Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
File: zUBlln3sCStfyQFS5KlTObodIok.mft (raw, json)
Hash identifier: sg2Api3694x/NgG1cwnmXeIZ+2CJtNue7cF3Qb5v+uo=
Subject key identifier: C9:3E:08:E8:77:F4:A9:B1:1D:E4:D3:0D:E2:54:48:04:88:3C:8F:A5
Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Certificate serial: 0196A35331C0663F6B81D2806FECDB3D17D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
Manifest number: 0B7C
Signing time: Tue 06 May 2025 02:01:00 +0000
Manifest this update: Tue 06 May 2025 02:01:00 +0000
Manifest next update: Wed 07 May 2025 02:01:00 +0000
Files and hashes: 1: O_Eyba2hWiJ1G1yko5jMVf-Hi74.roa (hash: 6Ep9rh8riGcgqLK1eN8d8mtWbuCz5+WFjzg4sxJvKMw=)
2: zUBlln3sCStfyQFS5KlTObodIok.crl (hash: Q5tjigLAKP3FyeILvZilWRb40lyqwHYx37y0PZ2y75A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:53:31:c0:66:3f:6b:81:d2:80:6f:ec:db:3d:17:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289
Validity
Not Before: May 6 02:01:00 2025 GMT
Not After : May 7 02:01:00 2025 GMT
Subject: CN=c93e08e877f4a9b11de4d30de2544804883c8fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c5:b8:c6:95:f5:fd:36:fd:f8:69:5d:4f:cb:
9a:f1:39:60:32:3c:8d:c6:75:61:15:0a:a8:71:7f:
b4:f7:30:d4:0f:74:f8:9b:21:04:53:27:47:3e:52:
b2:b1:47:20:54:cc:e0:4d:5b:ac:ca:91:af:f6:ee:
91:95:e9:db:81:2f:17:1f:75:34:b9:10:da:de:d9:
96:25:53:de:91:b4:2d:7e:69:4f:72:5d:21:47:2a:
6a:28:69:e0:aa:da:ca:4a:32:1e:cb:66:a0:ef:31:
c5:81:62:80:17:10:e6:79:e1:3f:91:35:96:73:ef:
13:d6:2e:e2:82:d8:33:47:56:db:b8:d8:23:fc:4a:
13:99:4a:44:34:c4:68:3e:bc:14:bc:e7:04:e9:a0:
2a:a2:29:24:31:37:32:89:37:e0:ac:eb:a6:8c:67:
a6:e8:84:d8:2b:64:20:67:3a:2c:f6:bf:92:1c:56:
3e:f2:58:03:e4:80:c7:2a:9a:e0:d9:0c:9a:04:f7:
c8:44:12:97:bf:78:ba:c0:de:cc:44:03:f8:77:ec:
3f:7a:db:6d:07:65:99:18:a2:30:b7:70:c5:cc:06:
b5:16:24:26:db:8d:ee:11:31:a9:c7:a1:05:4c:3b:
dd:4f:d8:2e:66:2f:a0:8d:62:8f:41:f0:b8:09:d6:
f0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:3E:08:E8:77:F4:A9:B1:1D:E4:D3:0D:E2:54:48:04:88:3C:8F:A5
X509v3 Authority Key Identifier:
keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:c7:a2:cf:10:01:3d:d7:3d:be:c4:e9:28:85:c9:e9:02:8c:
48:61:a8:22:cd:26:58:0d:db:61:d1:e3:34:0e:39:27:8f:f9:
4b:e9:4d:57:2d:73:0e:b2:d5:f5:88:b8:45:fe:40:85:5c:ef:
e6:24:7d:21:1b:ba:79:20:16:3a:26:44:72:61:15:be:0b:9e:
4e:ad:cc:ed:c1:fc:45:39:96:c7:9d:bc:07:be:b5:bd:7b:f2:
2a:02:c8:0f:24:10:3f:db:2e:6c:c5:59:4c:2a:d4:78:16:97:
15:e3:a0:13:fb:b4:f7:40:f7:14:4e:ed:62:58:0e:72:ba:b6:
bd:31:61:dc:f3:c0:97:a5:36:73:35:c8:c6:44:ed:0a:42:33:
22:ae:71:c2:73:4e:d7:94:60:c8:6a:86:af:83:50:d4:42:07:
fd:59:f6:08:08:53:12:e2:4a:f5:59:6c:a1:b9:57:d5:ad:6e:
fd:bf:38:7b:a8:ed:59:64:9d:25:9e:dc:87:98:b7:8d:a1:33:
93:f7:16:71:e5:d7:0d:d2:11:51:2a:3c:2a:1c:9d:dd:da:46:
14:32:1d:38:ad:28:60:eb:40:e5:c5:f9:2c:cd:a9:56:c7:10:
2d:a1:ea:d5:22:ee:cf:aa:d8:65:10:8d:a6:62:5e:02:ce:a6:
7b:57:3a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 03:39:28 2025 by rpki-client