Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json)
Hash identifier: NJ9cj6HwPd99/hYwiXxZvdrjAqHDOE+V8CyZElycdy4=
Subject key identifier: 1A:41:A2:52:BC:C3:11:B0:2F:F1:C1:D4:18:AD:60:9C:37:B2:AA:EF
Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627
Certificate serial: 0196B823306D4DBF0ADC7957DFC683610CC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
Manifest number: 148C
Signing time: Sat 10 May 2025 03:00:35 +0000
Manifest this update: Sat 10 May 2025 03:00:35 +0000
Manifest next update: Sun 11 May 2025 03:00:35 +0000
Files and hashes: 1: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: 4ury7OLwSeUQNw+pOARmOLODplwMxN/r6W2UGbC3uro=)
2: ZBPuASXAJcjpb4z2Gk47z8Bokws.roa (hash: xXQRbhIxvcjZLo2Nk1OZPyhXjwNTzt2gl2oGbinvPSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:30:6d:4d:bf:0a:dc:79:57:df:c6:83:61:0c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627
Validity
Not Before: May 10 03:00:35 2025 GMT
Not After : May 11 03:00:35 2025 GMT
Subject: CN=1a41a252bcc311b02ff1c1d418ad609c37b2aaef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:28:53:7f:5e:42:1b:9f:bd:87:61:54:1d:3c:
cd:0b:2b:2b:8f:17:ee:a1:bf:23:aa:a4:5b:ad:82:
f8:59:4a:ae:e3:9b:58:df:bf:e2:0e:75:73:6e:80:
8a:3c:7e:f8:3a:1b:fe:e1:ca:17:4f:a1:1d:09:d1:
10:6c:7a:13:c6:4a:fd:02:9f:f8:48:5e:a3:2b:19:
67:4b:a4:a5:5c:6b:af:c9:64:42:2f:1b:6c:2a:09:
f6:2b:93:09:f0:c1:8f:85:b8:23:bb:9e:1e:79:18:
ba:9e:e2:59:27:8a:d7:cc:ee:38:e7:8e:0b:0c:dd:
6f:de:4d:71:01:51:18:6b:67:0c:be:a5:59:36:33:
34:a2:5c:6c:55:1d:0d:b7:82:f3:d8:0b:fa:43:f9:
04:64:3e:92:59:8c:4a:ae:59:82:0e:9d:bd:37:e8:
f1:1c:36:00:86:8c:bf:9b:22:31:d9:c0:30:03:f3:
b7:c3:e1:a0:dd:fa:39:93:10:bb:87:95:93:cd:d5:
b0:49:f6:a9:17:84:1d:a1:a1:99:2c:10:5a:a0:fa:
d1:68:99:69:04:10:1c:d4:bd:24:64:21:ca:2e:bb:
2f:d1:ed:1d:7d:29:ab:f1:82:62:73:ae:96:96:e6:
79:2e:8a:cd:fc:e3:4f:0e:72:8d:b3:cb:4b:72:d0:
c8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:41:A2:52:BC:C3:11:B0:2F:F1:C1:D4:18:AD:60:9C:37:B2:AA:EF
X509v3 Authority Key Identifier:
keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d1:ab:6c:15:fe:f6:17:5b:85:83:a1:96:6f:55:54:93:c6:
cf:60:21:56:fc:e8:38:f5:79:9c:30:6b:05:d7:63:ec:9a:8e:
e5:3d:3f:77:39:b4:6a:3b:fc:40:07:5b:85:d4:58:2d:84:27:
95:05:ad:12:f9:24:e3:6d:5b:b1:0e:a3:55:4e:00:ad:f8:11:
80:10:b5:42:71:64:ce:c6:f7:0a:bf:e6:be:27:bf:c1:45:96:
40:21:8b:08:6f:3e:4d:49:49:f1:84:fd:47:34:0a:06:74:44:
10:b7:4d:87:99:a6:f0:f2:a3:eb:cd:35:59:fe:c6:af:66:42:
9d:0c:42:77:3c:c3:ba:cd:f7:2b:18:eb:26:c8:73:d6:ba:aa:
0b:3b:6e:3f:5b:37:95:58:0f:fd:ab:3e:bb:92:20:3e:3e:6c:
17:20:b9:89:6b:d6:0c:db:dc:45:44:ed:98:3f:42:d8:84:c9:
38:12:8e:ce:15:8d:96:c6:dd:56:3f:4d:13:e9:35:66:e3:62:
6f:2f:cd:69:0a:52:d1:cf:7a:d5:90:56:49:ea:81:99:56:19:
38:6b:d6:68:c9:c6:9d:b2:be:d2:50:ad:a8:10:d9:bb:ea:89:
1d:30:e7:de:cf:42:9a:2c:ab:db:8f:bf:5d:5d:85:40:1a:3d:
1a:68:50:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:39:50 2025 by rpki-client