Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: vgb67NCOnIWmlkEMr0guUDiVl9lSECNEVEzFNP42Oqs=
Subject key identifier: 0E:18:BF:74:73:40:93:2A:24:30:A0:63:D0:AE:F1:70:0A:93:1E:0D
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 0196AF2043D48CEF120152A5F25AE0ED53B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 05A0
Signing time: Thu 08 May 2025 09:00:49 +0000
Manifest this update: Thu 08 May 2025 09:00:49 +0000
Manifest next update: Fri 09 May 2025 09:00:49 +0000
Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: rvtZJ69oXuE68AkW/H2PSGqAhfReTQAgEXNS60c7oEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:20:43:d4:8c:ef:12:01:52:a5:f2:5a:e0:ed:53:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: May 8 09:00:49 2025 GMT
Not After : May 9 09:00:49 2025 GMT
Subject: CN=0e18bf747340932a2430a063d0aef1700a931e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e8:f2:a6:e8:78:87:16:90:d8:34:b0:5e:f4:
0f:34:23:92:98:4e:c0:e8:a8:e6:e4:26:98:d7:90:
3b:94:f6:0b:79:13:e3:d4:b4:4f:fe:b6:f0:d6:d0:
2a:e9:08:ac:38:52:df:d0:60:09:43:f8:56:53:e3:
a0:34:ab:c4:1d:8c:73:ee:40:e1:5c:66:b0:75:d6:
e2:df:91:95:0a:72:ec:86:4f:d3:5f:ee:19:2d:ce:
e4:0f:14:0e:89:2f:9f:f9:89:e9:07:ab:a4:6a:89:
4d:5f:ae:02:7f:f2:e6:0a:7b:9f:cd:38:5a:40:f6:
99:66:40:d3:bb:2d:e7:51:a4:5b:af:61:8f:25:22:
e0:0d:27:ff:9b:93:a8:c1:aa:43:15:be:cd:63:31:
4f:6b:0f:b7:64:a5:04:8a:e3:3d:a1:17:87:9b:f0:
c5:bf:b0:4d:66:64:1b:12:49:3d:a9:e9:1d:3d:62:
c8:5c:ce:2f:3e:43:4b:44:af:a8:f0:b1:e3:0d:ee:
f6:a9:53:86:66:96:6b:c4:c1:42:08:a3:8c:2d:44:
5c:53:40:24:c6:9d:ef:98:a2:2a:90:64:4c:46:f1:
34:28:2a:94:fb:96:8b:37:5e:2a:c3:a3:78:54:a6:
60:3b:15:ae:33:b1:2c:db:fd:67:d6:cd:5d:18:a5:
a3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:18:BF:74:73:40:93:2A:24:30:A0:63:D0:AE:F1:70:0A:93:1E:0D
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:da:fa:b0:ca:88:da:5c:4e:9f:bb:19:f2:fc:12:93:bb:97:
ff:4c:e0:b8:c4:df:47:47:14:c5:af:63:5d:d7:e9:09:53:1d:
59:37:d2:c4:ed:98:f9:f7:e9:b7:1d:b5:9e:ff:52:65:bd:8e:
09:36:f2:26:32:c6:4c:88:f5:ef:bb:00:95:ff:6f:59:aa:d3:
f6:72:43:ac:e8:f2:ba:18:a8:3c:a2:e4:d1:50:80:e3:61:81:
56:a1:c7:56:d4:62:1a:17:ce:46:22:fa:ef:c3:ea:78:b8:f7:
08:f9:0d:46:6b:2c:a0:54:ac:01:42:b0:da:dd:57:e2:04:78:
e1:4c:ce:d1:46:04:3b:ca:70:c4:2f:28:fe:0e:88:82:c4:f6:
fa:d1:99:e7:54:e9:34:e0:36:91:3e:97:7e:85:23:b5:3d:38:
1d:60:cf:84:4e:cf:2d:3d:a9:26:1a:8b:a1:b9:de:c0:02:7f:
68:c4:b2:be:b5:26:15:31:de:6b:d2:0a:96:2d:6b:2c:3c:c6:
87:46:3b:c1:4e:9a:e9:2e:f3:6f:3b:da:6e:ca:48:d6:d2:0d:
e1:c7:25:0c:53:11:76:3f:70:5f:67:6d:1f:30:46:6a:38:61:
db:34:64:88:39:46:cf:5c:a1:7d:b7:1d:6b:a9:9f:7a:67:0a:
fb:03:ba:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 12:12:28 2025 by rpki-client