Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: GY8MI4slnXt/Sw/VXsdSbqnVY9AJWWX4fsks+VS3eqM=
Subject key identifier: AA:30:CC:EA:56:AE:F1:E5:EE:D8:24:F7:0C:09:1A:B3:0E:FB:21:FD
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 0196526D474AD2921FBFF62E8575B3AD3185
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 0E6A
Signing time: Sun 20 Apr 2025 09:00:15 +0000
Manifest this update: Sun 20 Apr 2025 09:00:15 +0000
Manifest next update: Mon 21 Apr 2025 09:00:15 +0000
Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: +hmU8XhGfqP5bJc5UB0SuozC5+rh8Hl0myDbg6gmPZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:47:4a:d2:92:1f:bf:f6:2e:85:75:b3:ad:31:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Apr 20 09:00:15 2025 GMT
Not After : Apr 21 09:00:15 2025 GMT
Subject: CN=aa30ccea56aef1e5eed824f70c091ab30efb21fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4d:66:8a:18:ce:2d:cb:78:5b:2e:a6:f6:9f:
28:b1:3e:35:fb:ae:51:e0:6a:69:c4:4b:c3:12:32:
81:19:0c:3b:99:fe:d0:11:fc:b6:96:a3:d9:4b:20:
75:54:9a:bb:4d:85:cc:01:2f:23:7c:61:b5:2d:35:
d9:09:64:61:3c:45:54:51:da:09:6b:d7:73:77:4e:
fc:d1:7b:a5:75:d4:54:8e:c9:54:d8:e1:14:a8:ff:
b8:5c:c8:d0:7f:af:22:8f:16:e6:fd:e3:df:fa:34:
92:50:f9:13:7b:a5:4d:b8:e0:63:7e:47:97:43:ea:
ff:9b:b9:d1:73:fb:0d:93:a4:68:fc:e7:41:97:91:
3b:d2:c2:9d:af:40:00:1d:12:d4:d8:33:31:07:8b:
62:b5:3b:0f:75:38:ea:3f:1f:8e:0e:bf:2d:8d:a8:
70:bc:ea:80:2c:ba:ed:04:ab:32:52:26:83:ea:ae:
46:f4:68:c0:6a:e7:6a:dd:e6:45:dd:75:13:21:68:
6f:11:a0:ec:71:a6:da:04:3b:ed:7f:2b:a6:09:5f:
89:a9:d3:37:81:49:f0:48:0f:47:db:35:c3:b9:cc:
60:17:2a:a7:45:3f:61:7d:9c:c0:14:f7:de:4f:64:
79:f3:0f:27:98:38:5e:98:bd:de:b2:3a:65:d8:2b:
ab:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:30:CC:EA:56:AE:F1:E5:EE:D8:24:F7:0C:09:1A:B3:0E:FB:21:FD
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:86:7e:f0:6c:80:1b:98:f4:ca:d0:57:56:c7:e3:39:68:75:
71:6f:a9:72:39:b3:c9:14:36:65:45:2b:74:1a:05:87:cc:8a:
a8:ce:92:f5:fd:4b:df:ef:3c:6f:75:c4:16:40:bd:f5:c9:eb:
87:34:7c:06:21:25:4d:b7:0c:3f:a9:a6:b3:39:b4:e0:f8:ab:
e0:c2:ff:81:85:d8:94:15:6b:e1:54:d1:58:a9:4b:6c:42:f1:
1d:51:e1:0b:8d:36:3d:25:18:95:9b:da:19:c0:32:62:e8:9c:
20:2d:8b:3d:a1:0f:2f:c8:97:9e:f1:20:c4:61:bf:2a:77:85:
76:34:0f:89:0c:e8:89:8b:23:e2:e8:1b:10:d0:00:14:35:12:
55:91:97:dc:43:17:76:a2:7b:2b:b7:14:43:f7:83:c5:2a:39:
bf:50:b3:5e:9d:3c:8f:b1:44:40:05:ec:b0:10:26:e0:d3:f8:
e8:cb:d4:7d:05:1a:3f:7d:77:42:9e:fe:e8:ec:d9:d9:80:29:
ce:83:2e:81:72:94:ac:2e:95:1b:37:f1:bf:ce:c4:1a:ca:19:
dc:0c:ad:47:cd:c2:94:a1:5e:24:92:c5:fd:fd:43:93:91:2b:
bd:6a:5d:04:b7:db:6c:97:f7:40:3a:cf:11:c8:2e:ff:2e:29:
a7:01:09:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:21:10 2025 by rpki-client