Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: hRo2JJAwOMaQm2srZ5QvU54KE5JGvtqK/KF9Hoh0UCw=
Subject key identifier: F5:AB:A5:2B:4A:78:30:F2:53:2B:7C:9B:A9:D8:4D:7F:1E:12:B9:B1
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 01961358773C81F6183CFB2A02181A53C31B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 146D
Signing time: Tue 08 Apr 2025 03:01:26 +0000
Manifest this update: Tue 08 Apr 2025 03:01:26 +0000
Manifest next update: Wed 09 Apr 2025 03:01:26 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: 8Wc+fMFstbsYtodjdqilNJV1Mq+afGujO+TNKG6fxnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:13:58:77:3c:81:f6:18:3c:fb:2a:02:18:1a:53:c3:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Apr 8 03:01:26 2025 GMT
Not After : Apr 9 03:01:26 2025 GMT
Subject: CN=f5aba52b4a7830f2532b7c9ba9d84d7f1e12b9b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:22:94:0f:a3:1f:79:c7:54:86:8b:55:3a:
03:a9:fb:0e:2a:24:0b:37:ec:c9:bd:bb:bd:0f:6e:
f6:f0:e4:8a:32:1d:6e:f8:fb:82:82:08:dd:d3:2a:
22:76:4e:da:83:de:09:07:9a:93:72:35:2f:41:ab:
21:3c:05:c2:6a:92:ff:09:43:72:af:04:65:31:be:
ce:84:19:b2:24:f2:d2:bb:5c:4b:4d:29:2c:1f:67:
2b:05:7f:2d:a1:eb:e1:44:c6:06:7d:c4:45:fe:39:
f2:f5:0c:77:51:11:50:8a:94:29:5f:35:c6:9e:49:
37:27:e3:da:00:41:16:ec:a5:8c:78:94:c9:23:e6:
52:02:ea:71:e9:50:8e:31:ca:d3:ce:c3:a2:ab:c3:
f0:64:81:4d:81:bc:44:d6:13:1f:d4:3b:b6:b0:f7:
e6:17:0b:65:f2:16:83:94:64:f8:75:2c:c0:94:dd:
c5:0d:7f:8f:6c:ae:70:b5:aa:5b:3c:30:62:69:99:
34:ee:02:30:6c:fc:00:61:1a:5f:99:21:ac:24:77:
98:ee:f6:d8:66:b4:bb:a7:60:77:6a:ba:ad:15:e9:
69:66:5d:df:03:e6:1e:98:17:b3:92:ba:5d:52:b2:
cc:58:c7:59:ae:6a:31:f6:b3:dc:26:86:8a:8f:3b:
19:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AB:A5:2B:4A:78:30:F2:53:2B:7C:9B:A9:D8:4D:7F:1E:12:B9:B1
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ec:13:60:dc:03:dd:4a:9b:b8:72:c1:f1:c2:26:21:d9:8c:
27:f0:d5:38:de:27:7a:79:8c:78:5f:42:0c:6f:ca:a7:1c:3e:
6f:0e:33:df:c6:62:15:0b:82:bf:27:6c:8f:6e:94:5d:3b:ad:
e3:54:ad:c2:e7:cf:8f:1e:3d:98:25:44:7b:8d:0e:d0:4e:d1:
e1:af:92:19:7e:cb:17:1e:9c:97:7d:44:0a:04:bc:cb:72:b9:
7d:79:80:30:8b:92:74:60:db:d4:d1:77:df:23:0b:29:b4:74:
9d:74:df:87:7e:f3:84:36:50:1f:15:24:58:5c:ec:37:b7:7e:
ab:4d:79:78:16:d1:ff:e4:f8:8a:33:57:2e:3c:81:dc:e3:b7:
43:c0:3e:a2:71:8d:05:7c:61:76:9d:01:7e:79:62:36:22:e9:
19:2f:66:88:0d:4c:b6:37:4f:be:cf:5c:88:1a:6c:8f:26:28:
12:f2:9f:98:01:09:d6:c6:21:62:71:92:04:17:4c:81:f1:0a:
63:aa:e9:67:0b:a0:4b:6c:69:83:1d:d4:32:21:02:83:fc:e8:
90:d8:9d:49:b0:44:b1:83:7c:b7:1d:c2:ec:d1:36:0a:48:02:
43:5d:92:c1:2f:fd:3e:47:a2:54:30:a1:73:4b:fc:39:67:e5:
d0:40:c1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:10:38 2025 by rpki-client