Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: +Opc9eqAxaF0ZRbktFQuwHYlTXuk7kNCld4faGyYLPQ=
Subject key identifier: BE:32:77:0F:9D:E8:03:7B:61:01:11:54:1A:4A:31:6D:54:86:0C:FC
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 01969E9ACC7CCE068BA09CE44E0022EC8D8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 04D1
Signing time: Mon 05 May 2025 04:01:06 +0000
Manifest this update: Mon 05 May 2025 04:01:06 +0000
Manifest next update: Tue 06 May 2025 04:01:06 +0000
Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: XEiINXaiT6f3QcVvylWgSJgggBPB3bcb1eV4Hu14qK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:cc:7c:ce:06:8b:a0:9c:e4:4e:00:22:ec:8d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: May 5 04:01:06 2025 GMT
Not After : May 6 04:01:06 2025 GMT
Subject: CN=be32770f9de8037b610111541a4a316d54860cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a2:2f:7f:cb:70:9c:d6:bd:3d:06:f9:31:a5:
3a:fb:5b:dc:dd:1d:e7:05:08:ca:17:6d:f9:9f:cd:
3d:f2:bd:8f:7c:47:cd:97:8b:00:92:f6:07:2d:71:
51:f5:ff:58:f4:d2:68:fc:e9:7b:2f:da:3a:36:57:
b6:c6:6f:f8:f0:b9:73:ea:2d:c4:1e:28:60:ee:32:
74:db:d2:7c:76:41:62:07:52:67:d0:d2:4c:f7:5f:
05:9f:8f:ac:8c:21:8e:c6:aa:43:46:56:7d:32:55:
c7:47:19:00:67:45:b3:6b:0f:47:ad:04:54:16:d4:
eb:2a:ca:f1:61:b9:fc:83:1a:b1:15:ee:43:af:b1:
d7:51:89:a3:b8:45:75:ae:da:3f:47:13:90:04:4c:
de:15:2f:a6:6d:78:d0:35:09:17:a7:bb:be:e8:47:
c4:a3:f3:6a:a9:64:b0:9a:af:4f:0a:9a:67:5a:f1:
d8:ac:0e:c8:bf:7c:c2:43:fb:a8:3a:a2:3e:44:38:
85:72:42:7a:4b:78:e3:5b:6d:cb:f2:5a:4e:25:cb:
f4:3c:c5:ed:4a:b7:66:fc:6e:a1:04:96:ff:64:c1:
62:d5:57:4b:c8:e1:77:ab:ee:73:45:39:bf:ca:89:
3c:96:6e:08:ba:f3:b7:4c:bf:18:8b:1d:ed:ab:27:
05:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:32:77:0F:9D:E8:03:7B:61:01:11:54:1A:4A:31:6D:54:86:0C:FC
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:6c:4a:6c:c7:94:27:ec:79:07:6b:06:03:87:02:91:01:9a:
de:dd:1c:a7:99:41:1e:44:46:72:56:a4:38:62:3f:8a:0e:e5:
a9:11:ed:e7:09:34:37:c3:ba:a5:c0:62:49:d3:84:00:88:f4:
76:c1:4f:bd:ad:b7:03:c4:a6:fb:b3:c6:93:ec:6e:c2:79:35:
40:87:2c:50:40:9f:26:c7:44:84:0e:07:1b:29:8c:6d:5b:82:
7d:0b:97:14:ce:75:d6:38:4f:81:1c:a1:77:81:af:0c:fc:6c:
f7:c2:27:c6:d1:62:dc:cd:5a:43:f1:b9:e4:e8:7a:9d:fd:70:
65:ef:40:1a:7a:64:6c:a4:6c:1f:b9:d0:85:b7:82:df:12:89:
58:cf:b6:37:8c:c9:35:0f:95:e7:61:12:09:0d:7e:d9:c6:59:
3b:29:56:1a:22:fe:cb:3a:01:4d:10:1d:97:e9:1a:9f:7f:38:
73:53:15:8d:fa:c0:61:ea:18:53:ca:0d:07:f7:f3:65:7b:fe:
ca:33:d9:e9:1f:13:dc:ff:fc:bd:92:c1:5b:e7:b0:36:79:1d:
1f:20:51:25:04:2b:51:64:94:c2:c2:2b:bb:7e:40:70:1f:0d:
d1:50:97:d2:20:b5:68:67:d4:66:7a:ff:e6:db:e6:5c:e7:f7:
ff:6b:06:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:45:17 2025 by rpki-client