Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
File: Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft (raw, json)
Hash identifier: Hz766oljYJfuQKmlJSkMH7a0EZBVe3X7I3TkMH/rE0o=
Subject key identifier: 91:F8:60:14:73:DD:18:0C:44:2F:03:6A:1E:6B:DF:04:DC:73:23:04
Authority key identifier: 67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1
Certificate issuer: /CN=67d410e707b57971b14a54309f020bacbb4d21b1
Certificate serial: 0196594B037E7B1858600E42E0BD8FACB611
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
Manifest number: CB
Signing time: Mon 21 Apr 2025 17:00:10 +0000
Manifest this update: Mon 21 Apr 2025 17:00:10 +0000
Manifest next update: Tue 22 Apr 2025 17:00:10 +0000
Files and hashes: 1: MGVqJJOFzu2un2swGTuXTTEGsNg.roa (hash: gTMkvTBOmf7oEcLgyb6M80tZ/0OamavqqMR1gZp8YYk=)
2: Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl (hash: aceeEGnAO/m6USjXgr4iJDZdHur/iXEpV3vOWBI6xTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:4b:03:7e:7b:18:58:60:0e:42:e0:bd:8f:ac:b6:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d410e707b57971b14a54309f020bacbb4d21b1
Validity
Not Before: Apr 21 17:00:10 2025 GMT
Not After : Apr 22 17:00:10 2025 GMT
Subject: CN=91f8601473dd180c442f036a1e6bdf04dc732304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b0:82:49:db:d3:63:7e:b1:1c:ec:65:f7:44:
95:1d:6c:d3:59:10:00:00:c4:1c:68:bf:7d:cc:90:
56:d9:08:87:bc:1e:a3:d8:13:96:51:a5:75:e7:86:
6f:32:b9:21:ad:b4:e2:2a:da:69:60:a5:90:f9:2e:
af:ee:46:f8:29:24:9d:89:9f:fe:b4:cc:e5:c2:03:
43:bf:1d:bc:3b:ae:c2:cf:42:a2:ff:98:6e:af:d8:
d5:bd:a8:be:59:bd:5e:2d:94:d9:d6:37:8c:a2:14:
fd:71:bd:c9:30:9b:b0:58:82:32:f6:22:ab:99:32:
5f:32:70:70:c4:69:1f:1f:d3:55:e8:7d:0a:12:b1:
b2:64:6f:32:61:7a:d0:a9:92:6e:56:82:1c:bf:2a:
02:8d:82:bc:81:53:a2:dc:4c:e5:e2:18:4e:ff:b8:
4b:34:d7:69:d2:f7:6a:98:8d:01:1f:b1:94:8d:43:
f9:ea:e9:97:ed:c4:e9:9e:0b:72:08:e1:32:f0:bd:
d7:df:b1:e1:d3:98:15:0f:00:51:a4:d0:65:f4:ff:
92:62:76:03:34:b8:76:fc:f7:0a:b5:88:e0:63:44:
ee:14:cd:4b:35:4c:f1:7e:4b:9b:0f:43:ca:96:51:
cb:fb:b0:3a:3d:bf:03:07:06:1d:22:f0:1d:68:32:
85:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F8:60:14:73:DD:18:0C:44:2F:03:6A:1E:6B:DF:04:DC:73:23:04
X509v3 Authority Key Identifier:
keyid:67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:58:f0:e0:73:39:70:76:a1:7c:b4:78:0a:f6:40:ba:67:c1:
bf:e6:82:b2:42:2b:25:85:6c:84:c9:87:d1:26:9d:fe:88:3b:
9b:fc:1e:fa:29:bf:da:8a:44:d6:51:81:56:13:cc:f6:56:6a:
bb:a0:b3:90:aa:11:7d:62:46:be:45:ce:86:a3:75:4d:e7:f9:
01:bb:fe:b7:0a:6a:02:1e:fc:87:a5:9b:ce:1f:72:c2:80:3e:
10:ea:ba:34:f5:b3:95:8e:1d:20:45:b5:39:30:58:1f:70:87:
9d:75:30:fe:c9:26:c8:7f:38:8a:af:fb:ad:38:ba:7c:6c:56:
77:e3:32:6d:84:84:5b:5b:61:85:60:02:b1:a6:29:02:30:47:
06:87:12:90:41:17:3a:1b:f4:69:42:25:6a:ad:fc:30:d8:44:
ae:d9:85:65:05:b4:5d:d8:97:9d:07:2d:77:70:94:56:c9:f3:
76:ff:2e:3b:e1:d3:90:b0:c7:74:74:11:c8:01:46:46:78:85:
ff:74:73:5e:75:bc:30:96:41:ab:59:1c:32:a0:b1:a3:29:82:
a4:a9:64:df:76:db:7c:a8:4f:ab:fd:b9:86:0e:4c:0c:40:81:
c9:77:8f:c3:6b:e5:0f:33:e6:ef:98:4c:7b:1f:eb:02:70:f2:
b0:2e:7d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:00:30 2025 by rpki-client