Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: FFlOe9A4M3uXss+NEcD/sgM0kMRdlE+2xDCc0Aoeedo=
Subject key identifier: B4:12:D4:35:A9:EC:F7:DA:C6:3F:2F:39:30:9D:92:4C:E3:3E:CE:2E
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 0196BF37D9015AF4547805506A409CF35DDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0BDB
Signing time: Sun 11 May 2025 12:00:30 +0000
Manifest this update: Sun 11 May 2025 12:00:30 +0000
Manifest next update: Mon 12 May 2025 12:00:30 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: 1jV81I3O3+2mUJHrZ+a4E1DTMOySgmEbVtm8NvIKB/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:d9:01:5a:f4:54:78:05:50:6a:40:9c:f3:5d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: May 11 12:00:30 2025 GMT
Not After : May 12 12:00:30 2025 GMT
Subject: CN=b412d435a9ecf7dac63f2f39309d924ce33ece2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:25:08:ed:e9:b1:37:23:4a:16:9c:67:39:65:
a7:01:4f:af:aa:5a:75:0c:d1:4c:80:be:70:cd:3e:
f4:47:0e:d5:0f:1a:8a:a0:22:89:a0:2e:e6:3d:51:
01:86:83:f3:f9:5e:e2:51:ec:ed:3f:7e:dc:28:d3:
4a:e4:67:4c:10:97:2c:8e:28:f4:b0:a3:ec:83:cf:
70:aa:d0:f4:9a:b7:7f:69:a7:90:48:f4:54:8a:c0:
42:1b:37:01:28:16:0e:f9:64:69:eb:01:ef:77:6a:
65:b6:02:14:a5:a4:1c:08:fb:25:f4:cb:b5:3d:80:
0a:1f:31:20:f1:7a:46:f6:bf:8d:e6:30:5e:57:59:
2a:6f:57:26:4c:4b:59:33:6b:f7:90:0f:25:e1:50:
96:db:07:54:73:a7:a7:de:f4:ed:4d:f8:ea:07:ff:
b2:49:95:2c:2a:69:b2:24:1c:5d:b6:92:21:17:22:
00:ab:bf:40:65:4b:f0:a5:21:b1:6b:80:83:39:8f:
1b:d4:c2:82:6d:c5:8d:35:ea:2f:58:b0:c9:01:53:
e7:a1:e8:6d:95:7e:7f:9c:35:a4:61:7b:1b:91:45:
02:02:ad:69:ee:2b:36:3f:e1:b0:ca:0c:22:fe:03:
a2:66:bb:55:41:bf:4b:94:5b:1b:63:1b:38:eb:19:
ea:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:12:D4:35:A9:EC:F7:DA:C6:3F:2F:39:30:9D:92:4C:E3:3E:CE:2E
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:73:53:4d:26:e0:6e:d2:05:bb:6d:0c:9d:9d:51:92:83:b9:
a6:7d:1d:7e:f9:c1:bd:c2:08:3e:eb:76:e1:a3:91:38:50:85:
b2:46:b5:eb:12:46:2c:11:02:eb:4d:72:09:1c:81:fb:35:26:
c3:b6:8c:5a:3b:9f:c1:bd:06:ca:98:1c:f6:94:d6:1f:06:ee:
20:95:d2:02:4d:0f:38:c5:da:9c:b8:28:f3:81:30:42:b2:3d:
e5:45:d7:1d:d5:d9:ee:86:31:86:9f:3a:91:b9:6a:e5:59:89:
be:5f:43:6d:36:ed:cf:db:19:3b:46:13:19:94:da:84:f8:58:
68:a5:5c:c6:02:0a:ae:fd:eb:25:7e:07:a2:e9:6a:73:16:8a:
10:fa:49:c8:3b:c3:56:0f:6e:39:e7:10:6d:50:ee:f3:99:b7:
06:b0:57:8c:bc:c2:7d:d7:8a:50:7b:68:43:5a:81:9c:b9:11:
80:59:08:e2:aa:58:d1:e8:39:69:e7:e9:d5:70:0b:bf:99:36:
62:2b:53:f4:2f:6d:32:2e:f1:94:03:8c:13:b3:62:02:63:4f:
84:99:e9:f1:f9:23:11:93:5c:7b:3b:12:51:94:24:7c:84:55:
c9:13:10:33:4a:8e:27:5c:b0:3a:69:3b:42:7f:a9:39:b3:54:
13:12:d7:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:39:54 2025 by rpki-client