Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
File: ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json)
Hash identifier: VzN5KoWIJTmC83g/Nqhw4IUDxVoL/g1OHdRD4SaII+g=
Subject key identifier: 96:CD:46:BC:F9:F5:B7:C8:0B:13:35:86:8D:94:E3:CB:54:15:8E:0B
Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
Certificate issuer: /CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Certificate serial: 01963EE6BA2FF2F34B9CC1EFBFBE4F971B68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
Manifest number: 14F2
Signing time: Wed 16 Apr 2025 14:00:30 +0000
Manifest this update: Wed 16 Apr 2025 14:00:30 +0000
Manifest next update: Thu 17 Apr 2025 14:00:30 +0000
Files and hashes: 1: NJmmW764rdnW_zIUswA3g-8-n2M.roa (hash: uNbv9sZggt1kjUfoR4Ji7KAa4WT9RRySZVjN33ZdWTA=)
2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: Rc+yGznacFNSUnMx4rBnEBWgCULSIunc6a+/mO6uQ1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:e6:ba:2f:f2:f3:4b:9c:c1:ef:bf:be:4f:97:1b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Validity
Not Before: Apr 16 14:00:30 2025 GMT
Not After : Apr 17 14:00:30 2025 GMT
Subject: CN=96cd46bcf9f5b7c80b1335868d94e3cb54158e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:49:8b:af:96:14:71:64:4f:75:8a:41:85:
a9:d0:b2:27:52:ca:96:19:3e:44:82:56:1b:ff:58:
fa:e9:b2:5c:38:8b:8e:6d:70:dc:e2:84:d1:d8:fb:
d2:8a:4a:8a:73:93:83:59:4c:78:27:b4:2e:6a:ce:
41:22:aa:89:0c:48:34:0d:bd:cf:b7:0e:46:36:5b:
5f:52:d8:76:f0:81:f8:69:9c:5f:5b:7a:64:6b:3d:
bd:ec:15:d9:79:66:d8:46:a5:14:af:b6:90:f8:37:
50:74:af:15:56:50:20:f8:fb:7e:4e:36:56:2f:3b:
94:ac:c1:ed:2b:3a:86:e2:e3:ad:ff:74:6a:fb:16:
14:13:47:c9:c6:94:b1:eb:7e:6a:7a:9f:ac:a0:89:
af:c1:1a:67:12:36:95:ec:49:62:57:cf:f3:c2:12:
3c:bf:de:83:61:12:81:1f:21:6d:11:be:68:ec:2d:
fb:a0:4d:65:90:c4:39:a2:b9:31:56:ba:03:d1:ee:
3c:34:42:c0:ea:5a:34:da:e3:fb:d3:7d:39:aa:89:
3e:38:35:44:35:dc:be:c6:04:e0:1b:ac:76:99:46:
22:01:46:4e:5c:8b:29:03:3d:db:d3:b8:2e:98:54:
e2:67:06:e6:00:6f:95:e0:62:5e:10:31:e5:1f:8b:
42:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:CD:46:BC:F9:F5:B7:C8:0B:13:35:86:8D:94:E3:CB:54:15:8E:0B
X509v3 Authority Key Identifier:
keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:a2:bb:66:82:a9:1a:53:3d:02:e5:6b:bd:aa:69:98:65:4a:
35:d5:87:1a:34:c8:a5:88:48:c5:26:0d:4b:8b:75:7d:06:1c:
c2:ea:c0:37:2f:bd:3c:b9:16:24:5a:de:3c:99:2b:10:42:72:
6f:b4:98:89:e3:5d:f0:c7:af:e4:30:ea:40:77:2c:f3:6e:a4:
12:c0:5a:8d:e9:d6:7e:75:8a:b4:96:17:cb:89:4b:4c:b8:b9:
d5:e8:8e:e9:78:83:73:85:c6:ec:ea:94:78:37:a5:76:c9:74:
ce:3f:c9:50:77:24:9c:b5:b3:24:a3:72:d8:a6:52:25:c0:c0:
69:ba:52:36:e5:67:30:0d:a0:fd:f6:62:2d:15:a6:3f:36:7b:
d0:fd:3f:a0:f2:41:8a:07:b3:a9:55:ff:f7:12:a3:87:8a:9e:
05:87:a9:86:4d:2d:98:c5:41:89:f8:5d:72:9a:05:89:bd:03:
84:37:92:66:c8:6a:b5:b3:4e:4f:f1:de:88:7d:b8:d3:b0:6a:
9b:80:23:0b:97:b5:a6:1b:84:d8:7a:ba:a4:45:25:5a:3a:79:
01:60:e8:7a:c2:c2:e0:fe:17:a0:e6:59:e5:86:97:06:c7:8a:
d8:54:46:35:70:69:0f:67:de:25:5b:da:68:3a:65:f5:d7:53:
0e:06:b8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 22:16:42 2025 by rpki-client