Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: /ItUz1wALS408p1Zeql+F6pniB/TUGaiqgOVGhMh2GU=
Subject key identifier: 24:F1:19:7A:FB:7B:3D:FB:38:2D:06:34:78:44:B1:0D:44:6D:59:A7
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 0196C615A110318FEF4709E328F46EB14265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 1387
Signing time: Mon 12 May 2025 20:00:28 +0000
Manifest this update: Mon 12 May 2025 20:00:28 +0000
Manifest next update: Tue 13 May 2025 20:00:28 +0000
Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=)
2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=)
3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=)
4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=)
5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: 8avGZRT+K6GbL4OOvKUZBn5JLIpPpPEsTd1YyRvrVc8=)
6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=)
7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:a1:10:31:8f:ef:47:09:e3:28:f4:6e:b1:42:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: May 12 20:00:28 2025 GMT
Not After : May 13 20:00:28 2025 GMT
Subject: CN=24f1197afb7b3dfb382d06347844b10d446d59a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0a:17:93:b4:c9:8e:b4:1b:98:8f:05:62:ef:
59:a2:f2:22:68:bb:2b:83:95:e8:4c:78:fa:53:02:
35:0f:3d:6d:fe:15:1a:a1:e6:18:17:be:f0:7b:03:
3a:a0:d8:38:b0:97:d6:69:0b:83:3d:8d:d7:41:16:
26:a7:7b:aa:61:18:c6:68:17:ac:2a:df:59:58:b9:
1b:cd:ba:f6:f5:11:06:d0:e6:a4:e0:0c:62:2b:65:
f3:42:8a:48:6c:3e:57:98:94:44:f3:54:59:2b:ae:
fc:43:81:54:67:a1:68:6f:e5:98:56:81:b0:d4:62:
23:77:2c:be:ce:fb:1f:c3:bd:6e:08:5d:c0:5c:42:
79:80:1f:26:a8:10:e4:49:f8:36:cd:1f:0c:c5:ef:
00:85:ea:9e:44:34:74:7a:2e:cb:07:7b:8d:9b:08:
84:2c:19:d2:bf:c4:07:3c:5b:24:ac:3d:87:80:fe:
a9:97:c1:c9:7a:89:43:9b:e8:bd:37:00:39:80:7f:
ac:87:cf:23:eb:ee:ce:6f:9b:fa:94:de:47:54:e2:
25:e9:fb:74:d3:92:1a:13:04:e1:8a:ff:62:d8:e5:
18:90:1c:ac:7a:f9:42:ae:a7:30:37:71:0a:c1:4a:
94:e3:8c:33:84:5c:e5:93:30:c1:c1:40:09:0c:a1:
1e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F1:19:7A:FB:7B:3D:FB:38:2D:06:34:78:44:B1:0D:44:6D:59:A7
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:6b:af:c2:c5:0a:01:df:03:22:43:33:6f:e8:d7:03:36:e3:
ab:7a:f3:85:9e:a8:de:13:4d:fc:33:0f:36:a7:9a:ed:aa:04:
e5:1f:6d:79:b5:46:0c:c7:c1:70:cd:b5:e7:45:1e:9d:55:5c:
8c:b5:a3:07:77:24:31:b0:d6:06:09:85:5c:a0:7a:b3:5e:54:
7a:d6:42:f3:ac:58:2f:a9:8d:30:f1:2c:67:18:de:37:c8:5c:
2a:c6:76:7e:e9:b6:e8:36:a6:e4:1d:03:4c:66:a9:99:a8:26:
c0:f8:1a:09:4d:6a:e7:e7:05:f0:06:ef:b0:db:6e:48:ad:d6:
d6:77:fc:86:d0:47:21:f7:f3:a0:37:d8:cc:9f:e4:2e:a0:7d:
84:16:d7:a8:ca:81:fa:b6:25:5e:85:5c:f3:02:76:7f:c9:89:
7a:95:6d:22:56:4a:1b:2b:28:0a:f7:14:54:cb:40:46:43:1f:
3d:6a:bc:f5:9f:b6:9e:e4:25:d2:39:97:95:d0:95:ce:80:14:
53:75:3f:0e:4b:18:9f:43:a3:93:a6:91:f7:46:55:87:25:4b:
a5:f1:d7:68:89:2d:c2:7d:ea:08:0c:be:c0:02:27:23:fa:b3:
bb:a6:25:90:3b:81:f0:1f:f0:29:b9:b7:f6:ea:aa:15:a0:c6:
43:9a:c8:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:22:30 2025 by rpki-client