:ee:93:93:
b1:64:9f:7b:f1:8b:6d:c3:c7:09:e6:dd:32:ab:8a:
92:c7:2b:2b:a3:25:2e:e3:a6:95:69:10:e0:a4:2c:
f8:b8:cb:08:d9:62:32:ee:00:97:db:4d:7f:67:2a:
a6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:48:90:D0:AA:C8:18:37:FE:B0:BA:C2:28:98:8F:6A:1F:52:EC:10
X509v3 Authority Key Identifier:
keyid:83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:d5:a3:5f:ce:25:3e:7d:8d:ca:33:b8:f0:a6:f4:5c:98:08:
bf:a4:c7:30:35:49:86:01:74:73:5b:1a:95:b1:30:f3:9c:8e:
f1:48:9f:42:ae:b5:1b:13:f6:1b:62:3e:0d:9d:10:ba:51:3f:
55:8b:06:7b:a6:97:57:59:14:bc:d1:51:5f:74:0b:7e:70:fe:
23:97:90:21:6f:ad:b6:d5:f9:38:10:e4:65:d8:36:93:1b:e4:
13:4b:78:b8:fa:a3:5e:b6:41:5b:0d:fc:67:7b:32:19:92:f6:
f1:be:80:f4:ec:e3:2f:fb:b0:ef:6d:57:1a:ef:66:d8:5c:e8:
81:56:60:d5:95:f3:fb:25:50:28:ff:ae:ce:f2:90:21:c1:b6:
5a:34:00:44:d3:6d:53:9b:de:55:b9:fc:46:7b:eb:f4:52:6b:
7b:02:ea:3b:d4:b4:27:5b:3e:12:b4:be:ef:1d:ce:5f:7f:6f:
b4:67:b3:d1:63:a7:81:aa:37:9f:e2:59:4a:e5:7c:eb:4c:0e:
60:ad:b5:bf:50:22:b8:11:7f:60:99:21:15:44:3c:1d:08:fe:
42:c8:8a:24:ad:32:53:9c:84:c2:1f:ce:46:f7:f4:5c:f6:39:
25:bc:c0:f4:2a:a3:c9:bc:99:d5:8c:01:5a:16:4a:da:6a:f7:
98:5f:4b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:33:16 2025 by rpki-client