Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
File: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft (raw, json)
Hash identifier: UZZTFcaeWZbHEOSprpI1BncAh2384OQQ/wGF6PW3qo8=
Subject key identifier: 35:13:7D:AC:FC:83:0E:06:E8:85:74:38:9B:5D:46:A6:59:5C:FD:36
Authority key identifier: 66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
Certificate issuer: /CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Certificate serial: 019656B85C874DE0B9F93F4C5FA45BBBCB5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
Manifest number: 108B
Signing time: Mon 21 Apr 2025 05:00:44 +0000
Manifest this update: Mon 21 Apr 2025 05:00:44 +0000
Manifest next update: Tue 22 Apr 2025 05:00:44 +0000
Files and hashes: 1: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl (hash: 1c4Ruz5+ectYw2Ycfp3AIEjL0VsiX2iQdaxW5uXT0g4=)
2: uoOTDO3I8Ju9HNeb_RrUnxiXqMM.roa (hash: uWLf97UT0+0lxJvC3noTnvF0IVTFV5k9XbA2AIDmE6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:b8:5c:87:4d:e0:b9:f9:3f:4c:5f:a4:5b:bb:cb:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Validity
Not Before: Apr 21 05:00:44 2025 GMT
Not After : Apr 22 05:00:44 2025 GMT
Subject: CN=35137dacfc830e06e88574389b5d46a6595cfd36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:dc:d0:fd:d5:8e:1d:d9:42:73:83:f0:61:
fc:8a:9e:64:22:6c:6e:91:e9:51:bc:20:e7:9e:64:
35:a7:12:34:f6:95:ac:99:91:91:6b:c9:50:c8:64:
ef:9c:d5:33:e7:7d:2c:0b:37:3d:5f:18:3a:43:ef:
4d:af:12:d0:03:91:47:ba:ac:a0:03:a3:9f:bb:5b:
24:87:ae:c0:3e:39:97:bf:e9:de:2c:67:1f:48:27:
e9:af:bf:eb:60:89:1e:d0:c0:ac:2b:e1:76:ea:03:
7e:4f:d3:8a:83:ed:82:e4:8c:09:e6:07:00:fc:86:
ad:f8:5a:9f:7e:3b:0a:c8:fc:e2:18:32:7a:b2:f6:
19:cd:03:7f:20:8d:27:99:d4:89:b7:3e:f9:85:4a:
91:87:95:15:83:0a:73:7b:4a:fd:8e:5a:c0:cd:76:
28:14:05:ea:23:d0:63:2a:83:67:a6:7b:f0:70:38:
6e:e5:b4:0d:44:00:61:10:18:b7:07:6d:12:e4:88:
7b:b2:6c:e5:75:cb:9a:94:3e:42:6d:a9:8c:af:2c:
9b:a5:a4:6a:ba:9c:70:d7:33:3f:4e:f5:3d:2c:46:
45:38:78:ea:79:33:e1:f5:9b:73:ff:70:33:cb:60:
45:22:8f:55:cb:28:d0:e2:9f:be:30:41:19:68:47:
18:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:13:7D:AC:FC:83:0E:06:E8:85:74:38:9B:5D:46:A6:59:5C:FD:36
X509v3 Authority Key Identifier:
keyid:66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:74:f5:fa:5c:d3:7d:ff:83:89:1c:c3:18:1a:4d:28:86:0e:
e6:f0:1e:c0:94:c2:cb:9a:9c:d7:b0:c0:3d:9d:12:65:22:41:
6a:ce:72:34:de:50:6f:97:bc:e0:12:0a:b4:bb:f8:ba:07:5a:
46:c9:b7:c0:bc:4a:3a:b0:f8:30:bf:23:8f:67:ef:ee:4b:16:
87:49:9a:57:93:4a:82:ac:bd:ae:58:e3:f5:ed:15:8f:58:a4:
65:7d:82:20:57:f2:54:7a:82:e1:9d:e1:3a:6a:3f:0e:98:21:
a9:71:5a:c8:87:b3:8f:2e:b5:8e:16:b7:f7:40:3c:cd:b0:27:
05:ff:24:62:40:53:48:a1:67:12:23:43:2a:a8:94:df:13:be:
d6:1d:45:9e:bc:83:e8:25:42:c1:08:5b:3a:19:0e:74:73:13:
01:4c:df:85:3c:0a:e8:43:71:92:11:c4:a4:5d:9b:e7:19:60:
70:76:0d:e7:ef:8f:08:bf:50:37:af:4a:df:82:e0:84:9c:c8:
a0:f1:9b:f8:f8:b6:b3:f1:66:c5:2f:f4:b7:49:25:01:19:c1:
e2:9d:7b:ca:30:36:8f:5c:a5:de:2a:e2:9a:7d:f3:44:f5:f6:
87:b7:af:8c:28:a8:d0:2c:e6:77:5c:45:33:97:ee:c8:b3:79:
52:a1:37:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:47:18 2025 by rpki-client