Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
File: ZD4bqRxWmoshptLWf1271sBOQ-o.mft (raw, json)
Hash identifier: qpIQ7mMaFVE86Lq0/SFsczBNz197aSFBL0an5K6CsUQ=
Subject key identifier: 12:A5:08:A5:EA:90:46:62:D1:84:0A:97:DE:66:E1:39:F8:33:DF:40
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 019644E918F61DDE9741E64FED03027D3505
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 18:00:49 +0000
Manifest this update: Thu 17 Apr 2025 18:00:49 +0000
Manifest next update: Fri 18 Apr 2025 18:00:49 +0000
Files and hashes: 1: 1MBxY-L-G-PezNdSAum2Qznjvvk.roa (hash: WzqdlX3BQAdtrBN0mtz0qnp4BVXNCLlknuqqWLF2nEY=)
2: 64_MTb5KgxHA8ajybrrfkFaqSHo.roa (hash: 3HoEZ5o8a764cMBp72+Je8xSTOL3XWu1W9vfmUxztJY=)
3: NcFH54U_2J6k3O8FG01A4l3YkX4.roa (hash: /kjUMIh5yITP6UOhs7cpgkxUJuo6AlmV12M3gHqX+6U=)
4: QnTqLhMHC9T4AoMjaLap4QpmLDU.roa (hash: 7wNURJNL1VG5jzuYA7SYiM1RdZjO0wnh2b7/W3YMGs8=)
5: ZD4bqRxWmoshptLWf1271sBOQ-o.crl (hash: ljidXfVAfz15V/kNpSvF+U7pIhc9pJL6qS3D93t8jkU=)
6: ZKwCytxQwb2lA8HdN2ItTa-nGFE.roa (hash: YVehp3VlkVUX9qY7Jk5F+8RNoRR+lbS+MAT+mCdr+Tw=)
7: ymZdEzMVegQJBBFPgdqPQzW1-gk.roa (hash: RX7+2wwGNp6bGJxI7GKZlbgjxbbHN4LNuKVuwi5foZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e9:18:f6:1d:de:97:41:e6:4f:ed:03:02:7d:35:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Apr 17 18:00:49 2025 GMT
Not After : Apr 18 18:00:49 2025 GMT
Subject: CN=12a508a5ea904662d1840a97de66e139f833df40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6f:2f:96:a9:0d:59:c2:52:85:e5:32:ac:23:
fb:31:61:e8:8c:5d:51:fc:f6:a8:6f:ea:f4:40:06:
81:db:d7:a9:3c:3c:0f:f6:ce:5c:a3:02:4b:01:66:
9d:03:6d:ce:26:bc:67:b6:3b:bc:4f:c6:9e:7a:6f:
6c:62:ab:57:45:06:e3:83:3a:c8:31:db:9f:61:af:
26:d7:be:ba:53:b6:c9:d5:68:8d:34:5d:f8:07:00:
73:e9:4c:8e:fd:a3:65:a1:ca:cd:66:09:d0:9d:f5:
95:ed:03:10:8b:58:e9:80:24:0e:93:ac:ce:0f:db:
3a:02:a4:b3:a8:88:eb:37:d8:ac:ee:05:6c:3e:f4:
45:21:24:25:e3:03:0c:b4:2e:c3:83:ac:dc:aa:4f:
ff:dc:8b:e9:39:89:eb:9f:c9:e9:21:f6:65:a0:69:
ce:88:16:14:17:0f:65:ed:3c:79:4a:68:d2:4d:d8:
60:ed:db:d3:aa:13:38:6c:92:66:84:11:58:05:04:
85:7a:40:be:8c:34:92:02:c0:8c:3a:e1:73:b4:35:
42:37:5b:b6:96:b9:70:d5:84:48:37:f1:25:96:c5:
bd:c7:01:9e:4b:47:92:a3:3a:39:7a:3e:54:30:15:
b7:fd:53:26:cb:6d:69:5b:2c:ba:04:61:3f:46:5e:
ba:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A5:08:A5:EA:90:46:62:D1:84:0A:97:DE:66:E1:39:F8:33:DF:40
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:be:22:00:2c:30:11:47:9e:70:dc:6b:dd:d3:5f:53:49:98:
d7:91:30:46:0e:96:36:f2:f5:24:55:bf:3d:24:11:b5:98:26:
ef:ed:90:73:b4:de:4f:58:68:19:ff:e1:42:d0:51:67:20:05:
64:b1:1b:4f:54:bf:da:8c:e9:62:f0:fe:d3:b6:9d:14:72:b6:
b6:75:5d:50:9b:fb:4d:da:82:9b:08:00:9e:0b:b3:c4:e6:cc:
ee:3b:88:bc:4d:e8:c3:2f:99:c4:2f:b5:2c:1d:ce:bc:ea:16:
3c:d6:33:0f:dd:91:64:36:53:8d:3e:23:ff:1e:de:a5:78:75:
5a:bb:40:e4:d8:ec:a4:f1:f5:3b:73:1b:4b:61:2b:6d:be:87:
75:00:18:57:c7:9a:09:0b:ca:e6:50:b1:00:f8:11:49:43:c8:
07:3b:11:42:eb:96:87:f0:04:ba:27:bd:98:6b:09:fd:ae:26:
84:d8:27:ec:41:ce:cf:a9:3f:2c:fd:3a:08:dd:14:dd:98:27:
f5:17:10:2d:6e:cf:1f:1a:3a:d1:93:b0:43:a3:2a:29:82:8a:
31:4f:af:66:ac:29:18:38:22:e8:ff:01:04:bd:43:18:21:18:
70:88:6e:86:bc:f5:2b:07:4f:5a:9f:4d:2c:ad:d8:39:2c:2a:
f2:ed:0b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:48:09 2025 by rpki-client