Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: JmCbTdfMENz663wFxdyrKF1F0D9TqqllksN4sZueP+o=
Subject key identifier: 0A:2B:F9:1B:7C:2D:FA:68:5F:A4:A8:AF:AA:75:3A:0D:1E:E5:57:45
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 0196580230AF4185870BEC96CCF284368290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 14FD
Signing time: Mon 21 Apr 2025 11:01:00 +0000
Manifest this update: Mon 21 Apr 2025 11:01:00 +0000
Manifest next update: Tue 22 Apr 2025 11:01:00 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: 2pKpSprjNF86iYJOTfUkFZatp+VH0AQIEUvmOgCpqLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:30:af:41:85:87:0b:ec:96:cc:f2:84:36:82:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Apr 21 11:01:00 2025 GMT
Not After : Apr 22 11:01:00 2025 GMT
Subject: CN=0a2bf91b7c2dfa685fa4a8afaa753a0d1ee55745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ee:ae:3e:ea:de:14:d0:eb:d5:4f:d3:75:ea:
0b:8a:58:ba:43:17:ba:d0:3c:78:9f:17:f0:9c:0b:
23:4f:5a:8b:58:e7:9e:17:c6:99:70:d6:8e:e1:f6:
df:12:78:f6:63:67:f3:d4:8e:9b:a2:62:53:cf:15:
47:f0:5b:f8:9f:db:c9:8a:6e:23:fc:b5:3a:f8:a4:
ca:30:4c:2b:dc:f7:b3:db:60:44:20:80:ab:21:18:
ba:8b:a7:5e:0c:17:5a:14:15:7c:9c:49:14:a3:a4:
c6:24:dc:bf:b4:d6:2d:cb:d4:54:99:a7:a4:86:16:
56:1a:cf:39:89:17:ea:d5:5e:07:2b:9b:ea:26:76:
24:87:56:c6:bc:9d:79:28:56:73:83:6b:da:c6:a4:
01:d5:97:1a:60:03:66:87:b4:79:7a:f9:6d:75:20:
38:d3:17:66:3e:93:14:a0:58:69:d3:d9:b8:98:ab:
7c:66:e7:8b:cc:6b:2d:75:51:c2:e3:2c:28:8d:49:
89:0f:d5:10:22:ee:8e:82:bd:f0:c7:99:ae:da:ba:
1e:16:57:07:66:c4:48:72:61:e6:eb:11:c9:19:85:
c8:9f:7b:4b:ad:86:04:09:4f:ec:78:6f:71:39:5b:
ad:50:75:11:f1:25:d2:92:68:39:a7:0f:5d:2e:ac:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:2B:F9:1B:7C:2D:FA:68:5F:A4:A8:AF:AA:75:3A:0D:1E:E5:57:45
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b8:1e:3a:53:d5:84:b3:b0:70:ec:dc:67:9e:7e:61:06:f7:
14:7f:ad:f7:6d:09:0d:a2:d8:cf:35:98:1d:9a:d8:46:28:1e:
fe:99:fb:f5:96:7a:21:29:2a:0f:fc:a0:da:b7:0a:58:ac:11:
49:69:d2:96:a3:3f:61:3a:75:85:91:08:64:4e:3f:7d:db:ef:
26:bc:6c:c6:4e:62:72:00:b1:7c:92:46:91:6d:4a:ca:d8:d1:
73:67:9c:b7:92:28:26:89:b6:32:79:b4:e0:41:d4:94:ea:ee:
23:07:ce:de:21:b2:b3:d3:7d:90:78:63:2a:91:b1:b7:43:2f:
85:93:19:82:cc:3f:84:22:f9:94:1a:cc:ce:a2:54:ed:7f:26:
81:c4:ab:87:a3:ca:20:b6:a6:9c:44:ca:b2:3c:c9:ee:e1:9d:
40:e9:2f:12:0a:b9:74:64:e6:55:4f:66:ef:85:e8:a3:11:f6:
b4:5f:a6:30:13:38:4c:61:bd:cd:c1:72:72:40:60:24:1d:f8:
66:69:c7:55:7f:99:f2:98:8c:2a:3b:78:3d:70:ee:0f:d6:54:
00:bc:b8:3d:5b:98:ce:d8:3b:0a:d6:49:b4:8c:c4:13:2a:68:
d0:03:de:86:ad:ee:f9:73:52:0f:43:b2:19:6e:5e:60:4e:45:
5c:b1:fa:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:51:58 2025 by rpki-client