Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
File: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft (raw, json)
Hash identifier: lhgwPcObbxY5BBWVlAiZLxPDoyCnlfD1acw/BxWmOQA=
Subject key identifier: 95:22:9F:DF:A3:6A:97:4F:D3:8D:BB:C0:D6:38:11:8F:45:E3:0D:49
Authority key identifier: 64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
Certificate issuer: /CN=6431e960cd061039b3b27fd25d4160771c498bab
Certificate serial: 019578D8F6066B0B5475FA8DAB8B625BC826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
Manifest number: 10DF
Signing time: Sun 09 Mar 2025 03:00:39 +0000
Manifest this update: Sun 09 Mar 2025 03:00:39 +0000
Manifest next update: Mon 10 Mar 2025 03:00:39 +0000
Files and hashes: 1: ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl (hash: n55yNcRONdwFaJ0B7A0M8yz2cC268f6r1o7NbSh7RHA=)
2: ZNva-8ABsvjJ6HrNFF7Xd55KW-w.roa (hash: nx2aCY2Bfbi+2/xFJXRwWrGYEeyRAMv/De92goZyeZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Mar 2025 21:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:d8:f6:06:6b:0b:54:75:fa:8d:ab:8b:62:5b:c8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6431e960cd061039b3b27fd25d4160771c498bab
Validity
Not Before: Mar 9 03:00:39 2025 GMT
Not After : Mar 10 03:00:39 2025 GMT
Subject: CN=95229fdfa36a974fd38dbbc0d638118f45e30d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:0c:ba:39:9a:84:40:96:f0:f0:c6:a8:60:
44:d8:dc:c9:2c:fe:29:a7:de:35:06:c4:69:f7:d2:
12:d2:12:86:97:bc:d1:be:77:32:5f:c6:6a:d9:1d:
44:40:d9:43:7c:c5:5d:14:a6:97:16:f7:69:45:4c:
d2:6c:08:54:5b:6d:72:7a:c2:e8:06:74:29:19:65:
75:2d:fd:c8:9d:10:98:10:38:b9:36:15:34:1e:ca:
b2:c4:5e:ac:60:1c:c2:a5:e2:55:92:44:46:72:ff:
6b:b4:5d:db:0d:3e:63:13:ab:bd:9e:ab:bb:51:79:
54:33:77:84:da:9d:cc:af:11:3f:d2:c4:fe:21:df:
db:f0:53:d2:23:0d:d4:e7:37:49:fb:4e:63:eb:e3:
1b:3a:13:57:a8:96:ca:2a:6d:e6:e0:0f:81:5a:a5:
6d:de:a3:64:49:15:68:ee:64:8f:3c:5a:a9:11:38:
15:51:37:f0:e2:92:72:11:52:8b:4a:70:b7:ee:e6:
69:4d:b0:e0:b1:4e:d3:3b:80:6b:c1:9f:87:ff:f0:
91:2b:45:45:87:d6:65:a3:27:26:1b:da:a0:b1:1e:
bf:83:ee:3c:7e:65:99:3b:35:3c:2f:83:4c:6f:9c:
fd:0c:38:77:ab:9a:6e:23:ba:f7:5a:0a:c4:06:bd:
a8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:22:9F:DF:A3:6A:97:4F:D3:8D:BB:C0:D6:38:11:8F:45:E3:0D:49
X509v3 Authority Key Identifier:
keyid:64:31:E9:60:CD:06:10:39:B3:B2:7F:D2:5D:41:60:77:1C:49:8B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4fd931-9f22-49f3-be57-e9daf79eb75e/1/ZDHpYM0GEDmzsn_SXUFgdxxJi6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:46:d3:d2:54:c3:4c:88:02:28:09:dc:0b:d2:51:42:a9:33:
97:f0:d5:da:37:60:fa:1b:eb:7a:54:ca:b0:a2:36:29:e4:36:
bb:80:b7:e1:b5:ed:e8:79:7a:4e:1a:51:62:35:13:9c:82:c5:
1b:58:11:eb:6c:04:59:bf:b8:c7:0f:b1:d6:49:85:89:07:9c:
b0:b2:f8:fc:06:75:f9:e1:14:75:1d:24:c5:37:0c:18:9d:b5:
c3:f4:81:d5:ac:bb:24:6b:cf:c5:e5:19:21:31:fd:63:9c:6a:
f8:28:8e:29:27:da:65:d5:fe:03:1d:30:fd:c5:b9:7c:92:a8:
2a:36:aa:5c:af:0d:3d:5f:ee:c0:b8:cf:71:cf:8e:c7:ce:19:
2f:19:05:47:35:7b:75:7d:90:c2:b5:b1:e3:6e:ea:73:94:46:
14:fb:d2:3f:c4:18:bb:1a:d9:ea:23:8a:ac:a9:7e:33:9d:56:
09:bd:97:85:44:9b:52:df:9c:a5:43:a1:a4:9a:f8:f7:d7:be:
03:58:0d:fe:43:68:ee:99:fa:ce:75:4c:46:f0:d1:8a:d6:1d:
fe:09:76:5c:98:5b:4d:af:5c:d4:a0:f0:e8:58:60:18:d9:15:
f0:5a:5f:04:3d:08:9c:5c:4e:13:2f:0d:a4:9c:b4:ff:1f:68:
0f:c3:8b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 07:31:28 2025 by rpki-client