Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
File: zTwRDf139XdXORwPrt7r42CGVx0.mft (raw, json)
Hash identifier: Wbhv3N2MHpWMwUtW4mlvlwKa0RQTBtLQ3izqryBEdVQ=
Subject key identifier: 93:94:36:95:41:1D:35:B3:D1:71:68:14:8C:8C:3E:B7:E9:96:F2:96
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 0196C3F0A0919A132527E7EF08A874DE5646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
Manifest number: 0D53
Signing time: Mon 12 May 2025 10:00:48 +0000
Manifest this update: Mon 12 May 2025 10:00:48 +0000
Manifest next update: Tue 13 May 2025 10:00:48 +0000
Files and hashes: 1: n79crWM-L0W_-YTIs0SA8x1g-4g.roa (hash: WTPugh0CrOL+7geJ0TTyRViJCXrCGCyNH+3nK4QxB48=)
2: zTwRDf139XdXORwPrt7r42CGVx0.crl (hash: fZ3TlbBfMNlTSPKf5MxWNxd7DUErBUTbedgRVoYb4CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:f0:a0:91:9a:13:25:27:e7:ef:08:a8:74:de:56:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: May 12 10:00:48 2025 GMT
Not After : May 13 10:00:48 2025 GMT
Subject: CN=93943695411d35b3d17168148c8c3eb7e996f296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:2a:61:02:b9:5a:7a:e8:8d:9a:61:b4:8b:
9f:10:7d:37:48:92:cb:c8:69:73:2f:7e:8d:35:4d:
23:1e:be:f8:12:0a:e5:97:aa:1e:94:50:53:ea:16:
78:14:1c:f5:96:eb:8f:5e:75:a7:a4:5a:d1:bb:f0:
3a:b2:89:17:2f:f2:8f:7e:a5:54:09:f9:be:47:e5:
b7:69:89:2d:b8:a3:8c:dd:a7:4f:59:8e:d0:c2:ca:
6d:1a:88:65:8f:61:86:4f:22:ba:28:c2:4b:4d:78:
34:da:04:26:77:4c:d9:9f:17:0a:33:08:b0:73:92:
82:73:d0:c5:2d:3a:5b:5b:db:22:6b:a5:3d:86:89:
be:07:7c:48:c8:0a:82:cd:26:3f:f1:2d:17:13:b9:
18:88:aa:8f:60:46:5a:79:2b:85:04:44:30:c1:2d:
bb:43:fb:73:d0:f6:d5:b1:2c:4a:97:57:6c:98:dd:
45:80:2c:a3:1c:82:b3:49:a9:3d:6d:84:e9:6c:da:
c0:9d:df:54:0f:a3:4e:6a:86:be:d6:b3:72:2b:95:
3f:90:48:0b:11:d9:70:99:f8:57:be:f3:93:68:22:
48:aa:b2:7d:e7:4c:8b:c9:24:72:46:e5:c9:33:26:
11:05:47:8d:bf:d9:6a:64:88:5b:46:5b:fc:82:ef:
0f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:94:36:95:41:1D:35:B3:D1:71:68:14:8C:8C:3E:B7:E9:96:F2:96
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:81:8c:bc:be:cf:a4:8b:3b:4a:70:2b:46:c8:fe:95:65:74:
11:bb:ac:98:3d:46:6b:d0:e2:cd:cb:7f:9f:bf:72:d9:5d:35:
36:9a:9d:b8:3a:f7:ce:3e:7c:51:7e:e8:84:41:be:ce:b1:4e:
c3:89:46:84:03:2b:6c:ca:37:c6:d9:18:e1:ad:cf:31:4f:19:
e0:42:16:8b:b0:22:c2:ae:57:11:8d:55:5c:9b:43:7d:f5:e9:
79:4d:c5:de:d3:8a:27:1f:7d:e4:c5:95:d9:df:7d:16:43:bb:
f6:f6:cf:d6:a4:f4:b4:a1:ac:a7:08:dd:3b:4b:44:f7:7f:98:
75:0e:14:32:7f:14:4c:c2:0a:97:b9:39:26:28:f1:37:7e:6b:
72:37:50:b8:ce:da:d2:35:e3:e4:1d:28:cf:9f:f2:0b:ab:50:
7f:5d:0f:3d:d6:0f:09:6a:e7:bd:15:fd:59:dc:6e:1b:e5:ba:
a2:de:25:b0:8c:2e:56:bc:c5:1c:b7:4d:f1:9e:9d:45:73:10:
4a:76:27:db:f2:56:2a:0a:65:80:b3:fb:42:8e:c6:a7:87:35:
9b:0d:54:07:65:00:93:40:cc:e8:2b:64:39:fe:39:cf:c3:fd:
3e:23:3e:35:c1:01:a2:64:e2:cc:ac:99:97:a0:06:fe:ed:c2:
bd:85:05:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:34:05 2025 by rpki-client