Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
File: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft (raw, json)
Hash identifier: zqTirAtXLqc4SoZxDc6/HFdFZLUlQW8oiLoE4eracoM=
Subject key identifier: C4:0C:38:8E:5A:FE:B4:BF:B7:F4:4A:4D:8D:EF:11:64:3C:61:25:FE
Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Certificate serial: 0196444454758807D8938C42D01CC2E54201
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
Manifest number: 0EF0
Signing time: Thu 17 Apr 2025 15:00:50 +0000
Manifest this update: Thu 17 Apr 2025 15:00:50 +0000
Manifest next update: Fri 18 Apr 2025 15:00:50 +0000
Files and hashes: 1: DnTbZNQqyk7b1Kpp-h3yl2scJwY.roa (hash: TJ12NvtCptbjwY91XKfeBV5bJZ6ugQZ1nYOaUhjOlp4=)
2: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl (hash: Ui3Sa5x0cjQxB1R0yrYO2mHiUX17bEf3644HwyctqWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:44:54:75:88:07:d8:93:8c:42:d0:1c:c2:e5:42:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Validity
Not Before: Apr 17 15:00:50 2025 GMT
Not After : Apr 18 15:00:50 2025 GMT
Subject: CN=c40c388e5afeb4bfb7f44a4d8def11643c6125fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:66:ff:13:44:4d:73:c0:5c:1b:1e:d8:8e:fe:
73:88:54:cf:3b:3a:a2:fd:dd:18:33:63:f9:55:e2:
95:4a:33:1b:92:da:67:70:97:16:ae:75:0d:8c:6b:
21:4a:f0:dd:b3:c3:9e:05:14:2f:5d:6f:67:75:e3:
cf:f3:e1:80:ad:f7:17:25:93:8c:b5:10:55:f5:e6:
c8:be:ca:0a:28:37:2f:88:81:4a:d3:44:b1:1f:f5:
7e:3d:0d:95:50:d0:98:f6:45:40:7d:7d:c5:26:c2:
02:2d:ab:65:77:41:ee:a2:fc:a8:51:a0:6f:12:d6:
32:a1:49:9a:4c:e9:64:df:ec:28:7d:2d:fe:9d:db:
ac:2b:c9:19:77:3d:ca:f0:08:06:d7:d3:c8:8e:39:
0c:a7:bb:23:44:94:d0:0b:67:26:f7:2c:b3:a6:a5:
cf:74:0c:2f:b3:b3:19:96:6f:bb:08:fe:78:c7:0d:
8a:c7:48:02:89:48:94:a5:fc:8d:81:03:6c:0e:7b:
f0:85:80:84:ac:50:12:21:52:51:c6:26:de:28:a5:
78:05:0b:1e:ac:08:56:7d:82:a2:17:a4:0b:4f:67:
90:98:3d:de:2f:a9:e5:b3:6f:87:4b:57:e9:89:20:
69:92:63:e3:fb:50:fb:de:f5:67:68:28:d6:b8:49:
37:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0C:38:8E:5A:FE:B4:BF:B7:F4:4A:4D:8D:EF:11:64:3C:61:25:FE
X509v3 Authority Key Identifier:
keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:df:4f:3e:8e:2d:75:03:e2:33:46:a9:f5:fd:e7:ec:99:8d:
d3:ec:1f:45:59:4f:49:2c:87:ef:f9:94:be:e2:39:db:fb:84:
7c:73:77:bf:e4:c6:53:23:63:f6:ab:46:3d:cc:f4:61:3f:af:
5d:4a:62:9e:f4:7c:a4:8f:0a:cb:24:1e:f1:9b:39:cc:9f:8e:
30:7e:7c:70:41:14:ce:a9:1f:e3:4a:8c:0d:04:7a:c2:95:95:
27:9d:e3:34:24:1f:b6:54:9a:0e:b6:82:3d:37:3a:28:78:bf:
d9:29:0b:5e:56:b5:84:ca:54:76:bc:36:64:16:75:a1:85:5b:
4d:14:99:44:58:10:90:74:45:15:75:01:19:e8:f8:37:f7:b4:
68:65:09:d1:bb:f9:b4:d6:81:0e:99:e6:c4:d0:49:1a:e1:c0:
83:d2:50:99:bf:fe:46:e9:e2:16:0a:08:7d:a1:13:7d:a4:8c:
08:04:db:ee:ce:bb:10:5e:30:a4:7b:31:e9:d5:d0:f1:4a:92:
66:06:95:3e:ce:8c:fc:bb:ed:9c:9c:d3:fb:35:ba:9b:cf:d2:
71:05:a5:87:ee:3c:07:3e:12:5a:91:9b:1e:8d:c5:0c:e8:67:
04:c8:f0:22:b5:1c:1f:23:ce:e2:78:21:3f:7f:f1:78:34:e4:
1c:30:26:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:18:19 2025 by rpki-client