Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
File: zTu8GVzaflgkWmHLMLlv5XL9eBE.mft (raw, json)
Hash identifier: uNVzqujW6y35seexIPw8eSTgGY2eZL6ffWvwQyknNUU=
Subject key identifier: 42:AD:CD:03:4D:B6:B1:22:1D:83:90:3E:2A:93:03:EB:D6:49:56:38
Authority key identifier: CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
Certificate issuer: /CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Certificate serial: 0196C5A8095DF26FABB056403F949710CA00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
Manifest number: 0E8B
Signing time: Mon 12 May 2025 18:00:46 +0000
Manifest this update: Mon 12 May 2025 18:00:46 +0000
Manifest next update: Tue 13 May 2025 18:00:46 +0000
Files and hashes: 1: clDd21QzHwOlwdLoUbCFlA9N4Bc.roa (hash: b4fVPg9ViPXbDXBeIAFrk3g5qdFMK0V6puBPZsjXHfs=)
2: zTu8GVzaflgkWmHLMLlv5XL9eBE.crl (hash: eEKoXSFQX/joQFJOceix3pPisi9/DWhzFSDdazZCUMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a8:09:5d:f2:6f:ab:b0:56:40:3f:94:97:10:ca:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3bbc195cda7e58245a61cb30b96fe572fd7811
Validity
Not Before: May 12 18:00:46 2025 GMT
Not After : May 13 18:00:46 2025 GMT
Subject: CN=42adcd034db6b1221d83903e2a9303ebd6495638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:62:a2:bd:aa:8b:35:ed:6f:d7:b4:d2:00:73:
89:cc:62:cd:b4:93:dd:f7:17:9d:c4:11:55:79:dc:
42:b6:ca:1f:30:00:d2:8b:47:23:99:a3:6a:1f:c2:
1c:70:32:f8:a2:81:15:ad:89:1e:23:f2:84:93:31:
7b:2e:bd:6f:5c:cb:b3:75:f0:59:c3:f1:e2:2a:8b:
ab:13:90:6b:04:d5:dc:be:db:e0:18:2f:a6:8f:23:
18:d6:bf:ee:a3:61:14:94:cf:6a:85:6e:7b:a8:31:
39:e0:7f:16:b4:61:7c:c7:35:a6:c7:aa:4f:1f:ba:
66:8c:9c:25:fc:c0:3f:ad:c5:28:32:5d:be:47:2d:
76:ad:05:b1:df:2f:21:78:0e:49:70:c9:25:2c:40:
89:f8:84:73:d7:53:f0:68:30:66:8e:80:8b:64:f4:
ad:73:c9:fb:6a:ec:7b:20:88:13:fb:97:9e:34:ca:
d4:21:93:01:8b:f8:33:ac:d5:8b:44:7f:00:a3:08:
cd:5a:07:86:56:a1:e0:3c:24:a3:32:91:9f:9b:0c:
50:4e:e0:d9:ec:c6:09:ce:a8:3f:0f:4b:58:5b:16:
b7:2a:f2:7d:f3:59:95:d8:f5:1b:30:c0:d5:12:fe:
a6:bb:91:e7:92:93:57:dc:1d:62:a2:50:54:cc:9c:
0e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AD:CD:03:4D:B6:B1:22:1D:83:90:3E:2A:93:03:EB:D6:49:56:38
X509v3 Authority Key Identifier:
keyid:CD:3B:BC:19:5C:DA:7E:58:24:5A:61:CB:30:B9:6F:E5:72:FD:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTu8GVzaflgkWmHLMLlv5XL9eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5af7a5-b67c-459a-9893-c6fadeb285ba/1/zTu8GVzaflgkWmHLMLlv5XL9eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:29:95:1c:9a:63:9b:ba:43:3c:c8:75:df:38:92:47:e7:6e:
4b:9f:24:f6:98:0e:54:16:25:42:70:c6:4b:83:5f:3a:85:a6:
da:82:e6:29:41:d8:94:dc:8a:c1:3c:2e:44:3d:bd:ce:68:ea:
5d:41:c7:53:01:4b:2c:ff:10:f1:c3:fb:0e:c9:18:33:90:92:
75:7c:11:14:8e:b6:e0:6c:4e:19:d9:f2:32:a1:93:a4:e3:b2:
3f:70:e6:62:4a:fd:49:d2:3f:b6:ed:1e:30:94:bd:13:4c:ba:
ba:81:08:f8:81:a6:f5:91:57:70:d1:58:3d:cc:33:60:d2:a1:
fa:8d:32:87:48:70:02:55:fe:94:29:07:b8:29:fd:83:42:ed:
13:04:fc:0e:d5:4b:9e:d1:3d:da:60:9b:d4:39:cc:01:1e:d1:
61:e4:ef:11:7f:23:9b:a6:3b:d6:24:77:57:78:0c:ed:c5:1d:
4b:ef:0a:f6:c0:e9:3c:f6:f9:04:db:0d:c8:c1:1c:47:3a:7f:
21:25:14:f0:e0:bf:2d:b5:f2:3c:51:dd:ce:4a:22:1f:b8:44:
7d:f2:49:d1:31:5c:e4:f4:62:b1:8a:29:1e:86:26:5a:3d:0b:
c0:39:0c:72:63:70:3f:0f:60:b0:61:a5:c0:3b:46:cf:4a:5b:
b0:19:56:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:47:31 2025 by rpki-client