Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: ERS3cN+jVW35Eku5pjqUrCLxizNNFEKmnc9rwDHAwjQ=
Subject key identifier: DF:DB:18:C5:F4:33:22:0A:2F:8A:BC:27:83:1B:4A:22:3D:AE:05:43
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 019654C99795BC0D7A60D6009EAFEC846D79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 148F
Signing time: Sun 20 Apr 2025 20:00:19 +0000
Manifest this update: Sun 20 Apr 2025 20:00:19 +0000
Manifest next update: Mon 21 Apr 2025 20:00:19 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: laNQYIQoBB709bwjV+kxqxWPltKYUFHczwoaZBYzs/M=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:97:95:bc:0d:7a:60:d6:00:9e:af:ec:84:6d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Apr 20 20:00:19 2025 GMT
Not After : Apr 21 20:00:19 2025 GMT
Subject: CN=dfdb18c5f433220a2f8abc27831b4a223dae0543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:83:68:4a:19:05:ff:d9:43:e5:bd:5e:c7:7a:
98:34:a4:2d:95:5d:7b:a0:44:c0:02:27:2f:e0:45:
06:11:f1:2f:0b:4a:74:d1:25:75:cc:e2:53:c7:34:
2b:bb:fd:a3:f0:84:b4:02:f4:ac:3f:ff:9c:27:fa:
22:bf:6f:af:a1:2b:4f:92:0a:f7:f9:a7:ac:73:bd:
3a:45:17:42:5d:1f:ea:93:f4:3e:fe:01:c6:9a:1b:
d0:e4:17:89:19:73:4c:fb:0b:ba:56:9d:ba:a9:5b:
3b:2a:df:d4:2b:ba:93:90:41:b0:48:1a:9d:be:28:
71:40:92:12:56:fa:c0:ab:b2:a2:87:93:1f:0b:95:
08:79:b4:2e:09:fa:70:f2:22:a1:21:cd:3a:78:b2:
64:c8:11:80:1c:cf:6a:2a:1e:0d:23:29:4b:3b:ca:
2a:cd:b3:c3:07:1f:ba:c3:b3:42:14:70:f5:c5:16:
a8:ed:af:64:2d:f0:b2:f7:11:fa:7d:41:fd:f0:61:
c3:83:aa:9b:e8:6c:01:ee:b1:21:fe:fb:93:56:24:
dc:d4:96:ce:96:68:8e:f3:11:2d:a7:a2:a8:87:4a:
07:f3:f5:bf:8a:be:4a:d0:47:ca:b4:6f:d7:53:c7:
ce:46:6c:95:a3:9c:f0:c1:42:f9:ae:cc:6e:dc:61:
f8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DB:18:C5:F4:33:22:0A:2F:8A:BC:27:83:1B:4A:22:3D:AE:05:43
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:26:fc:af:01:74:94:44:16:d6:f4:78:dd:a7:f1:62:ab:b5:
88:08:c8:7f:63:c7:7e:b6:7c:e2:23:7a:6e:2b:b1:30:61:f5:
12:60:b0:f4:c1:86:da:4e:0e:ff:9e:5d:5e:ff:9b:fa:f8:06:
0a:8e:a6:4d:38:fe:9f:96:a4:26:2b:33:dd:01:38:f7:a0:20:
ef:65:3d:15:d8:56:da:e0:5f:9b:a5:7f:f3:ee:92:27:90:61:
3b:38:11:dd:79:ac:3b:2c:37:5f:cf:ec:89:9b:03:fc:53:19:
04:6f:36:cc:37:da:ce:bd:90:cc:26:d2:1e:09:4b:8a:85:b5:
ab:64:34:e7:bf:43:88:7e:5b:3c:04:40:58:fe:91:42:31:b3:
40:e3:24:e8:20:b7:f1:ba:fe:8b:eb:a2:83:e7:75:5a:cc:b1:
13:db:6c:c6:d2:d8:ce:40:db:8d:30:90:e2:e3:8a:da:1e:42:
30:76:6a:c3:de:54:12:37:0c:0e:de:d4:b3:54:1d:7d:88:67:
f0:90:ab:e5:8e:c1:db:a8:db:13:84:27:71:e4:0b:61:18:52:
dd:df:d2:f8:32:25:ac:35:e6:7a:34:c3:d8:86:b0:30:f4:04:
79:59:1c:e3:54:82:a0:96:97:d0:44:f8:ac:af:d1:fe:47:a6:
2b:5f:37:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:03:16 2025 by rpki-client