Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
File: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft (raw, json)
Hash identifier: DWAmBtG3yXMNMEhMB+oy2cJ5DeBhl20o/jtZc0kj7/U=
Subject key identifier: 28:F5:54:A5:D4:EC:A6:CC:44:93:D3:3A:28:6E:07:46:42:14:D4:22
Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Certificate serial: 01958EBCF33820D6782AF9B7FA5933DB6542
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
Manifest number: 0E92
Signing time: Thu 13 Mar 2025 09:01:42 +0000
Manifest this update: Thu 13 Mar 2025 09:01:42 +0000
Manifest next update: Fri 14 Mar 2025 09:01:42 +0000
Files and hashes: 1: DnTbZNQqyk7b1Kpp-h3yl2scJwY.roa (hash: TJ12NvtCptbjwY91XKfeBV5bJZ6ugQZ1nYOaUhjOlp4=)
2: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl (hash: ecvo9AerCiNpWcfyB4Az98VKBd8JGN5tMYymkYd/2JE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bc:f3:38:20:d6:78:2a:f9:b7:fa:59:33:db:65:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Validity
Not Before: Mar 13 09:01:42 2025 GMT
Not After : Mar 14 09:01:42 2025 GMT
Subject: CN=28f554a5d4eca6cc4493d33a286e07464214d422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:07:ee:2a:ba:95:1f:8f:be:1e:5c:6c:95:c7:
4b:81:34:a1:18:6d:35:5b:4c:3a:9e:3e:fd:7d:7b:
85:b6:9d:8b:85:fb:dd:de:6c:b6:33:16:6a:b4:92:
8d:04:c5:da:f6:f2:70:a7:ef:07:85:a6:39:ce:85:
d3:cd:44:b9:10:3c:7c:5b:e3:47:4c:d8:df:3c:8b:
6f:36:f1:3b:d4:91:94:8d:28:13:fb:76:4a:1b:91:
da:59:f5:bf:12:83:5c:7e:01:a2:bd:f8:a9:f5:a5:
63:82:f6:0c:4a:fa:3c:2c:98:7e:49:97:eb:ee:87:
63:56:be:c3:0d:8a:0b:21:39:f6:2d:43:0f:7e:55:
ef:b2:49:e4:a2:29:37:b2:b7:c7:a2:fc:39:94:00:
c4:3e:ff:87:d3:76:e6:11:45:07:4d:ce:11:dc:9d:
35:64:b9:05:bf:13:4b:e9:86:b1:e5:3d:47:ac:6b:
8d:ec:30:ce:41:c3:69:44:64:3a:ea:5a:4c:5d:f7:
e9:7c:01:90:70:a8:61:a2:dc:8e:ca:c4:c6:e0:38:
aa:cc:66:1f:e6:eb:b1:db:f4:36:9b:cb:fc:fd:ce:
40:96:06:cd:7a:92:82:38:96:a6:2c:fe:c9:4f:b2:
68:a0:d5:ab:60:dd:bb:68:7d:2c:c4:7c:5d:a6:01:
21:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F5:54:A5:D4:EC:A6:CC:44:93:D3:3A:28:6E:07:46:42:14:D4:22
X509v3 Authority Key Identifier:
keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:3f:63:85:47:a7:eb:8f:f3:c4:05:90:25:af:78:70:96:37:
cd:a5:d5:fd:bc:ee:0f:ec:a3:f7:d0:77:98:aa:d3:b6:c6:75:
0f:d9:fe:ce:30:25:ef:1a:34:0c:33:43:90:23:bd:d2:10:f6:
81:64:a4:4a:2c:8e:3f:2f:88:e3:7a:87:3a:a0:e3:63:16:13:
37:4c:4d:fd:2d:9d:21:62:c3:95:02:ba:c7:ee:73:ce:17:2d:
84:16:36:49:40:3c:69:4d:59:c6:c0:5c:b0:14:12:a3:00:bb:
6b:32:66:a3:a0:49:99:4d:3a:0a:82:ba:86:76:a1:80:25:c8:
d3:4d:7b:c8:56:5a:9f:22:04:f8:bc:8a:5a:1b:94:19:39:a6:
c3:2c:25:f9:83:18:9d:9c:11:57:a8:76:ec:dd:9c:ca:9f:83:
81:ea:38:64:29:4e:b6:c7:a6:26:01:64:1d:d9:f1:8f:8a:ae:
60:1d:21:a9:27:3f:47:04:25:bd:62:28:0b:01:32:dd:22:99:
a1:e7:47:e4:c0:7f:30:96:72:87:8b:66:1d:dd:c7:80:60:5f:
29:bb:ee:8b:ce:a5:55:26:1d:bd:dd:0b:fe:db:07:7c:aa:e7:
2d:15:7e:d7:8d:34:37:e9:96:aa:c6:e0:21:e7:5f:f5:1d:28:
aa:d5:aa:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:17:20 2025 by rpki-client