Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
File: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft (raw, json)
Hash identifier: upT22ZZ1fBcw9XGZfth+gqEUFBlbksTG0kWfEBLk0Zc=
Subject key identifier: 0B:E8:3B:98:48:F4:46:73:59:74:77:77:19:42:A4:13:AA:DE:5C:31
Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Certificate serial: 01964B90A4E357EF42BE6CC4A6BEADACE77E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
Manifest number: 1439
Signing time: Sat 19 Apr 2025 01:01:32 +0000
Manifest this update: Sat 19 Apr 2025 01:01:32 +0000
Manifest next update: Sun 20 Apr 2025 01:01:32 +0000
Files and hashes: 1: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl (hash: EvNWL+WAMq0lBoo/s0uaBfBKQaoeYRhFU+5cvkQLXdc=)
2: _4Ndkg3UKi9vHxY0SVHFR9i7YHI.roa (hash: gVwQ/KDnz7z975mDXEiOOePjhBe/QBZrgXsjy6HuzNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:90:a4:e3:57:ef:42:be:6c:c4:a6:be:ad:ac:e7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Validity
Not Before: Apr 19 01:01:32 2025 GMT
Not After : Apr 20 01:01:32 2025 GMT
Subject: CN=0be83b9848f44673597477771942a413aade5c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:92:3d:e7:70:2e:a4:6b:e7:66:a9:83:a4:c5:
2f:ea:60:a5:4b:a3:60:cb:25:39:cd:a9:19:a9:b1:
f6:02:ef:3f:a1:ed:26:51:59:e4:fc:0a:43:8a:e4:
e6:2f:b3:b0:7e:9a:ef:bc:72:1a:03:71:e2:14:01:
5d:65:d5:95:76:24:85:d9:b4:59:10:1b:75:4c:49:
9d:71:5f:c5:54:9a:f8:53:26:45:b2:fb:1c:60:d2:
0a:94:98:11:29:85:2b:c2:e4:3d:df:28:56:d7:e6:
a4:a0:82:52:c5:a5:93:dc:67:d4:24:df:d8:01:cf:
5d:ad:bf:11:67:b6:eb:ea:cb:ea:1c:28:8d:b9:1e:
12:f1:9c:25:c8:d0:e9:ef:8b:8e:93:c9:9e:41:18:
fa:b0:c2:d2:71:3a:cb:1e:db:fa:a2:ba:cc:1d:a6:
a9:4c:64:37:31:b7:cc:11:83:32:0e:b6:e9:11:eb:
1d:3b:2b:89:43:d6:2f:80:79:77:93:31:4b:a0:8a:
7f:67:95:c1:92:16:74:b9:d0:a4:54:7d:6b:83:30:
1f:6a:18:7b:23:06:68:39:39:55:5b:ee:04:54:d5:
6e:45:7f:e7:d3:0f:20:b0:f8:59:3c:0d:7b:10:a0:
9c:58:9f:b9:8d:27:9c:5b:df:af:00:53:75:07:39:
a3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:E8:3B:98:48:F4:46:73:59:74:77:77:19:42:A4:13:AA:DE:5C:31
X509v3 Authority Key Identifier:
keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:36:7c:98:98:50:e1:d7:9d:4b:b8:80:6c:a3:e9:21:0f:5e:
78:2a:58:35:b3:29:b1:66:a1:a4:76:95:f4:6a:0c:40:c6:62:
68:d3:11:65:9e:03:09:18:c9:27:fd:1c:82:a5:fa:cf:76:c6:
c9:7a:7d:64:1b:db:11:29:7a:b2:fb:45:a8:00:a1:92:c7:2e:
36:fc:2d:17:40:86:81:09:f6:f0:00:83:cc:6b:82:5c:be:49:
d8:16:9d:ee:61:54:ea:c7:57:ef:ff:64:c1:f7:42:13:cf:97:
a9:7c:63:49:93:60:4f:36:27:c7:5a:ac:13:5e:eb:bb:d3:5d:
04:c9:11:55:40:9b:e3:c2:28:2b:eb:bb:67:67:22:33:e9:0b:
7e:e3:7e:77:a2:c0:b0:82:0a:74:a0:af:48:da:73:2f:3b:01:
d6:7c:2f:cd:bf:e9:c0:e5:59:e4:bd:93:5f:e6:c8:01:50:63:
cb:85:89:c0:45:70:47:f2:bf:7e:de:45:6d:24:94:b5:a9:7a:
d7:ad:d4:87:ca:ba:eb:24:6b:68:65:a6:fa:9d:b2:db:e8:67:
39:72:5d:b1:c7:e0:50:54:22:fa:91:e9:bd:b2:56:25:2c:f8:
81:29:65:c2:4d:7d:54:d6:bc:30:35:4f:72:a6:d6:00:be:fe:
8c:46:42:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:25:47 2025 by rpki-client