Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
File: zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft (raw, json)
Hash identifier: FFDfEIMz10QgaKatTyLTaQO7Rn9gyevslHNMBjvqPf4=
Subject key identifier: 28:D4:E4:39:AD:DB:E5:7B:A4:0B:BA:EA:D6:10:33:13:08:60:F4:02
Authority key identifier: CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
Certificate issuer: /CN=cd86b8ce222482a14f9b13468ce57e9992684961
Certificate serial: 0196C0140314FE37621353A59C0B50C68758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
Manifest number: 050A
Signing time: Sun 11 May 2025 16:00:59 +0000
Manifest this update: Sun 11 May 2025 16:00:59 +0000
Manifest next update: Mon 12 May 2025 16:00:59 +0000
Files and hashes: 1: DQHOKV8IKLhzD_DKbK2yKJLy3qI.roa (hash: PB4sy0lCqmdf8gfZUrxsVqDoVfWeVXqM8PmI2EwyuMw=)
2: zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl (hash: A/OCRrTMytaI6Q493aTKZ1XtTJCg/G4PkYDsUxbIxyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:14:03:14:fe:37:62:13:53:a5:9c:0b:50:c6:87:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd86b8ce222482a14f9b13468ce57e9992684961
Validity
Not Before: May 11 16:00:59 2025 GMT
Not After : May 12 16:00:59 2025 GMT
Subject: CN=28d4e439addbe57ba40bbaead61033130860f402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:3a:00:e3:63:be:9b:92:f3:a0:5c:df:0a:
54:74:5a:ac:c9:cc:4f:c3:d2:f4:84:11:23:7b:47:
71:5f:dd:60:0b:80:bb:c9:01:1b:40:8f:fe:bc:84:
5a:f7:6d:c6:7e:79:92:fa:5d:32:62:d3:b9:d7:6a:
71:b1:1e:a4:93:fb:e2:20:bd:ed:15:36:e3:a3:0f:
31:ef:e8:fb:73:c4:c7:d1:49:14:c2:40:9d:0e:b3:
0d:14:6c:aa:b4:52:21:39:aa:7b:76:2c:b2:fb:aa:
76:c4:37:40:88:c5:f4:58:f6:d8:28:75:bc:b7:b8:
d6:6e:84:0e:e2:01:f9:a5:c1:73:6a:92:c2:6f:40:
ce:ba:86:58:64:62:ab:5c:64:85:a5:f7:65:68:cc:
35:56:b6:79:dc:d9:92:80:60:ca:5a:03:80:32:a4:
c7:05:54:6a:6a:57:52:93:bd:a1:42:ff:c2:77:bb:
5d:81:7c:06:53:2f:33:d1:92:d5:85:14:c9:72:82:
f4:d0:29:67:93:96:97:e1:0d:e4:90:03:00:e1:a6:
3f:40:19:1a:5d:7f:b1:1f:47:47:4b:f8:84:d4:f3:
a1:da:35:c7:72:83:97:b5:cf:60:aa:cd:6f:40:a2:
6f:4a:34:ad:4f:0a:ff:80:0a:66:81:6e:3a:a7:15:
68:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D4:E4:39:AD:DB:E5:7B:A4:0B:BA:EA:D6:10:33:13:08:60:F4:02
X509v3 Authority Key Identifier:
keyid:CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:23:89:6e:82:b3:24:82:92:26:51:02:49:19:71:1b:79:51:
3c:e6:7c:94:a2:ea:c4:b2:1f:b0:a6:35:86:02:a2:81:32:f7:
37:e5:a2:ed:6a:27:45:64:48:e1:a4:03:a2:c8:9d:f3:46:cf:
99:7d:e5:4a:9f:b5:54:80:cc:69:b3:d3:58:cc:eb:7e:74:88:
46:ea:11:2b:20:5f:c8:04:e1:2f:2c:6a:d4:d3:4e:6f:ed:15:
74:a7:1c:af:45:ea:43:d5:6a:26:da:16:c0:a9:83:12:53:40:
d3:d4:30:83:03:71:98:05:f6:e3:dd:e3:ab:b7:d9:99:59:9e:
21:12:34:2b:53:28:a5:23:a1:74:ba:d4:7e:93:63:e9:bf:7b:
de:70:1a:21:04:aa:a1:ce:14:3a:1d:81:2d:cd:13:91:7b:e2:
4f:df:f8:75:dc:52:e4:cd:d3:7e:35:c5:66:77:dd:d5:d6:ce:
1f:77:9f:17:6c:70:bd:76:61:c6:57:8f:0a:7c:c6:b6:00:da:
f6:34:df:d8:7e:3d:98:fe:27:ed:5f:a0:f1:f0:86:8b:9e:3a:
70:3d:a2:24:48:8f:fa:8e:81:f7:27:a4:7f:50:fb:e6:70:2d:
47:24:c7:59:6a:a9:8a:e6:02:7d:a2:8b:25:12:70:23:36:8a:
81:d7:de:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:31:48 2025 by rpki-client