Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: yKCTnYOEZz95cY7B/0JCiTNVug5ytyvwVOnB0hNmfP4=
Subject key identifier: 18:17:8C:37:1C:9C:E7:E0:A0:62:84:6B:AC:AF:D5:0F:76:D9:56:A2
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 0196BD127275309C68D11B546C013E7FAEDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 39
Signing time: Sun 11 May 2025 02:00:24 +0000
Manifest this update: Sun 11 May 2025 02:00:24 +0000
Manifest next update: Mon 12 May 2025 02:00:24 +0000
Files and hashes: 1: yLKyshLk5Y8qo2HfRt0bfJWqtcI.roa (hash: CLpNYZZ3o+zwOI76Lm9XQZQEHlIeProjGVosiuqFQCw=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: q//9wdHn8aJfdqWk42QV0b7k+sQagT2Zkl4geYlWxrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:72:75:30:9c:68:d1:1b:54:6c:01:3e:7f:ae:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: May 11 02:00:24 2025 GMT
Not After : May 12 02:00:24 2025 GMT
Subject: CN=18178c371c9ce7e0a062846bacafd50f76d956a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bf:b8:67:19:73:45:75:32:90:df:75:0a:15:
a2:72:02:61:04:02:5e:91:97:e6:38:f0:2f:de:44:
0a:12:cb:8e:ca:3c:e8:58:8d:47:ca:52:e7:0f:4f:
2f:60:83:0b:89:5d:ec:e6:3f:46:10:99:17:31:9a:
e2:bc:aa:88:4b:ef:fe:43:3f:e6:ef:4c:66:ec:7f:
29:7d:56:09:11:1a:db:b8:fa:45:1a:f0:b9:8f:8f:
3c:12:ae:d6:95:4b:51:31:b9:fa:00:a6:ee:02:c1:
bf:48:88:0b:68:59:8e:be:dd:09:11:08:82:63:43:
61:05:05:af:48:25:41:e0:a0:e3:28:b2:33:94:57:
d3:b7:b0:07:43:f0:83:36:86:f9:a1:44:6a:28:06:
42:9e:cc:52:89:ce:d9:58:db:ae:40:ca:87:b6:07:
a1:c0:1a:61:91:15:71:9e:0e:52:e2:1c:46:c2:bd:
07:a5:1a:69:1a:0e:74:26:3e:77:cf:55:4b:94:f1:
50:2a:6d:54:a7:73:c9:ea:75:53:b9:77:3b:d9:03:
00:0e:4a:79:26:83:3b:fa:a4:5f:ea:ff:b7:ca:c0:
68:c7:73:c2:c2:e4:5d:6b:48:d3:8d:fb:b3:58:52:
b1:78:f0:3f:d4:69:59:b1:dd:9f:80:ec:55:c6:cc:
fd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:17:8C:37:1C:9C:E7:E0:A0:62:84:6B:AC:AF:D5:0F:76:D9:56:A2
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:34:11:56:24:de:b8:5b:70:fe:7a:7a:bc:31:c3:3e:2a:6b:
71:c9:94:35:11:19:64:ee:03:6a:81:85:72:81:a3:d7:51:66:
a3:44:45:2e:84:df:9e:f2:ca:98:a2:e8:b1:19:bb:16:f8:ef:
41:5b:7d:fe:81:63:46:3e:1b:53:4b:77:53:49:26:15:fc:1f:
88:46:50:4d:9e:6e:21:94:65:c5:37:4f:78:ea:33:5b:c0:64:
6a:4d:2f:78:b3:26:f7:71:a2:2f:1a:6a:b1:de:5f:1d:e1:e4:
32:73:da:4a:9f:95:fa:80:29:ec:9b:c5:ad:3b:4e:18:2e:f6:
5d:f4:44:e8:09:64:dd:06:f2:7b:2c:5a:2b:d7:90:50:60:fc:
24:05:36:9a:82:9a:ba:cf:4d:1b:4a:6c:5d:a4:c1:60:4f:24:
b8:01:df:cb:29:fe:24:2c:af:d0:8f:86:1d:55:eb:ae:ec:80:
b1:aa:69:36:e8:63:b1:f6:5b:29:ad:8a:fb:99:68:8b:d9:87:
64:c8:d0:f9:88:95:ea:ac:93:5b:3b:41:d4:46:00:13:b9:6c:
ed:4e:34:b3:d7:7f:c2:58:6a:47:b4:2e:e6:a0:fe:eb:fe:62:
cf:24:84:c3:d7:01:d2:80:d3:1f:8e:48:e5:06:64:2a:69:04:
45:46:f3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:42:39 2025 by rpki-client