Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: JArdQh8jelInTn4E+BmJfTUCz6ctAQlMxaR9ymPX+t8=
Subject key identifier: CD:8B:A0:29:25:08:82:5E:86:BD:A3:04:B5:4D:8E:9B:6C:F6:6A:6B
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 0196A0BFB8E5501DFA9C7A1420D743D8A454
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1524
Signing time: Mon 05 May 2025 14:00:41 +0000
Manifest this update: Mon 05 May 2025 14:00:41 +0000
Manifest next update: Tue 06 May 2025 14:00:41 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: zMacyK931P6PuNxdgvAiwxKvkoohFAeg/y+oeqM6uKA=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:bf:b8:e5:50:1d:fa:9c:7a:14:20:d7:43:d8:a4:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: May 5 14:00:41 2025 GMT
Not After : May 6 14:00:41 2025 GMT
Subject: CN=cd8ba0292508825e86bda304b54d8e9b6cf66a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:00:3e:1a:e4:e4:4a:58:13:5d:b6:bd:f9:
d6:d9:d2:31:73:bd:52:0b:a5:81:45:93:e1:60:f8:
32:83:d5:b2:15:df:67:13:35:07:df:29:20:e3:29:
10:47:08:6b:88:ff:57:67:b2:b4:00:dc:ae:26:e7:
35:b7:71:2a:b3:49:ac:1d:48:a0:71:bf:74:1d:24:
b2:f7:fe:4e:87:31:6d:63:7f:22:24:b8:03:d3:bb:
f6:64:2e:be:c0:c9:92:eb:6f:38:0e:79:99:52:6d:
8a:32:ad:f2:61:11:e7:f4:9b:30:f1:8b:4e:22:f2:
9a:a2:0b:44:4c:05:a5:92:9e:60:01:b7:d4:83:b3:
b9:7c:70:ee:43:96:18:f2:ec:ec:0a:b8:97:7d:88:
dc:57:e2:e0:4f:1f:f4:77:b9:67:7d:69:d6:ea:d8:
6d:3f:11:1f:df:c4:f0:6e:d6:b4:95:ca:d1:fa:f4:
48:bc:0f:e4:d8:86:31:36:62:24:67:2f:4e:a0:1e:
78:eb:39:12:72:11:67:30:77:31:82:57:fa:11:a7:
4d:c3:25:aa:20:e4:31:ad:4b:fd:2d:dc:bd:07:ab:
52:c3:5b:02:04:7a:4d:8f:db:41:b0:0f:db:32:08:
ae:5b:b4:d3:da:bc:9c:c5:e7:eb:6b:9c:55:42:08:
5d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8B:A0:29:25:08:82:5E:86:BD:A3:04:B5:4D:8E:9B:6C:F6:6A:6B
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:a4:26:7b:34:73:21:1d:f3:1c:2e:a8:55:03:de:c8:7b:da:
46:08:9b:cf:80:d2:c5:20:94:c6:60:89:84:1e:f9:f8:29:9b:
cf:20:fb:73:0f:d2:37:17:08:cc:3d:37:a9:1a:4b:ef:a6:c0:
26:d1:b7:fe:00:05:ee:1d:50:8a:f1:ae:89:9e:a1:4a:59:82:
5c:61:d9:5a:08:92:39:60:51:66:60:d2:6c:a8:eb:de:6f:1b:
08:de:41:64:92:5c:44:31:cb:4f:af:ec:5d:e7:2a:75:1a:17:
cf:11:53:16:6a:85:42:51:b7:af:41:0a:f0:33:f5:2c:48:7b:
f6:fd:dd:09:9a:26:e6:0a:8e:39:59:bc:27:02:6b:52:cc:65:
46:36:c7:ce:39:8c:c6:84:98:12:93:5c:34:1f:4e:7a:9c:9b:
71:45:03:c9:ea:76:dc:24:af:aa:ee:a0:d1:65:99:df:73:c6:
cd:4e:46:01:f9:89:d1:3a:96:e4:c7:7c:3e:00:c4:0b:8c:7e:
9b:d6:2b:ff:8e:75:12:9f:66:18:bc:07:77:86:c1:64:fa:56:
00:35:54:a9:a4:73:ec:93:ff:aa:14:46:d7:0f:e7:be:2b:6d:
3e:e0:cf:1b:78:cc:c9:46:bc:d9:0d:67:32:01:33:31:af:17:
3a:6f:46:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 17:03:18 2025 by rpki-client