Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
File: z1PAwqcKnguguGDSKQTbsOkrkgs.mft (raw, json)
Hash identifier: xbV+hLp7LBHfTGQbdhauA2TNb1tBVUlbAu/TZoDmDRE=
Subject key identifier: 27:F3:DC:EB:AC:B3:FB:D5:8E:07:DF:01:B6:5C:D5:DD:F7:38:4A:53
Authority key identifier: CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
Certificate issuer: /CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Certificate serial: 0196C34BC3D3F710097A6E5696BA16FB82CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
Manifest number: 04A5
Signing time: Mon 12 May 2025 07:00:44 +0000
Manifest this update: Mon 12 May 2025 07:00:44 +0000
Manifest next update: Tue 13 May 2025 07:00:44 +0000
Files and hashes: 1: PYhNNzuk9SlKthV_33iOWNORmCM.roa (hash: 8PTIGwrPsJPGQk8kIZHLm7NCCrY0xp7lDA1kLSNWPlg=)
2: z1PAwqcKnguguGDSKQTbsOkrkgs.crl (hash: l3jgDHYrotoDUtl/CX2dZtfiC/KQIZPzDPrp3RlWz00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:c3:d3:f7:10:09:7a:6e:56:96:ba:16:fb:82:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Validity
Not Before: May 12 07:00:44 2025 GMT
Not After : May 13 07:00:44 2025 GMT
Subject: CN=27f3dcebacb3fbd58e07df01b65cd5ddf7384a53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ce:fa:af:59:7c:48:ec:f3:09:6c:ad:9d:63:
80:9a:fb:db:79:97:08:8d:ae:34:ba:8e:2c:51:1b:
95:6b:3d:e3:89:2f:cc:ae:50:51:ab:8a:08:d7:e6:
3c:1e:22:6e:b3:29:35:53:b8:a9:e3:d1:17:e1:31:
5e:40:f0:1b:7a:26:75:8a:47:d7:28:07:8c:2d:e1:
b6:10:82:fa:af:a4:a7:5d:f0:d1:a9:00:c1:fa:04:
0c:ec:d4:d9:01:5f:52:bf:36:1f:72:33:73:bc:f5:
45:46:53:d3:b7:90:6a:fd:fa:62:5f:fe:b3:e7:44:
70:1c:0b:17:04:56:a2:c5:1d:68:67:7e:92:9f:97:
65:ce:c8:8c:f3:71:57:4b:00:68:e4:42:a6:a7:2c:
6c:7f:4d:01:4a:1b:57:54:e9:f4:fe:d2:98:0a:9a:
4e:27:a3:ac:41:22:e5:84:da:bc:ba:92:be:91:95:
2d:9d:9b:1e:b2:6d:e6:ad:43:45:d4:8f:53:3e:b1:
d0:e6:1a:c9:66:35:3c:be:39:d7:b0:2e:07:45:5c:
18:66:f5:bf:33:52:88:34:ea:5e:ea:9f:15:1d:8a:
18:27:97:37:d9:f2:3c:be:eb:0e:59:3e:72:ef:1b:
cb:11:e6:0d:7d:24:c5:fc:74:7d:da:59:a9:1f:bb:
c1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F3:DC:EB:AC:B3:FB:D5:8E:07:DF:01:B6:5C:D5:DD:F7:38:4A:53
X509v3 Authority Key Identifier:
keyid:CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:c8:86:e8:1f:3f:59:5b:15:3d:7b:1b:ba:b4:67:dd:2e:6d:
0c:d3:52:2a:a9:5d:db:72:e0:ba:4c:36:2d:7e:b9:14:16:4d:
95:37:90:58:ba:3e:bc:16:83:15:c4:32:ae:f7:e5:1c:4d:d6:
eb:11:ac:a4:3b:3e:9f:bd:78:6e:4a:3d:4c:e3:59:ef:ea:e8:
1d:fe:3f:06:f4:f7:b3:dc:4c:4c:57:db:0f:8f:8c:5f:d5:2b:
97:ef:41:1a:4d:b8:de:97:e5:3f:7b:28:12:cb:92:89:02:93:
b1:ac:48:29:24:4d:8c:64:e1:49:c6:78:05:cc:8c:f8:23:16:
4b:dd:21:b0:9d:98:ca:45:ac:86:21:93:ab:4e:1e:ae:83:d7:
4d:a8:06:fc:88:38:3b:84:09:7d:c6:27:ed:f8:71:26:38:1c:
b0:da:3e:be:6c:3d:2f:3e:65:a7:e1:79:c1:ad:c5:bd:4a:66:
bb:fa:45:87:70:7b:fa:7c:41:ca:23:27:cd:71:d8:ad:a6:22:
39:90:9e:99:70:ff:93:72:87:c9:f9:6c:58:53:23:23:ff:76:
a1:8f:73:b7:2d:11:2c:3f:57:e3:81:fb:4d:6a:6b:b5:74:7d:
83:95:cb:2d:6e:7d:7e:6e:d2:bb:93:5c:78:95:b7:f3:89:57:
d2:80:5f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:55:43 2025 by rpki-client