Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json)
Hash identifier: 3u/kmivR0V8/E4ifKdMZz38PNYvMhmcH5K5j7iuY7tw=
Subject key identifier: FC:AA:66:76:68:3F:0B:08:DD:37:A9:20:45:D8:03:01:59:C9:B5:F9
Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Certificate serial: 0196B710D87D97EBF607A5ADE0EE26F89DD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
Manifest number: 1532
Signing time: Fri 09 May 2025 22:00:56 +0000
Manifest this update: Fri 09 May 2025 22:00:56 +0000
Manifest next update: Sat 10 May 2025 22:00:56 +0000
Files and hashes: 1: apVhYj18Bs_r1Q931zVqcqi5yvI.roa (hash: /gXE2P6qUcVxgRclWTrINQ6lVlcjG0089HciFUVuRsI=)
2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: KZTZnBxWD7lWdTbN2ylZD+Z4Z92JabLW+AE4Plg0uUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 22:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:10:d8:7d:97:eb:f6:07:a5:ad:e0:ee:26:f8:9d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Validity
Not Before: May 9 22:00:56 2025 GMT
Not After : May 10 22:00:56 2025 GMT
Subject: CN=fcaa6676683f0b08dd37a92045d8030159c9b5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ea:ed:db:4c:f4:7b:84:5f:9a:d4:25:93:7a:
63:08:ce:ca:1f:6f:a2:60:cc:b7:30:44:e3:be:0b:
cd:5a:7c:e0:80:19:d1:85:d3:17:68:5a:48:f7:0d:
b3:57:38:23:0f:52:ba:b1:1d:f4:26:80:01:1c:08:
ef:50:a4:ca:64:86:26:48:f2:f1:46:10:0b:70:98:
8b:8a:82:09:d5:8c:ba:35:4b:7f:d5:6f:f3:27:82:
e1:24:9a:16:3f:a0:0d:b9:92:f5:5f:dd:77:9d:cc:
c6:81:07:2e:55:06:be:b4:78:87:8f:b8:d7:47:0e:
fd:d7:c0:2d:e9:3a:96:ec:22:8b:b3:83:35:d9:91:
57:16:e3:f1:b6:2b:b7:24:c0:7e:39:80:44:bb:bc:
db:f5:b8:df:03:79:b9:37:8f:dd:ee:9a:0b:90:43:
c3:92:f3:d7:6c:cd:3b:3f:15:53:cc:69:ea:b0:9f:
75:db:3b:5a:3f:c6:b6:e6:bd:32:45:5d:9a:a4:9d:
60:c0:f9:e1:31:d8:9d:34:9a:fa:1f:25:78:37:85:
79:d2:2e:d1:00:19:6e:84:c2:e5:01:60:d7:0c:b4:
80:3d:54:a0:28:1d:48:6b:d9:c6:4e:68:54:0f:54:
60:89:18:4b:a0:7e:62:36:1c:4e:a5:02:42:28:4f:
a4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AA:66:76:68:3F:0B:08:DD:37:A9:20:45:D8:03:01:59:C9:B5:F9
X509v3 Authority Key Identifier:
keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ae:6f:17:b0:43:45:bf:e9:67:99:fa:44:50:a2:06:aa:c3:
5a:54:b1:cf:9e:9c:e5:91:5e:8c:18:d5:96:19:7c:9e:85:3c:
50:77:57:fb:b2:c7:ca:e9:00:9a:64:a1:7e:bb:7e:eb:a7:9a:
59:61:b7:a3:02:b2:8b:75:1b:fe:b3:c4:b3:49:a7:35:e6:f8:
69:58:79:7a:4f:ee:e8:54:c5:10:ff:00:90:2a:7c:9d:c5:ec:
bf:5b:b2:03:44:d7:dd:b0:d9:21:b5:4d:b7:9d:53:8c:1f:75:
49:4e:e1:94:86:c3:19:8f:f2:c1:e0:aa:6e:94:bb:37:e4:b2:
71:1c:9a:a4:2d:94:78:f3:fa:50:65:01:49:d1:54:b4:16:32:
1a:7b:78:1a:5b:89:50:55:ad:b6:75:82:a7:db:da:c7:33:b4:
c8:9b:39:09:e3:1a:e0:10:16:86:a3:a5:d1:9f:c0:91:43:c7:
65:90:3a:58:d1:88:ad:77:5b:30:9f:a6:dd:65:87:0e:1d:52:
a6:2e:3e:47:46:e3:71:09:fa:8a:40:28:f5:af:c6:7d:90:df:
3a:27:4d:5e:f4:fb:8e:a0:7b:7b:3b:d7:f0:12:db:60:3f:41:
13:f1:1e:cc:18:a4:6d:3c:5b:30:28:d2:7e:c5:aa:42:ca:66:
8b:1d:4b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:22:48 2025 by rpki-client