Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: NPyM4QKDM85lJyB7+VW/xcR3MNN47OL7t1r0eryVcRo=
Subject key identifier: 5B:82:FA:3D:8D:9B:5F:B8:95:27:FD:4E:7E:DF:E2:7C:70:AB:D6:51
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 0196CB7329FABCC4FAB712CC12F97C06A3EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 1541
Signing time: Tue 13 May 2025 21:00:44 +0000
Manifest this update: Tue 13 May 2025 21:00:44 +0000
Manifest next update: Wed 14 May 2025 21:00:44 +0000
Files and hashes: 1: Ylu4oY650LeSLzKfRWZsKd7D6d4.roa (hash: at13Jjp52CyKiekCDznMGprsJGH6Ha6O/Aegpe9S1N0=)
2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: KEgDXRzQahS2zwQmbJsI9OdLNGpfoPLQXrerlQ1VENU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:73:29:fa:bc:c4:fa:b7:12:cc:12:f9:7c:06:a3:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: May 13 21:00:44 2025 GMT
Not After : May 14 21:00:44 2025 GMT
Subject: CN=5b82fa3d8d9b5fb89527fd4e7edfe27c70abd651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fd:e6:60:e8:e4:fe:a8:23:de:b0:82:03:5e:
cc:79:1e:a6:6a:e9:64:d0:52:c0:50:f2:79:56:2f:
74:b2:59:4e:3e:13:ae:94:f3:ba:2f:ff:50:a0:1b:
f8:a3:e2:c1:f5:62:03:02:f1:a5:59:27:12:5c:e2:
8b:92:d2:d0:c3:fb:13:43:2f:ce:3f:ef:9d:f8:19:
d0:8a:d7:35:ab:75:ad:d7:e6:de:77:f4:53:2b:e7:
56:99:9b:41:1d:dd:ab:e4:1d:e5:10:72:88:c6:08:
89:90:c9:6c:ca:a1:87:b9:39:10:eb:2a:f8:b2:32:
49:4d:33:58:96:0e:f5:5e:21:9b:ff:ee:e7:d4:9c:
3b:f0:76:50:44:34:8e:9a:bc:5c:e0:e1:89:6b:82:
bc:7d:a9:fc:e2:4a:55:73:74:19:d7:91:bf:28:01:
ce:2c:2d:97:a0:e3:d8:91:8a:90:74:97:f8:79:ef:
31:26:bb:2f:ce:20:8d:70:e9:9e:d5:36:60:82:d8:
a2:db:61:60:f2:ee:5a:30:5b:69:24:63:10:58:9e:
88:28:2b:f2:3e:34:37:aa:e2:de:ae:33:f0:80:08:
e0:06:bb:31:51:de:c7:0f:cc:44:b1:ef:29:2d:e3:
8b:ca:04:92:cc:db:da:7f:dd:78:f6:d6:08:50:18:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:82:FA:3D:8D:9B:5F:B8:95:27:FD:4E:7E:DF:E2:7C:70:AB:D6:51
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:20:66:96:7e:c6:77:f4:1f:ab:fd:a3:c7:d8:32:d5:0f:2d:
40:3d:eb:0a:3c:01:4b:3f:0d:ed:d8:4a:1c:7c:7e:77:44:9f:
1c:cf:6f:8b:ef:84:dd:3d:dd:74:95:35:6e:02:d6:73:6a:98:
59:c8:93:a2:fe:60:b7:91:0d:4f:e4:ad:6c:82:96:1e:20:09:
08:4c:9b:78:c8:43:1c:02:50:6e:f2:ed:d1:75:ab:50:6d:8c:
6a:91:3a:22:83:16:ea:2b:51:9e:a5:57:52:ad:47:a6:85:db:
88:9f:df:9f:18:fd:af:cc:0c:89:54:02:d1:74:a7:07:36:9b:
53:f0:bb:60:69:92:4d:3a:40:13:a6:ce:fe:44:f3:f3:8c:31:
88:ad:3e:6d:00:4f:33:95:fe:bd:ef:6b:14:be:c1:fa:72:3d:
cd:d7:9c:73:3d:3b:c8:b7:9f:f8:f6:97:a6:0d:f4:5a:5f:df:
0f:92:3c:2f:19:41:3e:0a:5d:90:df:c4:4a:14:80:3c:a9:00:
d5:d9:54:86:19:3e:58:f2:ec:84:e9:de:25:43:00:88:eb:06:
5b:ff:36:f7:7e:95:10:93:d0:e1:3d:42:f9:71:5d:c1:be:6e:
fd:89:1a:00:af:f8:8b:a6:fc:8a:08:51:f1:6c:41:7f:1f:6f:
97:5a:a0:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 23:03:31 2025 by rpki-client