Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
File: ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft (raw, json)
Hash identifier: qtYK/tsr/Fhp/Mf1/9zkEsKgf6nieKQGf+cuETNUH4c=
Subject key identifier: 5F:1F:F2:C0:50:11:F1:8C:7B:30:5D:86:C0:98:72:C1:45:1D:4A:15
Authority key identifier: 66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A
Certificate issuer: /CN=66a1d1a017802e5c57da5978544fc537403da73a
Certificate serial: 019650B66EAD2145DC2E1B84F59E043C1794
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
Manifest number: 080F
Signing time: Sun 20 Apr 2025 01:00:55 +0000
Manifest this update: Sun 20 Apr 2025 01:00:55 +0000
Manifest next update: Mon 21 Apr 2025 01:00:55 +0000
Files and hashes: 1: ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl (hash: sjLrFQV3dM/TIl/euwXCLDGOhajl3JN7gpgcABDJQGs=)
2: hJbdYVF-sB2ARWcr3wLM-Bolskc.roa (hash: p8HLFjhLNYXJBjvp0Ydq3UNKZlQk3vcyaOZBKxCq5jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:b6:6e:ad:21:45:dc:2e:1b:84:f5:9e:04:3c:17:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66a1d1a017802e5c57da5978544fc537403da73a
Validity
Not Before: Apr 20 01:00:55 2025 GMT
Not After : Apr 21 01:00:55 2025 GMT
Subject: CN=5f1ff2c05011f18c7b305d86c09872c1451d4a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6c:6d:6a:e7:96:f1:1a:24:ee:6d:56:d2:4b:
ad:e7:23:29:9e:6d:12:bb:78:ae:12:63:f8:5a:7f:
a9:8f:5a:58:ad:b4:3f:ae:b3:9a:c4:eb:00:20:8e:
a9:dd:5c:24:30:88:ff:21:f7:49:1f:2e:60:89:64:
61:9e:c5:dd:e4:b5:d9:71:11:7f:0f:9f:60:87:4f:
46:dd:de:d4:fd:6a:d2:4c:b1:07:49:36:a6:c8:09:
77:ea:7f:fd:f2:72:ef:34:fa:2b:c1:ac:2d:c1:17:
a1:9e:63:27:55:69:4e:76:f5:93:b6:82:3a:c6:50:
fa:8d:e2:21:52:ab:20:ef:5a:4c:4b:82:46:35:4b:
86:cc:87:77:6c:33:3e:88:6d:42:d3:f8:d3:02:f4:
54:b7:d9:92:cd:46:df:cc:7e:29:54:46:24:e4:e4:
b1:5b:7e:fd:da:a9:32:52:88:ad:9f:57:94:19:b0:
05:aa:62:9e:d4:8f:ef:e9:d0:50:8d:bf:f5:ad:76:
82:4b:15:6d:e1:0d:86:08:17:66:ad:ec:08:4c:7a:
46:ac:d4:80:db:89:9d:ae:d0:d3:78:f9:19:3b:38:
30:6f:17:7a:ae:5a:10:04:3c:a9:08:d7:7d:01:00:
c5:c6:92:52:78:dc:dd:21:4f:0f:42:77:47:4c:ca:
9e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1F:F2:C0:50:11:F1:8C:7B:30:5D:86:C0:98:72:C1:45:1D:4A:15
X509v3 Authority Key Identifier:
keyid:66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:01:b8:bb:7b:b9:f8:9f:fd:bb:bc:b4:37:8d:48:ea:2a:12:
0d:08:f4:27:f8:cf:34:9a:3d:be:7a:0d:1f:78:7c:b6:74:85:
0b:4d:fe:94:04:19:90:a8:5d:92:18:9e:fb:88:06:d0:f4:a1:
46:10:37:dd:4a:da:35:dc:d1:80:f5:98:8e:d0:28:b5:e9:9a:
39:bd:34:44:fc:1b:19:b1:b8:12:b3:41:b9:60:e2:38:66:c8:
18:2f:dc:3d:d1:07:7d:22:f0:48:7b:7b:4d:05:7e:b7:13:91:
6f:16:8f:49:4c:88:15:da:81:6e:a6:bc:a9:fb:84:8b:2d:19:
12:28:83:8c:16:68:75:40:90:1b:69:3c:f3:1d:6f:f5:f0:10:
98:d6:b1:f8:af:ee:b9:2d:28:f0:58:7c:0b:be:6b:ba:89:b7:
12:d8:ed:b5:4e:9c:a3:34:5c:eb:bf:45:88:fb:f0:01:0d:e5:
c2:1b:8c:69:d1:93:0d:55:73:c3:32:57:2a:de:a6:5e:27:58:
6c:c3:68:4a:3b:0a:06:8d:52:44:ae:d7:fb:01:2e:1a:17:cc:
68:b2:14:e6:6a:e7:77:c3:09:e7:0a:f9:65:2c:f8:44:0c:c5:
41:8f:f1:61:cc:b4:2d:65:5b:1f:a2:15:ea:5d:5c:c5:b7:7c:
75:2c:b0:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:01:02 2025 by rpki-client