Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft (raw, json)
Hash identifier: t/bZC00KsLl86eJMWgHRdDxkKT1fba/52pXw7DlxtLY=
Subject key identifier: 5E:E1:7C:85:C5:06:07:0D:BB:3B:C5:8F:C4:EE:84:6B:AA:97:DE:FE
Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695
Certificate serial: 0196515B03F4D87034FF96E90A1E852BA020
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
Manifest number: 0F3C
Signing time: Sun 20 Apr 2025 04:00:41 +0000
Manifest this update: Sun 20 Apr 2025 04:00:41 +0000
Manifest next update: Mon 21 Apr 2025 04:00:41 +0000
Files and hashes: 1: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl (hash: QG5hcGW3QZ0K45CcbB69OOb23VvPmP2IUtVODTZWTBE=)
2: jPXJlh-t4_XYR3J0eKKhQRTzmMQ.roa (hash: LCBAN0N7xGJeaqTX5AAQMXZtcLuwBKPNcwcKiOcd8Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:03:f4:d8:70:34:ff:96:e9:0a:1e:85:2b:a0:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695
Validity
Not Before: Apr 20 04:00:41 2025 GMT
Not After : Apr 21 04:00:41 2025 GMT
Subject: CN=5ee17c85c506070dbb3bc58fc4ee846baa97defe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:10:c1:bb:e7:0b:ed:6c:cd:96:b3:0a:3f:
0e:4e:09:e4:e2:04:5e:42:62:10:0f:7b:ad:93:6a:
02:05:c4:66:c6:28:d8:18:50:d8:4c:28:df:fa:87:
fa:14:5d:8f:09:c7:a4:8d:e2:32:3c:c5:f2:76:6b:
5a:10:99:14:ac:af:e5:1b:46:7b:c7:16:6b:0a:2b:
23:f4:af:1b:d0:41:41:75:48:69:9d:72:f7:4d:65:
88:16:88:c0:8f:a6:f5:c9:e1:94:ac:b9:a5:e5:1b:
cd:cc:e2:a6:91:a6:60:39:35:2e:2f:b2:46:68:65:
0d:86:a1:ec:06:48:19:c4:89:aa:37:4f:bc:d1:31:
16:bd:cc:5b:3b:71:93:ae:3c:5a:0f:5d:33:2f:4a:
94:81:7d:31:44:8f:db:98:8a:3c:f3:7b:fe:71:7e:
4e:d1:cc:2c:45:d6:7c:0a:83:91:18:0e:42:1b:f3:
84:65:f6:5c:48:16:93:a0:f9:bc:85:de:38:09:7f:
a6:87:6f:49:7e:29:16:fc:61:2d:51:5e:ce:5a:38:
a7:e6:e4:f9:d8:19:25:46:3d:30:90:8e:54:5d:76:
f8:32:66:65:a1:9d:3a:c3:53:ba:79:e2:3a:25:68:
48:94:89:f0:38:5a:2f:18:2e:aa:1e:1a:5b:8f:5f:
cb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E1:7C:85:C5:06:07:0D:BB:3B:C5:8F:C4:EE:84:6B:AA:97:DE:FE
X509v3 Authority Key Identifier:
keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:f9:49:af:e2:d1:72:cf:28:c6:e9:cb:4e:0e:df:b5:c2:e0:
73:b3:83:c2:70:8b:20:aa:32:da:19:f6:fa:43:9d:80:bd:fe:
29:81:e9:f1:f3:d0:79:90:f4:f7:e0:a6:ce:ef:b1:31:b4:bd:
6e:8d:d1:c9:58:da:2f:2d:0f:02:46:8a:c1:df:9a:7c:45:e7:
a0:6c:1d:a6:ad:b8:e7:59:1b:4c:d4:69:dd:52:5b:79:29:7b:
6f:35:5e:ec:8c:c3:c0:de:9f:f8:a8:bd:88:c4:15:cb:2d:01:
c5:9a:f4:a5:6a:e2:4a:7d:09:db:af:da:d0:c4:d6:f6:05:9d:
5b:75:12:d5:86:5c:6b:01:42:18:6c:36:5e:f8:05:8c:65:c2:
86:8b:fd:a2:43:a5:6b:ab:5f:f6:51:dc:02:56:e3:46:6d:17:
f7:23:8c:11:40:0e:3c:17:8a:ec:2b:ff:f2:28:db:8f:a7:59:
4a:42:9f:c7:b0:47:51:b1:86:c9:f6:db:94:6f:09:6b:5d:ca:
f1:11:7f:36:30:7d:73:84:2e:cc:02:41:b8:7b:ad:ef:71:b0:
fc:ab:f6:5e:e7:e3:7f:42:12:e7:1e:5e:4d:fb:95:7f:03:75:
c3:27:8d:93:87:9a:70:f1:b8:89:b9:84:61:84:7b:06:55:a2:
67:6f:fd:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:14:51 2025 by rpki-client