Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
File: zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft (raw, json)
Hash identifier: w0GfGKWrvdyBybENylJpsECS6lDwNlhRKoJsymzn6yc=
Subject key identifier: 43:F1:C3:F0:1F:87:B3:D9:7C:00:C6:1B:44:A8:7D:AC:FE:82:03:44
Authority key identifier: CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
Certificate issuer: /CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Certificate serial: 01965D282609D978BB3AD9A1B327AD8F5299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
Manifest number: 0A9E
Signing time: Tue 22 Apr 2025 11:00:34 +0000
Manifest this update: Tue 22 Apr 2025 11:00:34 +0000
Manifest next update: Wed 23 Apr 2025 11:00:34 +0000
Files and hashes: 1: 0_tGmdVdpjc2L8zUWyzyW9iPObU.roa (hash: bn84kxibGx4/EOPh2OY0dkRz9RK07gMRfVN7WrprjOg=)
2: zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl (hash: AqulMgP4V6/RXlYf11bQuz4KS4lwrS3g/3+DaxD7yu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:28:26:09:d9:78:bb:3a:d9:a1:b3:27:ad:8f:52:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Validity
Not Before: Apr 22 11:00:34 2025 GMT
Not After : Apr 23 11:00:34 2025 GMT
Subject: CN=43f1c3f01f87b3d97c00c61b44a87dacfe820344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:65:81:3f:b5:61:9f:63:f0:d1:c6:7f:70:03:
cc:19:0d:5a:5b:b5:85:2a:2d:44:6f:cd:5e:b6:4d:
cf:16:34:f2:2f:73:1b:f3:9c:54:36:1a:34:27:b9:
8c:3a:cc:8c:13:fc:31:9e:3a:47:4e:92:af:f6:4a:
06:3e:12:74:3e:0c:be:af:3f:05:8a:02:ff:c5:6e:
28:6e:51:e8:20:2d:60:ea:44:f3:cd:d5:47:1e:bd:
88:b6:4d:37:18:06:bc:57:0d:3f:d6:3d:c1:1c:29:
c1:42:33:78:96:c0:69:b2:84:ee:02:8a:09:68:da:
fa:99:f1:b7:71:9e:74:90:88:01:7b:a8:c2:1d:59:
26:0d:33:90:14:59:71:8c:19:eb:ce:e1:98:21:2f:
bf:0a:9c:ba:46:32:fc:99:6c:f7:f2:f8:08:b8:8c:
30:88:c1:b7:2b:bc:1c:74:2c:9d:db:cb:fa:90:92:
81:13:cf:07:8d:e0:39:63:02:0a:50:06:b0:28:80:
18:3f:93:de:a7:40:1f:f8:88:1c:49:b8:0b:f8:0e:
46:df:cf:b8:ef:d9:13:b9:a5:95:7e:5c:7f:98:d5:
0f:e5:38:ce:f5:52:5c:6f:30:5f:32:ed:77:92:1c:
d0:1f:9b:d4:ae:8b:a7:7f:a1:d9:ea:8b:2e:1f:cc:
7a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F1:C3:F0:1F:87:B3:D9:7C:00:C6:1B:44:A8:7D:AC:FE:82:03:44
X509v3 Authority Key Identifier:
keyid:CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4c:05:ab:69:6b:b4:17:2a:cf:d4:89:7c:be:fa:54:80:b4:
5c:48:5c:66:c7:dc:57:55:84:68:5b:0e:f7:b7:54:2b:ec:10:
11:c8:e3:3b:92:3a:02:9e:fa:79:b9:57:6c:7c:18:91:dc:84:
28:46:1f:23:07:0e:f1:8f:88:b3:9d:05:42:94:e1:f4:c1:6c:
58:b4:e0:99:80:5b:f1:e1:ba:3d:96:46:93:23:9e:3e:70:5b:
ca:51:cf:e8:ae:ea:33:ec:c6:a5:e9:b0:5d:94:64:7a:e3:d2:
f4:a7:c0:d8:8a:3a:a7:90:c3:a1:e3:74:8b:25:f6:96:1e:a4:
bb:9a:08:85:31:e0:2c:80:4c:6e:fd:01:9a:a0:5d:67:a5:bf:
7e:ab:40:b3:23:76:a7:04:7b:9a:af:0f:51:ae:f2:be:48:ae:
47:ce:7c:ed:6d:5f:95:25:39:5c:2d:86:a1:90:08:ba:90:c9:
19:11:8f:16:d7:58:42:80:2f:4b:25:e7:a5:a4:1d:98:9a:05:
56:99:be:bf:88:4f:a0:14:2e:2f:47:d3:1b:74:40:b1:37:72:
89:04:6d:40:f8:bc:a3:43:43:7c:ad:c3:de:18:f6:25:fa:bb:
7b:f7:e3:4e:bc:ca:a8:01:2f:25:1e:46:22:67:a6:d3:00:a7:
d7:a2:24:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:34:22 2025 by rpki-client