Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: GiMLEhGeMfxRG7gWRHWunh6EYYAIKuzHZWQQ5ONDapk=
Subject key identifier: CF:5D:F5:DD:E4:0B:66:19:73:97:F0:8C:53:E8:4B:A9:61:DA:A3:DC
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 0196CB73035FCBC4F512DAEF2D3A395677E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 0152
Signing time: Tue 13 May 2025 21:00:34 +0000
Manifest this update: Tue 13 May 2025 21:00:34 +0000
Manifest next update: Wed 14 May 2025 21:00:34 +0000
Files and hashes: 1: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: HdZFEUUAJbr33DtXUnbguSCYH9JAVGt0OCras1aeQnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:73:03:5f:cb:c4:f5:12:da:ef:2d:3a:39:56:77:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: May 13 21:00:34 2025 GMT
Not After : May 14 21:00:34 2025 GMT
Subject: CN=cf5df5dde40b66197397f08c53e84ba961daa3dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ae:a1:08:95:62:99:51:d8:1e:3f:23:bd:34:
1e:d5:3c:1a:e0:6d:fb:b0:c9:69:d8:46:e6:37:cc:
0f:ae:0a:26:d5:ad:24:cd:7c:82:ef:73:3e:f7:a2:
50:ab:84:8b:8e:7b:10:09:e2:88:0f:73:3f:74:d4:
92:9a:28:02:31:87:2f:10:d6:95:a2:1f:a6:3d:5e:
4a:e7:8d:91:d5:6b:14:42:ff:ec:44:b6:4d:bc:1e:
2e:a8:76:8b:32:59:cf:49:9d:69:d4:4e:c0:a7:b3:
d9:cc:e3:0b:a6:a2:21:68:5b:98:8c:ab:48:12:f5:
21:04:04:40:fe:08:6c:c0:cb:09:c9:8e:bd:74:35:
8e:25:a3:b3:8e:46:b0:9b:43:69:aa:56:13:9c:e6:
92:d0:5c:71:c3:23:71:e5:4c:d9:9e:bf:b9:77:c0:
c3:3d:22:ae:58:05:bd:65:c4:38:30:4e:c4:43:78:
6b:7f:c4:f1:f8:a8:1b:f1:61:bb:c2:6f:73:3f:92:
61:7b:82:6f:3c:44:77:57:a0:76:f8:d3:74:ea:14:
57:98:8d:68:f9:0f:8b:a9:99:33:d4:3c:66:00:f2:
f6:d8:5c:7a:a8:50:b1:a0:2c:b8:db:fe:d1:7e:85:
93:9e:d1:81:e1:fa:73:29:b6:96:81:e5:85:d1:23:
56:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5D:F5:DD:E4:0B:66:19:73:97:F0:8C:53:E8:4B:A9:61:DA:A3:DC
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:6d:8e:c3:c0:60:92:8c:97:0b:5c:f3:be:e4:c6:84:07:03:
37:00:e8:4b:c8:5e:2f:19:d6:d0:c1:0e:2a:9b:20:e8:14:89:
53:2d:6f:b4:8a:44:cf:09:61:81:6f:3d:40:fa:ad:71:3b:66:
86:c6:b5:4d:f8:9a:ce:6c:02:7f:56:40:97:90:e0:bf:60:49:
b0:18:cf:49:ee:79:5f:46:c7:68:1c:50:cf:69:b7:14:64:b6:
92:cd:b0:c5:09:72:e8:79:9c:84:e5:a1:c5:28:4a:a0:1a:2e:
34:96:b0:33:92:a8:0b:fc:ca:39:36:a3:c5:55:b8:9b:70:85:
9e:39:7f:3d:3b:4c:21:7f:bd:59:d2:9a:bf:9a:d1:c8:2c:8e:
2f:1d:e2:d8:87:f4:34:e3:f0:2c:1e:a9:b2:0b:6c:87:e9:11:
b7:a2:01:e4:a4:b4:fa:cf:a9:38:e6:0a:af:4b:70:91:02:7c:
01:2c:b9:6a:6c:32:4f:a1:51:bb:8e:b8:2e:8f:1b:87:95:34:
9f:03:45:63:86:60:63:48:9e:e8:5e:15:a9:92:71:9d:7d:a0:
eb:ae:7c:e8:44:a9:e3:e1:56:88:c4:f3:8a:d4:bf:8d:77:38:
fc:78:4e:8d:00:d2:61:a1:a2:32:fa:75:c3:45:31:17:f8:b9:
14:cd:b2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:23:27 2025 by rpki-client