Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: aIoZS7yIOackcnJZXc6MT8nf6z0ij9nt0iGZEnGqx5c=
Subject key identifier: 78:76:6A:21:31:DA:6D:2D:CE:3C:87:7F:C2:CD:9D:89:4B:4A:8A:95
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019658A6ABBF547638D16F878C018A47AB71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0BE4
Signing time: Mon 21 Apr 2025 14:00:40 +0000
Manifest this update: Mon 21 Apr 2025 14:00:40 +0000
Manifest next update: Tue 22 Apr 2025 14:00:40 +0000
Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: V0EbHoMseMHqWk9M1HLI7j5vsdpt2DXGxvngESsrz4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:ab:bf:54:76:38:d1:6f:87:8c:01:8a:47:ab:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Apr 21 14:00:40 2025 GMT
Not After : Apr 22 14:00:40 2025 GMT
Subject: CN=78766a2131da6d2dce3c877fc2cd9d894b4a8a95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5f:13:f1:0f:f4:5e:93:cf:cb:44:04:09:8a:
0c:dd:f9:2b:05:94:32:7e:2e:b3:80:b4:fd:17:f0:
c3:7c:5e:fe:cd:2a:f0:95:ce:05:b3:69:d0:c9:ff:
fd:dd:bc:b1:88:7c:3d:e7:9f:15:b3:59:e8:7e:bb:
6d:fe:83:d8:76:fb:c7:e4:1a:49:c5:82:8e:ff:bb:
0c:03:40:fc:13:13:d8:aa:89:6a:c4:ad:82:92:24:
73:b0:69:36:81:f0:ba:cf:34:ec:3c:88:b1:0f:2a:
dd:e9:4c:99:5c:de:3a:18:cf:10:dc:e5:f5:d7:1c:
89:26:76:17:0e:20:69:93:98:2f:13:00:f3:de:b6:
98:e5:2c:b8:ff:03:39:d2:2d:4d:66:ca:a8:8d:72:
67:31:ca:f0:e6:2c:c3:ee:a9:c3:90:77:2b:0a:d4:
60:aa:14:7f:39:3c:d9:38:62:f7:48:47:2a:54:30:
11:fe:a3:a2:aa:d6:04:ec:e4:3f:3e:84:90:32:3a:
db:6d:70:38:cf:f0:45:cb:b7:3f:87:de:f3:8d:49:
58:51:00:0b:cb:f2:d1:c5:46:ba:ea:82:3d:19:9b:
23:41:0e:d9:e0:84:d2:d2:19:9a:aa:24:c5:08:da:
83:32:d7:d8:a0:e2:af:28:c7:30:d6:6c:81:73:0c:
cc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:76:6A:21:31:DA:6D:2D:CE:3C:87:7F:C2:CD:9D:89:4B:4A:8A:95
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:16:94:d9:80:61:2b:ce:d4:d0:7d:11:f3:d4:08:c3:f9:3f:
b6:c4:e3:95:f3:43:67:4b:59:a8:8a:38:2b:fd:b1:d3:f9:e7:
1a:09:61:59:e8:fd:85:d3:2c:13:8d:74:6f:61:eb:b9:69:c0:
87:2f:a8:00:4d:c0:cd:f7:e8:de:21:25:a8:73:a2:58:f5:e4:
e2:01:67:f1:d3:29:d5:d5:fe:d2:62:58:ba:c8:96:40:ab:79:
54:c6:aa:bd:97:f7:4b:5b:7b:a1:c4:15:c0:d0:d3:31:e7:f1:
dd:66:a6:6f:99:e8:7d:d6:96:e2:17:4f:84:aa:43:87:a4:b5:
ae:a0:2a:a5:ed:91:cd:b2:39:ea:06:04:f9:05:a4:bd:a0:c4:
81:58:d1:4d:d1:2e:08:b8:f6:7e:8b:d7:c8:45:12:31:ea:13:
77:67:84:25:bd:76:be:98:8f:0a:12:16:57:7f:b5:8b:6e:42:
b4:8f:6e:e4:b8:74:f7:f3:20:6f:f2:cb:d7:a2:6c:74:05:d8:
99:bf:77:c7:d9:06:ff:39:33:4a:7f:07:f7:cb:6e:e7:20:7d:
0f:3e:20:bb:6a:80:60:2b:9c:5e:7e:f7:ad:4f:87:88:bf:61:
82:d4:d8:9b:1c:19:7e:ba:9c:c2:05:c3:f1:8b:a0:34:d7:64:
a4:85:51:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:03:56 2025 by rpki-client