Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
File: fzP8QNLgMzu8e96rK9hZlUMBwPE.mft (raw, json)
Hash identifier: 74tP/wD8L4SwJ+n3eHe/cbwMMEK7VwG5I6vA7REP1rc=
Subject key identifier: 1A:14:A7:8B:63:F7:31:42:29:8F:52:03:DC:C0:FF:53:0B:1B:24:BC
Authority key identifier: 7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
Certificate issuer: /CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Certificate serial: 0196542582AB9F4EFE55BC0D06F1C79E687B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
Manifest number: 0446
Signing time: Sun 20 Apr 2025 17:01:06 +0000
Manifest this update: Sun 20 Apr 2025 17:01:06 +0000
Manifest next update: Mon 21 Apr 2025 17:01:06 +0000
Files and hashes: 1: fzP8QNLgMzu8e96rK9hZlUMBwPE.crl (hash: w2f/XhMa9WgGFJZshWelknBOgDWrtjKlJTHDwRwmUbI=)
2: ur3dSSpuEwtDhi5m-xYjQ9J-ZlQ.roa (hash: cwXAi1sfFPfN04wsw1nczJfstzqjCt7igbtZqfyu1Oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:82:ab:9f:4e:fe:55:bc:0d:06:f1:c7:9e:68:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Validity
Not Before: Apr 20 17:01:06 2025 GMT
Not After : Apr 21 17:01:06 2025 GMT
Subject: CN=1a14a78b63f73142298f5203dcc0ff530b1b24bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:01:ab:4c:f1:9b:f6:d0:6c:7b:e1:55:17:13:
99:60:ce:b8:c4:26:37:6d:ae:af:2d:51:fd:f8:04:
4a:62:13:cd:66:a4:5b:71:5d:c1:99:59:63:86:d3:
c9:6a:00:e5:6d:66:cc:e7:57:12:ee:67:af:a3:bc:
6e:df:4b:ae:c5:b6:30:c4:42:b9:22:0c:42:61:eb:
5a:b3:6b:09:63:46:06:a5:f9:ff:43:71:70:5e:c2:
ec:78:6c:5d:ca:dd:7f:54:5d:ff:da:a9:03:51:c9:
60:de:bc:5b:a2:66:46:b1:53:00:ef:28:39:69:58:
38:e2:39:c1:64:c7:8b:b2:4a:67:0c:34:28:79:ec:
4b:84:a2:29:c0:e0:5a:42:c0:e7:79:c1:6f:32:0f:
7d:0d:18:99:f0:37:15:07:f6:60:89:67:fb:ec:0a:
1f:2b:93:a3:aa:ca:04:33:0b:a8:cb:c8:a6:f9:c1:
07:56:fa:92:f4:6a:21:20:91:d1:4e:ce:9a:ce:ba:
46:9f:f0:d0:e0:19:af:fe:9c:49:17:c0:ed:ce:b9:
58:7b:bb:b2:73:74:c9:f8:70:7b:76:cf:51:18:78:
ac:0b:54:ac:32:20:d0:b7:c0:8e:29:3a:7c:70:43:
6d:62:1a:5a:a9:66:37:de:ff:c6:b8:6b:8b:33:88:
c8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:14:A7:8B:63:F7:31:42:29:8F:52:03:DC:C0:FF:53:0B:1B:24:BC
X509v3 Authority Key Identifier:
keyid:7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f6:0e:80:58:e9:ff:9f:dd:d7:09:9f:dd:a7:12:85:7c:12:
c4:f4:92:bc:50:50:5f:ae:9b:ec:46:85:5f:58:03:1d:99:03:
5a:3c:03:33:c1:f4:3a:d7:7e:9e:86:bf:1d:c6:dd:23:a4:f1:
fc:04:6d:cd:93:a1:fe:5d:f0:b9:a9:64:c9:a9:47:1e:a3:55:
f8:ff:bf:2c:93:31:03:39:55:ec:77:ff:8d:29:01:37:87:3b:
bc:d7:25:78:e5:ad:08:19:1d:9c:93:d5:47:f5:76:18:2f:e4:
82:f6:5b:25:c5:21:65:88:d6:cb:4d:ab:d4:b4:2b:d6:cb:02:
e2:32:c7:7b:d4:b0:63:93:62:cb:20:95:2e:de:23:db:3d:ea:
68:76:6f:29:f5:9a:72:5c:53:c3:db:36:d6:02:3e:41:e5:06:
ee:0c:77:72:50:7f:7a:0c:06:59:59:50:a6:28:fc:4b:a2:96:
22:e8:1f:79:9a:34:3e:65:67:4d:9c:ea:e2:00:26:98:2f:4a:
9e:fe:da:99:cb:59:3c:5b:fe:44:05:62:f9:58:fe:e1:29:1a:
5b:a5:dc:f5:39:c7:27:6e:e9:49:33:a1:d2:9c:ee:5f:41:a0:
dd:3d:69:bc:09:8d:a0:d4:f4:70:06:0a:a9:92:e4:78:d7:bd:
58:09:2b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:51:15 2025 by rpki-client