Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: lDKq8uId3BFbo1eW8paBCWLwZwe1Of4zVP8p7x3jDV8=
Subject key identifier: 4B:68:12:FD:6D:88:E0:87:97:55:DE:F5:23:78:1E:35:BF:0A:8A:BB
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019657268BB670F492B3DEA2AFB833CB2920
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 1492
Signing time: Mon 21 Apr 2025 07:01:05 +0000
Manifest this update: Mon 21 Apr 2025 07:01:05 +0000
Manifest next update: Tue 22 Apr 2025 07:01:05 +0000
Files and hashes: 1: DnVFEpYRkYdsvx6fTEjYM0mnXYg.roa (hash: Q/XnpIbexx4X2BOItVZgFWxgUIF3KGLUNsRlADlMLPI=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: RMT9W5ErezwojdSDTL1UzfLikvE+r3dqBLMdO+XKoD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 07:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:8b:b6:70:f4:92:b3:de:a2:af:b8:33:cb:29:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Apr 21 07:01:05 2025 GMT
Not After : Apr 22 07:01:05 2025 GMT
Subject: CN=4b6812fd6d88e0879755def523781e35bf0a8abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:3e:6e:2f:9d:b4:de:36:79:4f:dc:f1:d0:
8b:a6:97:dd:34:26:95:a9:99:47:ba:96:2d:56:d1:
54:ef:80:f2:76:b0:74:67:c1:a2:ea:ba:85:3f:20:
7d:d9:af:c2:5f:56:fd:23:d9:cb:6a:9f:23:0a:4e:
0e:75:fc:be:87:ad:d7:c3:5c:9e:aa:1d:86:b0:3c:
7e:93:87:c1:1a:48:40:e9:3d:e4:46:ae:59:9c:14:
5d:81:a3:9f:64:3c:74:6c:04:12:9f:3d:5c:ec:62:
0f:ef:cf:20:85:b8:12:7d:df:7c:cf:0f:60:d1:4b:
0a:23:e0:ea:6f:d5:6b:b4:b8:d3:86:5a:51:f2:79:
d8:12:d2:e7:8a:86:a3:07:1d:3c:42:61:9b:47:de:
e6:c6:9b:ea:78:37:39:a1:58:ec:f5:c5:dd:86:ff:
4d:58:19:1e:50:31:7b:c0:da:d4:db:26:11:72:34:
27:19:a8:9d:48:30:e8:ff:3f:ee:69:e8:e3:cd:54:
de:ff:fc:f8:d4:31:51:53:92:39:38:a7:b0:ea:c6:
98:3e:11:31:f3:8c:4f:83:fd:fc:8b:a5:03:18:75:
a1:ba:54:33:60:0c:78:72:1e:69:28:be:46:f2:96:
74:d3:33:33:ff:c2:df:bc:f4:36:9a:7c:51:d1:d4:
89:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:68:12:FD:6D:88:E0:87:97:55:DE:F5:23:78:1E:35:BF:0A:8A:BB
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:85:b6:9a:5f:db:17:4f:1e:17:d1:f6:1d:6e:7a:65:48:f1:
d7:58:f5:42:80:d1:17:d1:6a:0e:db:17:c7:84:1e:db:cb:e4:
39:e2:14:ce:78:ec:21:c0:9d:98:9b:25:47:1b:d0:9b:ef:7b:
38:fd:d2:22:be:2c:0c:10:38:1b:1d:7f:b1:89:9f:0a:8b:03:
6b:5f:53:4c:90:7b:ef:d6:24:1f:20:24:e3:e5:35:aa:a3:f5:
39:f4:f1:94:e0:91:15:82:19:05:5e:a0:34:a8:30:61:80:ef:
bf:07:ff:54:2d:77:5d:3f:ba:95:ee:84:42:34:8a:c0:ab:60:
80:8f:4a:70:08:09:c1:ac:07:7e:9c:9e:c4:61:d9:d3:b9:c6:
92:50:cb:cf:63:c2:f6:ce:a6:19:e3:72:ed:2e:41:66:f9:46:
cc:8c:79:ee:d9:45:27:58:79:84:42:0e:a7:d6:07:a4:7a:d2:
8c:7d:3e:45:6c:b2:ff:06:4c:f3:ba:ce:d5:8d:21:8e:35:7d:
e7:2b:52:16:cb:60:08:5e:ca:af:a7:04:c3:a7:2c:f3:26:47:
58:58:d4:48:85:f0:28:07:05:1e:8a:09:58:4b:a1:31:8e:67:
a0:e8:8a:df:86:17:c4:ce:7b:8c:16:e7:10:94:d1:88:b4:77:
72:cb:a1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:30 2025 by rpki-client