Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
File: zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft (raw, json)
Hash identifier: BHIMCva/Jj1wddlJhG8NUXw5gVY0QFwdjzmyqvTh+Bs=
Subject key identifier: 2F:5F:BD:2B:3B:47:9C:F2:A6:50:13:F2:27:4A:60:F4:4E:3B:B7:BF
Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Certificate serial: 01965500C0403D7D9FF60D485CC42CE0213E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
Manifest number: 0E7C
Signing time: Sun 20 Apr 2025 21:00:34 +0000
Manifest this update: Sun 20 Apr 2025 21:00:34 +0000
Manifest next update: Mon 21 Apr 2025 21:00:34 +0000
Files and hashes: 1: 1r-YWbxqyiaEeQQe7XhCESQq4-A.roa (hash: whgT3ej9YeVcd8f315sOoiAQXSfv+O+qM97fjItvC5w=)
2: zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl (hash: xhC7eQUpfRqoPCm58ArFQL/yXgxjZOoYm+iUlcpGW2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:c0:40:3d:7d:9f:f6:0d:48:5c:c4:2c:e0:21:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Validity
Not Before: Apr 20 21:00:34 2025 GMT
Not After : Apr 21 21:00:34 2025 GMT
Subject: CN=2f5fbd2b3b479cf2a65013f2274a60f44e3bb7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:1d:c3:59:e8:cb:84:e6:04:87:10:3e:36:
91:df:68:9e:04:ed:18:fa:93:9f:5e:5f:47:a5:1a:
7c:51:60:b3:25:1d:46:b1:29:4b:08:e8:8a:4b:72:
08:72:aa:48:20:95:bc:c0:7d:05:32:df:65:87:c1:
de:25:88:e8:a8:90:5f:50:86:2b:e4:1c:04:98:b8:
a1:8c:5e:54:7a:a2:5d:48:04:f2:99:32:ca:9c:e6:
ef:74:9c:be:f7:1f:21:7b:cb:f9:b1:1c:23:8a:ea:
68:7f:3b:c1:64:b8:83:9a:97:18:da:47:85:2e:4a:
df:9f:84:cd:9b:35:75:ee:5a:de:cb:13:75:51:7d:
f2:24:6a:2e:50:08:00:85:7b:82:d8:9b:f4:2f:78:
66:bf:e9:10:f5:f9:92:12:89:85:a8:0a:40:59:39:
01:ec:ee:c6:ea:79:e5:c4:92:0f:6d:40:ea:71:9d:
3b:cd:b3:a6:67:c8:12:b8:73:c3:4a:97:70:4e:3c:
f5:80:28:96:51:84:6a:f8:74:da:62:61:08:18:9d:
ac:8c:38:18:a3:83:69:f8:b4:61:4b:99:ec:fd:01:
1b:77:b3:78:7a:35:8e:8d:62:d8:5b:7f:09:95:a4:
89:b4:0d:78:25:c0:8d:3a:01:d3:ac:4f:87:56:b0:
76:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:5F:BD:2B:3B:47:9C:F2:A6:50:13:F2:27:4A:60:F4:4E:3B:B7:BF
X509v3 Authority Key Identifier:
keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5b:45:13:22:ad:4c:95:4d:b2:35:0c:25:4f:f9:df:ba:b6:
56:10:a4:f9:27:9f:06:b3:1d:87:7f:e4:2e:46:38:3f:3f:42:
9a:2a:f7:68:ac:98:48:56:54:a3:dc:44:1a:37:3e:22:04:d0:
76:f8:cb:12:0b:36:df:b6:16:b9:0b:0a:23:28:5e:f2:b1:d7:
c9:1a:65:92:fe:f9:0a:e5:01:77:c8:91:9c:2c:bf:a6:7f:ce:
1c:f5:36:42:b0:c8:4b:aa:25:8e:14:28:e4:38:ba:c3:de:ce:
cd:ec:4d:0c:f3:33:02:6d:29:a3:49:0f:bc:ed:74:31:24:d6:
b5:0d:d6:65:06:6e:1e:cf:a7:f3:d6:86:10:d1:54:02:e0:6e:
7f:09:1f:31:4a:9d:28:38:aa:fd:16:e2:26:1f:67:70:3f:bb:
0d:57:3e:06:b9:e0:4d:f3:f5:5e:45:e1:17:12:43:86:e7:c7:
fe:80:20:78:91:33:87:e3:39:08:53:dd:73:98:54:df:c7:3f:
4f:87:fb:ee:11:80:ec:39:92:eb:85:c4:43:be:0d:c4:33:9f:
3e:50:77:c6:a6:4d:95:57:bb:6b:5e:b1:27:9b:ac:9e:c3:10:
87:0f:15:ac:88:f9:c7:be:8e:e1:54:60:88:21:61:95:b9:30:
74:af:4b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:12:22 2025 by rpki-client