Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
File: ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json)
Hash identifier: vwAbpc4seTXkvtvatyTWLPr5Gj9g0mA/EZLta7Lchnk=
Subject key identifier: E9:F6:8E:86:6F:51:24:62:4E:5A:D0:53:48:B2:4F:68:00:41:9A:01
Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
Certificate issuer: /CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Certificate serial: 019638AE2AF7B4773A4E29C818F1431233E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
Manifest number: 1405
Signing time: Tue 15 Apr 2025 09:01:00 +0000
Manifest this update: Tue 15 Apr 2025 09:01:00 +0000
Manifest next update: Wed 16 Apr 2025 09:01:00 +0000
Files and hashes: 1: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: BjxHYkrkwAQ7HMqaxmwMtXkIh0TcWr+1Lm5b9huhjHY=)
2: hgdnPYifylvEbRhPG5rcZMHgm-E.roa (hash: kVaA/BoHtOWfVS1UNUVlSYGZdZvXh/V05GtETEpyoE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:ae:2a:f7:b4:77:3a:4e:29:c8:18:f1:43:12:33:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Validity
Not Before: Apr 15 09:01:00 2025 GMT
Not After : Apr 16 09:01:00 2025 GMT
Subject: CN=e9f68e866f5124624e5ad05348b24f6800419a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:aa:b2:5d:55:93:99:df:a7:af:a0:c9:2b:
c8:ab:e7:ec:75:08:56:61:82:e9:87:cb:5d:d9:d1:
a5:37:16:76:8b:39:cf:ea:7f:25:c4:80:92:9b:00:
4b:ff:78:8c:90:67:f9:99:54:94:36:ac:f6:c8:3c:
55:e8:99:52:3c:54:bb:71:79:b8:af:1c:14:e9:9c:
bd:4a:15:49:12:b3:f9:e4:49:6d:1a:99:2e:78:17:
1e:07:2d:d7:83:fe:02:c0:6a:ab:73:ff:d9:fb:ec:
b7:a5:a3:2e:91:4c:f2:52:39:b2:e4:c7:bb:ae:b5:
bb:a3:94:75:26:36:67:5f:62:78:a0:e9:30:47:f9:
80:58:0c:51:72:00:1d:6d:52:b9:b9:d7:18:56:8a:
fa:e5:27:df:9e:09:bf:58:3b:28:b3:d9:f7:2e:1f:
3e:58:22:f5:5c:5f:33:ed:55:01:c2:d8:7a:81:36:
f2:ad:18:56:09:fe:68:a5:38:ec:d0:f3:c1:57:ff:
ce:f3:cc:ca:e2:d0:83:1f:03:8d:ee:1c:53:99:fb:
c0:26:60:be:de:23:bd:ee:44:4d:15:5c:f6:f7:f8:
78:6e:3c:bc:28:34:77:26:61:97:64:f0:32:02:97:
19:23:02:96:f5:6a:0c:ff:7e:c0:a6:86:d4:5c:5e:
46:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F6:8E:86:6F:51:24:62:4E:5A:D0:53:48:B2:4F:68:00:41:9A:01
X509v3 Authority Key Identifier:
keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:01:3f:69:0b:8e:93:79:1b:08:ee:11:c9:a7:38:d2:15:20:
f3:41:f6:e9:4b:f2:53:45:56:d0:84:da:18:0b:84:29:dc:d8:
9f:be:32:cd:2e:6e:2b:96:89:a2:53:2f:29:24:86:73:c2:9e:
1e:23:70:61:d8:c1:5f:ee:f6:04:fb:8d:7f:f1:8a:99:a0:65:
c6:42:40:47:44:8e:52:56:9c:11:c4:a1:eb:f7:32:43:b0:c4:
54:38:bb:bd:98:c2:bf:31:4a:cb:c1:c5:55:1f:87:fb:ad:b7:
50:70:86:52:37:fe:34:a1:fd:f9:ee:c4:33:a8:ca:af:2b:9b:
79:8d:50:0c:60:cd:c1:c0:58:33:21:87:e6:20:9b:9b:a6:85:
ba:c7:68:b0:96:04:25:b6:a8:72:fd:ed:f9:02:ff:5f:3d:05:
de:68:0e:8d:82:1d:d5:ca:56:89:ec:31:bb:ca:32:6c:1d:b9:
d1:fc:1d:7d:73:5d:b3:d1:1f:6f:7b:e6:82:5c:f3:d5:e7:59:
58:dc:32:bc:af:f8:9a:50:94:c5:e4:73:c6:97:61:68:f8:6c:
86:de:d3:f9:0f:a1:82:72:59:74:ed:1e:91:d7:f8:01:dc:d9:
d7:f2:5e:26:25:60:78:b1:9b:a8:ec:97:b1:4f:b3:02:7b:df:
0d:60:a6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 13:39:36 2025 by rpki-client