Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
File: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft (raw, json)
Hash identifier: ctksuBv9XmREVZClHlGFCqR2IrtMXv593IrE1Ly9Jao=
Subject key identifier: 62:78:74:BD:24:EF:42:E2:96:ED:A4:5E:89:1C:68:11:84:AB:04:80
Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Certificate serial: 01958B8431722E3D4655BA0B4FBF6D3D966F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
Manifest number: 13D5
Signing time: Wed 12 Mar 2025 18:00:51 +0000
Manifest this update: Wed 12 Mar 2025 18:00:51 +0000
Manifest next update: Thu 13 Mar 2025 18:00:51 +0000
Files and hashes: 1: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl (hash: u1MEWQUuHQsgYBXWKDO/+S6k79qwYLOHnc+kHLpokng=)
2: _4Ndkg3UKi9vHxY0SVHFR9i7YHI.roa (hash: gVwQ/KDnz7z975mDXEiOOePjhBe/QBZrgXsjy6HuzNg=)
3: mP0KR8qjiNVVziS_navTGUPwqiA.roa (hash: xZa0pPgGKaK3igZY01F/k1ukXOLEVZhp0AOMi/bszSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:31:72:2e:3d:46:55:ba:0b:4f:bf:6d:3d:96:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Validity
Not Before: Mar 12 18:00:51 2025 GMT
Not After : Mar 13 18:00:51 2025 GMT
Subject: CN=627874bd24ef42e296eda45e891c681184ab0480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:59:0e:d1:66:d0:8f:da:03:df:a0:85:33:f1:
50:b4:38:ff:3f:09:d5:9b:67:52:ba:4b:1e:f7:36:
37:85:2e:bc:f5:e3:6b:be:e0:5e:6d:76:17:ef:d4:
ba:8a:86:78:4e:b7:66:26:0b:e1:98:70:00:be:6b:
b8:db:62:53:29:13:b8:21:99:eb:98:0b:02:1e:cb:
46:22:57:2e:f4:fa:c0:de:77:3e:e9:f7:84:3c:e3:
c6:29:cb:78:f3:e4:7d:cf:02:28:e0:84:25:c7:d5:
07:10:51:d8:ee:34:05:c0:72:62:4e:8a:dc:29:5f:
dc:35:20:ea:b7:ba:ca:10:ea:72:ca:93:d1:3e:b9:
51:ef:55:5d:0a:02:d3:9b:f8:f7:d9:d2:37:c0:fd:
ff:09:9e:01:ba:24:d9:bc:c9:9f:9b:f1:e7:92:eb:
3b:ea:86:82:59:87:fa:57:77:3b:e8:a9:ff:85:fa:
74:a5:6b:0d:ba:43:d5:fc:07:de:49:68:5e:80:86:
e8:e4:2d:0d:ff:b7:31:23:47:5a:1f:56:e4:e1:95:
46:dc:27:0b:15:00:97:d7:0d:00:e2:1c:a8:42:ca:
19:5f:a1:c9:2d:6c:14:3f:37:30:2f:92:1c:d8:a6:
13:47:32:18:dc:da:a4:09:b6:c5:ff:c2:ff:cf:8c:
8c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:78:74:BD:24:EF:42:E2:96:ED:A4:5E:89:1C:68:11:84:AB:04:80
X509v3 Authority Key Identifier:
keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ca:6a:b3:6e:5a:bb:03:c9:b3:6b:ce:40:97:b2:13:a0:e6:
c2:7a:e2:37:2f:2a:9a:ed:11:5a:ac:39:a2:cf:65:60:01:f6:
ba:39:6b:2a:fc:e2:97:b5:cd:be:e9:21:be:ca:8b:28:07:81:
75:45:e3:e0:f5:24:8d:5b:f4:28:32:51:9b:69:53:f7:24:d1:
ff:8e:3f:af:ab:5f:99:b4:78:0d:9b:bb:1e:92:46:22:fd:1d:
14:fe:84:b1:8c:3b:77:5f:99:55:c2:7a:60:66:03:04:43:2a:
9f:40:5b:23:b1:a6:93:61:ad:f2:2d:da:f9:01:b9:e7:65:08:
af:18:aa:cd:18:ac:73:77:74:4b:cf:8d:67:c8:9f:e3:b6:38:
0c:42:bb:1a:de:27:87:bd:16:02:0d:5d:4d:02:4a:ba:4e:3a:
0d:df:2e:07:03:57:33:e1:61:a6:7d:64:1e:01:37:27:27:e4:
64:9b:d6:96:49:c5:5b:c8:ed:2f:a3:b1:c6:72:ae:5d:8c:57:
a8:21:72:74:b0:8a:06:f4:7c:e1:84:14:08:e1:30:1d:fc:f6:
8c:e3:8f:01:91:6b:98:7c:4a:12:1f:77:05:f1:26:33:bf:47:
d8:a7:da:c7:6b:37:e6:ab:bd:8b:d8:c8:2d:78:b5:12:98:b1:
b5:21:25:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:46 2025 by rpki-client