Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
File: zE4rrFHZy3KbGnVijua0ycHp_8g.mft (raw, json)
Hash identifier: BZC5mPyHsuR0qHy7Kr+nDL3M0cLJCalGP78QMOoLH4w=
Subject key identifier: 8A:EC:88:A7:E4:DD:E4:29:EF:0E:D9:1C:8A:FB:80:13:42:C4:DE:4F
Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Certificate serial: 0196B85A231FA2008709417A92D6182D45F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
Manifest number: DC
Signing time: Sat 10 May 2025 04:00:37 +0000
Manifest this update: Sat 10 May 2025 04:00:37 +0000
Manifest next update: Sun 11 May 2025 04:00:37 +0000
Files and hashes: 1: O_wHUsAPrNDflBZDUMtdY6xsx-Y.roa (hash: ARirtfJZlvrV6Gh7ZW/gDyQsG60JpK7a/eIqEIlcaSo=)
2: zE4rrFHZy3KbGnVijua0ycHp_8g.crl (hash: ZLtDtT6MQLYT8TEs+Zrv+Rys2SORXGLBw0eSVWo+v7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:5a:23:1f:a2:00:87:09:41:7a:92:d6:18:2d:45:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Validity
Not Before: May 10 04:00:37 2025 GMT
Not After : May 11 04:00:37 2025 GMT
Subject: CN=8aec88a7e4dde429ef0ed91c8afb801342c4de4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:43:66:21:a6:59:a2:be:8a:bb:91:2e:dd:2a:
5c:89:da:d2:b1:56:2f:57:83:ac:c6:b6:e3:92:10:
a6:a9:db:ba:44:3a:c0:e0:aa:a8:3b:f1:32:0a:0f:
1a:1e:98:cf:2f:d8:a7:2b:18:c7:f6:2d:c4:f1:20:
d0:2b:9e:98:15:55:bd:6f:7f:78:49:13:00:1c:c3:
09:c1:7d:7f:54:b2:55:25:18:b3:e3:01:96:4c:be:
05:fc:9d:25:60:79:60:6d:1b:79:84:2a:20:0b:8b:
73:64:73:18:60:c9:60:17:67:82:e0:ed:5a:d7:0f:
c6:89:be:33:61:88:03:9b:d2:e1:3d:1d:57:26:b2:
7f:bc:b9:b7:d7:aa:29:69:27:66:09:77:9e:a9:ea:
fc:d6:17:ea:ef:53:03:a3:2c:94:82:35:a5:bf:49:
3d:80:e4:d6:dc:9f:83:7a:01:64:9c:b8:f1:fa:37:
70:36:c3:7a:85:25:63:70:dd:2c:2e:8e:00:b7:e4:
dd:2d:28:ee:79:66:91:60:d8:cf:98:59:74:f1:18:
ca:99:6c:f0:bb:6d:cb:1b:d7:d5:c6:3f:60:5a:e4:
fe:a1:f5:08:0d:b4:aa:fd:ce:58:6e:7a:7e:f4:a6:
e5:9f:45:09:23:99:5b:9a:6e:1a:ae:6e:61:4e:d9:
68:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EC:88:A7:E4:DD:E4:29:EF:0E:D9:1C:8A:FB:80:13:42:C4:DE:4F
X509v3 Authority Key Identifier:
keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:9b:1a:03:5d:70:10:70:df:24:61:b9:45:38:ec:40:0b:f5:
94:ca:ea:9b:ec:0b:00:67:4f:df:6d:6c:a2:69:ad:50:c0:4f:
b0:68:f3:b0:aa:75:e7:a1:02:af:dd:29:9d:e0:00:bf:73:d0:
bb:cf:03:96:17:17:29:9c:ba:da:52:6c:c0:ca:a3:bc:72:13:
00:a2:02:28:79:4e:16:8d:f3:09:ea:7b:f0:37:b7:c3:d6:11:
05:bc:b1:1b:50:e9:ac:a5:68:00:6b:36:d7:7f:a7:dc:8d:f3:
8f:38:ea:63:ce:c2:fe:8f:e5:6f:a3:cd:ac:69:a5:35:f9:bd:
fd:2d:0d:91:6a:ba:b3:21:ba:78:a9:56:27:6f:05:ce:b6:1f:
52:ff:d1:18:07:8f:13:32:01:ea:be:f3:8d:b7:3e:2d:3e:46:
e0:e1:7f:e4:de:9e:e8:fa:af:1b:18:ab:d7:34:55:b6:62:ee:
8e:2d:cc:d1:37:2b:2a:75:93:b3:cb:c7:39:5c:df:6c:f9:30:
92:f4:ec:35:47:43:b2:4d:3b:d1:77:16:79:aa:b1:7f:bb:ff:
b5:d6:bb:db:3e:d9:28:13:db:27:a0:4b:bc:c1:07:84:a7:78:
11:95:fe:dd:97:7c:0c:5d:bc:32:a4:4c:25:76:b3:c2:40:fa:
8f:5b:6a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:52:06 2025 by rpki-client