Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: /wYcKhY+8efWNzyuh0i3sj7yjgToJgBTYTnSOotS8f8=
Subject key identifier: B0:F7:09:E7:43:AF:4B:C8:89:B0:9D:36:09:67:BA:19:FB:9B:AA:5B
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 01964D4750855FFBE7DB38E787BB7E9C0F05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0BA0
Signing time: Sat 19 Apr 2025 09:00:41 +0000
Manifest this update: Sat 19 Apr 2025 09:00:41 +0000
Manifest next update: Sun 20 Apr 2025 09:00:41 +0000
Files and hashes: 1: FwAUcIE-PlUBJk-lyofvjIK4_Vk.roa (hash: 7pDJDV3PAprmagYY0WEztJ7b9H5DGoPcWbYIPWhc9l8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: X9+6dFb5AKyK7CfjauGl966PpsfUR5Z3oY18vijRPqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:50:85:5f:fb:e7:db:38:e7:87:bb:7e:9c:0f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Apr 19 09:00:41 2025 GMT
Not After : Apr 20 09:00:41 2025 GMT
Subject: CN=b0f709e743af4bc889b09d360967ba19fb9baa5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a8:a2:a0:7f:aa:d1:19:93:dd:b1:e1:1b:fa:
6f:68:93:a6:0e:69:06:53:ba:9f:2c:c2:1e:8d:9b:
ea:9e:f3:9c:16:ec:47:2a:7f:4f:2c:9b:d3:93:c3:
2e:94:f3:94:47:1d:8b:a7:de:96:85:56:bc:29:e8:
d5:88:fe:7e:46:80:c1:9a:51:4e:8f:9c:96:f9:6e:
83:19:5a:69:6f:95:89:87:d5:f5:52:14:92:d7:b3:
4a:98:74:17:c5:56:45:b7:4e:b7:26:ca:68:99:05:
41:14:fe:23:20:2f:88:5e:42:8f:d4:3d:10:2a:ef:
9f:a2:ae:ea:7c:7b:9a:6d:f3:94:df:16:fb:e1:f6:
16:c8:e7:b1:35:6b:02:26:9d:f3:40:e9:af:58:12:
3c:ce:87:21:12:75:fa:40:60:01:b3:2f:31:a4:11:
b3:0c:07:1f:cd:33:80:f7:c0:87:ab:1c:fe:9a:b3:
00:08:eb:e6:6d:49:5b:3c:c7:4c:10:74:25:4f:6e:
4b:69:37:c0:10:34:02:4a:6f:22:f9:12:2d:86:f3:
e3:34:9f:bb:b8:30:8b:ad:25:ee:d5:79:37:25:22:
2d:cc:2f:a0:93:a8:53:7e:77:b2:df:c4:42:38:0a:
14:cb:11:f2:28:71:9c:23:28:b0:1c:b5:09:3f:c0:
a9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F7:09:E7:43:AF:4B:C8:89:B0:9D:36:09:67:BA:19:FB:9B:AA:5B
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:22:cd:6b:fa:e1:06:5e:61:b4:ae:8c:fc:a0:e1:27:94:fb:
d4:1c:56:03:7d:95:5f:6d:60:91:ef:51:6f:a1:5c:d1:50:ed:
8c:9e:73:07:bc:43:09:9e:5b:78:c2:29:0a:48:c8:4e:88:46:
cf:3f:9d:7c:34:bb:bb:6c:fb:72:6b:35:0d:c2:12:19:c5:2c:
cb:01:1f:8f:c0:e3:12:9f:c3:e0:a1:31:13:9d:bc:c3:94:e0:
b4:e3:15:1b:1f:8e:25:6d:02:e1:b8:9a:bd:b8:dc:b7:13:15:
40:59:95:06:8e:e0:12:3b:66:3f:cb:19:9c:c2:c2:2f:4f:24:
e2:f6:03:42:38:b3:11:43:5d:8d:11:f0:21:0e:3c:f0:ed:7c:
d7:27:91:8c:9a:27:9a:a3:f1:fb:9f:f3:90:87:de:b0:b8:f8:
d1:0b:2d:9d:ee:22:7d:de:85:28:0d:85:95:da:22:7b:8b:48:
ce:89:72:b0:8e:d8:52:8b:87:dc:21:e6:46:10:7e:fe:e9:50:
52:ab:4b:4b:3c:c4:aa:70:7e:de:28:d8:94:9e:17:96:18:ec:
37:87:b5:85:e2:a8:50:7d:57:fe:4c:83:a9:aa:12:60:96:30:
4c:63:a1:ce:68:64:40:6d:d9:81:ae:7d:6d:1e:ae:f4:99:07:
10:fe:a1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:34:36 2025 by rpki-client