Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
File: ZlBwd85_MPwGht0JNKiZl98x6Ew.mft (raw, json)
Hash identifier: gu0khaQRhu2SPOu7sOVK6f4I06RJXjyM3X0SeddihwQ=
Subject key identifier: 69:BB:A9:27:0A:C5:2B:6B:5E:2B:1B:C5:B3:70:F4:81:B0:00:F8:32
Authority key identifier: 66:50:70:77:CE:7F:30:FC:06:86:DD:09:34:A8:99:97:DF:31:E8:4C
Certificate issuer: /CN=66507077ce7f30fc0686dd0934a89997df31e84c
Certificate serial: 01965B03A7AF36B793E527176E37548B617B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
Manifest number: 83
Signing time: Tue 22 Apr 2025 01:01:28 +0000
Manifest this update: Tue 22 Apr 2025 01:01:28 +0000
Manifest next update: Wed 23 Apr 2025 01:01:28 +0000
Files and hashes: 1: CMAN4bcbFlE2ovL3BXKdvH4eTII.roa (hash: ZzFaJfQBLQmJT0k4QbFN8QUiuOCXpP8XehevhIAFTKY=)
2: ZlBwd85_MPwGht0JNKiZl98x6Ew.crl (hash: NJ/74FZAESQxeM2uew2PWDGMAF3PunOl216oqD22UBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:03:a7:af:36:b7:93:e5:27:17:6e:37:54:8b:61:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66507077ce7f30fc0686dd0934a89997df31e84c
Validity
Not Before: Apr 22 01:01:28 2025 GMT
Not After : Apr 23 01:01:28 2025 GMT
Subject: CN=69bba9270ac52b6b5e2b1bc5b370f481b000f832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:78:6e:f1:23:e2:1d:8b:2a:41:e8:03:d9:fc:
e4:22:57:43:aa:0e:03:bc:bd:df:22:16:9c:5f:1d:
e4:16:27:89:1d:e9:a1:4b:a5:ad:ca:17:f8:07:aa:
65:9a:df:a2:8a:68:e8:43:2a:e5:38:4b:8c:ce:d9:
77:23:ff:17:99:50:0a:90:09:8f:86:44:b0:7c:67:
4e:7a:0d:f0:78:23:c9:30:59:e6:b0:8c:8c:a7:d0:
6f:0a:ab:a5:07:10:e4:30:39:cc:83:78:b9:ee:c9:
de:b9:f7:79:82:cc:be:d7:0a:c1:af:f8:d3:03:7e:
a2:80:0a:4c:1f:18:a8:98:e0:31:f9:ee:cb:c2:33:
e1:c1:be:3f:f4:3a:d6:49:d5:c7:ec:fd:90:58:0f:
75:15:b3:a4:64:37:c2:35:9f:41:b0:2d:dd:65:b7:
65:d7:21:73:cc:fa:f3:b4:b8:b9:d0:b7:1b:df:84:
fb:8d:a5:80:57:53:e5:e5:ff:b2:06:ff:ca:59:74:
66:c3:b9:ec:8f:ab:23:ad:4b:21:14:ec:c2:24:cf:
e8:97:a8:01:df:3a:80:fb:2b:75:1c:78:09:5d:eb:
46:8a:2b:11:a7:48:72:d2:b9:c5:1d:25:fc:40:8f:
b4:8c:4e:a3:79:04:f2:a5:da:ae:e1:77:7d:73:90:
5b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BB:A9:27:0A:C5:2B:6B:5E:2B:1B:C5:B3:70:F4:81:B0:00:F8:32
X509v3 Authority Key Identifier:
keyid:66:50:70:77:CE:7F:30:FC:06:86:DD:09:34:A8:99:97:DF:31:E8:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:e9:06:5a:2a:73:69:cb:70:0a:a0:9c:a9:65:0b:74:cc:e3:
66:0a:7e:81:0d:f2:d5:c4:04:d1:40:e5:27:14:4b:c1:f2:a3:
e6:6f:12:12:64:49:55:cb:0d:21:13:97:51:74:d9:a5:c1:c0:
b6:ec:47:06:15:3a:c8:97:02:1f:83:ac:1b:78:b4:24:36:36:
b9:5e:be:aa:0d:c7:72:e3:1e:8e:d8:e1:2a:dc:62:db:38:ea:
eb:d7:9e:12:e6:84:c9:13:99:ba:4e:93:62:cb:c0:83:5d:ee:
80:35:4c:30:0e:42:52:05:fc:db:07:99:eb:a1:67:a2:aa:8d:
9f:e9:c9:2b:d2:6f:94:c4:ed:0f:c2:3a:52:73:ef:ef:f5:5a:
b8:9c:40:d0:4f:d1:3b:40:29:57:0a:2d:10:76:f2:54:9c:b9:
22:46:d6:dc:7b:62:3d:7b:51:53:40:6b:c1:9e:80:f7:4d:0f:
14:4a:1c:50:70:f3:cc:db:f6:6c:18:8a:ab:8b:61:9a:9b:08:
01:34:12:74:94:a0:a9:a2:d8:df:25:5b:06:23:22:5a:91:94:
1f:bd:89:0a:e0:d4:3b:67:03:da:5f:62:30:2b:42:a1:13:7e:
ce:ce:38:3b:40:7f:c5:72:97:65:0d:14:84:89:8f:74:83:ed:
e1:75:c6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:55:20 2025 by rpki-client