Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
File: znQefeZX5KEPk8qSxReoGywLJR4.mft (raw, json)
Hash identifier: ktVnP/9fd1O4/zVKt+DzBbLNlM4vtwCzuxdumxSWTM4=
Subject key identifier: 8A:AB:CD:D1:0C:68:91:0F:4E:7A:4B:9D:A3:21:83:5A:11:B2:4A:3B
Authority key identifier: CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
Certificate issuer: /CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Certificate serial: 0196A8E72DED155684C3789B459E390209D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
Manifest number: 0B1D
Signing time: Wed 07 May 2025 04:00:44 +0000
Manifest this update: Wed 07 May 2025 04:00:44 +0000
Manifest next update: Thu 08 May 2025 04:00:44 +0000
Files and hashes: 1: ZIl-tGPYsmILe8aUvhHfFRisBTg.roa (hash: ELX+nfW5VdhOFYsiqhpPo4rEHXv1DoXfvUrKNYNv+iU=)
2: znQefeZX5KEPk8qSxReoGywLJR4.crl (hash: 2cVBN9B6bqUWwrnyPjvEG6L2a7PxD25Cd6RxPL8dgzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:e7:2d:ed:15:56:84:c3:78:9b:45:9e:39:02:09:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Validity
Not Before: May 7 04:00:44 2025 GMT
Not After : May 8 04:00:44 2025 GMT
Subject: CN=8aabcdd10c68910f4e7a4b9da321835a11b24a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7d:a1:2f:82:0b:74:e1:0b:4c:7d:a0:ab:fb:
a7:18:a2:61:e1:b9:e6:b6:75:46:cd:43:3f:f7:8d:
43:52:be:85:9c:89:0d:3d:5c:b0:e6:94:17:ed:24:
a2:cd:a2:ec:cd:a5:69:cf:ce:be:dd:8c:ac:ec:17:
1c:52:55:c6:b5:d5:b9:f7:dc:60:73:27:62:3c:27:
69:b9:9e:2f:bf:ec:2d:28:48:eb:e1:cb:36:cf:4a:
69:cd:78:08:ac:26:52:f5:2d:7b:b1:2c:95:fa:1d:
10:78:e5:47:16:97:93:be:74:5c:fe:65:33:b8:7e:
e1:72:b6:ab:cf:e3:1b:d9:c8:2a:0d:dc:e5:63:1d:
66:b0:b8:8a:c9:89:54:40:7c:74:b3:73:d7:96:d7:
d1:7d:99:31:d6:2c:97:ce:76:6c:96:d7:44:8c:ce:
bf:7e:4b:e3:08:e9:fd:46:5a:07:cd:88:9e:0b:22:
2d:4c:a7:a6:c5:07:b0:75:60:0c:3c:eb:8f:f8:07:
e2:d0:8f:6f:cd:df:26:c2:c4:07:0a:47:c5:c2:fc:
d1:d8:b9:02:38:6b:9f:14:bd:d2:5c:44:02:f6:b3:
11:80:c8:ce:67:3c:d5:ad:db:86:d0:32:5e:99:3f:
29:e5:cb:95:ff:68:c1:4f:9c:8a:81:e2:ca:d8:36:
dd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:AB:CD:D1:0C:68:91:0F:4E:7A:4B:9D:A3:21:83:5A:11:B2:4A:3B
X509v3 Authority Key Identifier:
keyid:CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:40:c7:08:f2:43:4d:8e:62:d8:04:b0:68:4f:95:92:68:dd:
b1:a6:d7:f1:fa:c9:8c:69:45:c0:3b:ed:46:12:45:01:2e:d0:
5b:53:7a:5a:fa:77:b8:db:5d:fd:51:86:ef:a8:70:96:00:e7:
85:01:f1:a3:65:5b:11:18:fb:04:82:44:1d:e5:3a:5e:5a:80:
1e:39:f3:91:e2:c1:26:d3:ba:6f:88:0c:27:8a:35:94:09:af:
56:ba:e1:63:c3:10:46:5c:03:c2:d9:6a:18:a7:c6:ca:73:a8:
1b:87:86:69:54:6d:29:52:06:e6:f2:88:a8:09:9e:af:50:32:
0d:54:06:8c:82:a4:5e:11:bf:af:bb:46:11:ef:ae:d1:41:46:
51:6a:d8:91:e4:a2:28:3e:a9:81:b4:a5:17:23:62:aa:23:04:
38:5b:16:f0:44:ef:a1:1a:d6:f5:d8:ca:bb:92:fc:93:76:38:
95:d6:7f:4a:34:2c:56:8f:de:e7:d5:ed:01:02:88:d6:e5:ec:
94:12:9f:ab:d1:89:54:0a:6c:22:e5:16:f1:bf:98:be:d8:b4:
79:72:6a:86:34:8b:fb:c9:26:1a:eb:2c:43:96:94:47:9c:38:
63:0a:ec:3c:cd:58:98:53:9d:85:f7:90:0f:06:8b:be:dd:3d:
6a:2c:86:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 09:33:14 2025 by rpki-client