Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: Nsp+0/s/Q3KlTAzWvhhZ8HYW1mRW90lFiUbrcoFjn4k=
Subject key identifier: 1C:3E:2B:5C:51:DA:15:E2:52:9E:99:B6:FD:00:EF:CD:AF:B9:A8:5B
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 01969E6344DC7659DB07C8AEBFC3A1F7CA34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0694
Signing time: Mon 05 May 2025 03:00:27 +0000
Manifest this update: Mon 05 May 2025 03:00:27 +0000
Manifest next update: Tue 06 May 2025 03:00:27 +0000
Files and hashes: 1: UD4cQq7SyCABLCZHHC1Ou_EeL6M.roa (hash: tfgZKXi2rZuQqy6q4ZM+ZUGFDVqdyYkcUnUVHT5tgpI=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: UDmyysLcdXiSCv0eUrSTDNzIsXIeFJYKcDEe4kS8dTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:63:44:dc:76:59:db:07:c8:ae:bf:c3:a1:f7:ca:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: May 5 03:00:27 2025 GMT
Not After : May 6 03:00:27 2025 GMT
Subject: CN=1c3e2b5c51da15e2529e99b6fd00efcdafb9a85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9d:8d:05:56:2c:62:0f:c0:64:bd:61:10:79:
50:aa:97:ac:33:2e:0c:4d:7d:25:c9:93:48:55:c0:
c6:eb:48:1a:08:9e:b8:0a:e0:d2:64:d1:78:82:86:
07:ef:d3:e5:6f:96:6b:89:3f:df:4d:30:1b:91:54:
e4:71:04:17:f1:e5:cf:fb:bf:3f:61:37:46:42:e0:
e2:55:1d:55:bb:bd:18:57:4d:50:87:71:6c:ec:49:
1b:fb:cb:0d:17:76:4e:7e:b7:87:a9:1b:ce:2e:f6:
32:93:e9:02:b3:3d:a6:af:b8:54:c6:3b:d3:3e:1f:
6d:25:fe:27:67:92:de:1f:ef:fe:3a:c0:df:f8:8f:
6d:df:f2:fd:74:eb:4d:8e:34:70:e6:0c:84:b9:e2:
64:51:3b:2e:df:ea:40:5a:d3:87:5c:f6:42:b6:1c:
ec:2f:c8:7d:44:ea:2e:01:e4:ce:e5:18:11:d6:fa:
ed:33:3e:21:e6:3f:4f:fb:02:24:70:0c:e1:79:92:
c8:5d:53:32:99:19:61:f6:b0:e9:42:0b:d5:13:dd:
c3:4d:ed:e7:65:7b:fe:7c:be:ca:1e:0f:28:dd:d5:
d5:dd:69:eb:39:22:01:3a:ed:d8:38:41:cb:82:bc:
e1:13:a1:fd:41:4a:ea:7b:10:0a:c8:dc:26:79:f5:
4d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3E:2B:5C:51:DA:15:E2:52:9E:99:B6:FD:00:EF:CD:AF:B9:A8:5B
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:6c:b6:d9:bc:f0:3d:8e:38:0c:e3:d5:a4:10:a8:8f:90:6d:
16:b8:23:cf:ae:b6:44:ff:97:0c:8c:5f:fe:94:82:3b:cc:19:
8a:95:af:e3:3a:c6:da:cd:dc:71:22:cc:af:aa:9a:d9:13:91:
47:b4:73:92:c6:a8:2b:d5:cd:0a:5b:45:eb:9f:67:68:55:f6:
f9:09:64:85:75:23:53:e8:86:3f:8d:53:54:79:a2:73:6e:00:
8f:ec:81:21:0f:de:08:b4:d9:75:41:7c:48:21:38:f1:f8:a4:
ef:f7:99:ef:8d:95:92:ee:b9:62:bd:3b:eb:2b:85:59:e5:2f:
c6:96:87:e8:c7:0f:71:97:2c:ad:86:21:2c:4c:9f:18:b4:8a:
f9:63:9e:97:9d:c8:ad:1f:16:8a:6c:f1:a3:c7:f8:31:70:6d:
36:f1:4b:a2:4e:d4:9a:f8:61:4c:25:4a:f7:1f:21:2a:98:37:
d3:7d:94:52:f9:de:48:5d:ae:fb:34:e6:1f:b5:0a:dc:38:11:
5f:f8:f8:34:90:5e:fd:5d:a8:42:bb:3e:77:ba:27:15:df:70:
42:42:c6:13:1c:f3:92:14:fb:3a:32:ed:c1:87:85:16:67:2f:
42:e0:64:16:e2:31:fb:8d:ff:5d:89:7d:4a:50:a1:44:73:1f:
af:ae:46:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:13:33 2025 by rpki-client