Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
File: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft (raw, json)
Hash identifier: /R9kPlZkq2GUAdAz05pZU6Z9FSIQBDz3PRrV9NmqPwY=
Subject key identifier: 1C:13:CA:0C:5E:05:E1:B0:9D:22:EE:BB:E2:17:7E:AA:C2:0C:BF:E4
Authority key identifier: CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E
Certificate issuer: /CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e
Certificate serial: 019654C99E7CE03E3CA4447DF1A1DFDC6791
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
Manifest number: 02BE
Signing time: Sun 20 Apr 2025 20:00:21 +0000
Manifest this update: Sun 20 Apr 2025 20:00:21 +0000
Manifest next update: Mon 21 Apr 2025 20:00:21 +0000
Files and hashes: 1: Kj9VfdUCgMk4aGgFNgZJ64WvAz4.roa (hash: B1YIPHashB6NFlEh7qNPbd/2OLMoFdhR39F9O5/IGts=)
2: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl (hash: sYsyfDCMKsdU5jXEtwVdOHOZ/ZRGb2Pq/K07CN34q0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:9e:7c:e0:3e:3c:a4:44:7d:f1:a1:df:dc:67:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e
Validity
Not Before: Apr 20 20:00:21 2025 GMT
Not After : Apr 21 20:00:21 2025 GMT
Subject: CN=1c13ca0c5e05e1b09d22eebbe2177eaac20cbfe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1b:98:f0:4c:6f:89:2c:2f:9b:fd:67:79:14:
9f:98:ce:e3:9f:93:9c:ed:b9:22:5a:4f:94:60:d3:
a0:65:cc:c6:8d:41:ea:f1:b4:51:0e:f9:6c:10:6e:
9e:85:f6:23:ac:8f:7f:99:22:6f:47:13:41:c0:a8:
d6:79:af:80:61:dc:1e:4b:86:a5:e2:ef:cd:bd:2d:
63:8d:e2:61:55:5a:97:3e:cd:b3:84:ce:72:e4:c8:
18:e0:b5:ba:35:21:cb:6f:f7:c5:f4:c4:67:78:53:
90:f1:20:a5:d4:f7:4f:13:45:f6:0b:15:f3:0e:b1:
ae:67:72:4b:da:7b:56:c3:30:9c:9a:a9:03:43:14:
d3:db:97:e9:36:bc:89:11:78:12:01:94:64:05:5e:
90:04:ca:06:9b:42:e3:ee:6b:5b:f8:ea:19:18:2f:
88:38:c8:3f:38:51:05:05:80:68:98:14:82:53:de:
d5:43:65:c5:c3:50:58:b1:3a:66:a2:0f:31:60:9a:
68:c4:f1:8d:e5:8c:8c:96:e4:9d:55:16:1c:dc:19:
33:b6:4f:23:6e:22:43:51:5c:2d:89:37:3b:32:54:
5e:c8:a2:94:d8:65:76:0e:91:43:88:de:d2:fa:bf:
2f:62:b1:83:95:71:a8:68:ac:68:b5:d1:9a:43:22:
e8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:13:CA:0C:5E:05:E1:B0:9D:22:EE:BB:E2:17:7E:AA:C2:0C:BF:E4
X509v3 Authority Key Identifier:
keyid:CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:7f:a3:7e:74:eb:20:0c:12:0b:1b:68:4e:1d:48:1a:62:1e:
aa:a4:4f:3b:43:01:b1:93:d4:40:c8:30:77:c8:3f:e6:f7:f9:
31:21:69:11:d8:4a:5a:90:77:6f:fd:06:4f:38:5f:34:a2:a1:
c5:73:80:f2:3d:56:fd:dd:9e:a1:b2:10:83:dc:5e:8d:85:93:
c6:cb:46:b8:95:be:df:44:64:92:32:55:48:11:a7:2a:6a:35:
cb:25:fe:a3:8c:1e:16:50:fa:f0:12:f2:8e:d3:1c:6d:d6:64:
45:76:fe:2c:48:cc:db:18:6b:8e:8d:73:c2:e2:93:6d:e2:24:
07:7b:49:65:17:ee:c0:2f:56:f6:35:80:b5:ee:4f:83:4a:7c:
b7:6d:d7:5b:71:1c:36:b2:cd:d0:2c:49:16:c3:ca:cb:b2:3d:
e1:8f:1f:50:ec:0b:e0:79:86:7e:8b:70:8b:b6:bd:44:12:66:
5e:f8:38:7c:64:59:34:29:14:06:ef:68:71:5a:f5:0c:ec:2d:
95:08:86:93:a9:17:f3:a0:ec:5c:2b:07:60:2c:21:7f:00:72:
fb:9a:37:b6:9a:50:6d:e1:79:bc:cf:81:58:78:83:23:94:93:
cf:51:f0:ed:83:09:22:a9:ea:4f:45:3e:6e:70:aa:31:0b:3e:
92:93:0a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:24:15 2025 by rpki-client