Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
File: zo2SrOCAEcTQrsjyKGVxW9kaASI.mft (raw, json)
Hash identifier: Jkml71eXWsGdBybJWlatfx2rWYbm8Fzn74UVVEreqdE=
Subject key identifier: 63:B5:B6:3E:53:FD:F1:7E:E2:B2:91:EC:3E:7D:37:AD:90:C6:7F:70
Authority key identifier: CE:8D:92:AC:E0:80:11:C4:D0:AE:C8:F2:28:65:71:5B:D9:1A:01:22
Certificate issuer: /CN=ce8d92ace08011c4d0aec8f22865715bd91a0122
Certificate serial: 01964CA2665050E64D46E06A81A680E7222D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 06:00:33 +0000
Manifest this update: Sat 19 Apr 2025 06:00:33 +0000
Manifest next update: Sun 20 Apr 2025 06:00:33 +0000
Files and hashes: 1: c9T1Kx5A7nWBX74YKnmxrK2YxWk.roa (hash: z4gK4/Y9ltoru7dKh2/m8n1YWOzp0cICAUx0PffNJmo=)
2: zo2SrOCAEcTQrsjyKGVxW9kaASI.crl (hash: VX9La56OtABIStHl3SkEM3CNfxCJCzg29H129k41LZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:a2:66:50:50:e6:4d:46:e0:6a:81:a6:80:e7:22:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce8d92ace08011c4d0aec8f22865715bd91a0122
Validity
Not Before: Apr 19 06:00:33 2025 GMT
Not After : Apr 20 06:00:33 2025 GMT
Subject: CN=63b5b63e53fdf17ee2b291ec3e7d37ad90c67f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ab:08:1a:c6:6a:fb:89:57:2d:21:02:87:69:
b4:35:65:35:a8:a3:3b:20:6c:a2:1d:fd:55:f2:ea:
f0:33:22:5a:e6:5e:10:19:b8:1f:0f:80:af:93:9a:
4e:97:d4:c6:30:f7:e1:6c:84:21:8f:e1:9c:73:01:
85:d8:55:7b:96:5e:f2:c8:4e:25:ec:2d:bf:47:bc:
c4:5d:d5:a4:cb:62:8d:aa:f3:54:90:84:87:cd:d1:
76:31:1c:ab:88:42:bc:63:61:e1:df:5f:52:71:76:
ea:84:35:53:35:d4:f3:f5:40:cd:34:3f:b4:de:c9:
f4:d3:f5:99:eb:a4:2f:09:87:9d:66:70:8c:d5:ea:
8c:85:fb:8a:33:27:98:f1:bd:3a:81:87:7d:fa:43:
da:6e:a9:7b:a2:03:c2:ba:33:d5:d8:ba:f4:b6:cd:
47:83:97:46:be:99:80:06:53:ec:ce:4c:16:3d:a1:
bf:eb:e0:66:a7:54:42:06:08:11:a0:fa:f7:19:50:
fc:d9:44:62:8f:b3:7a:c5:31:cb:23:cb:7f:47:41:
53:a7:e1:02:ac:42:98:3b:76:43:0f:79:5e:b3:85:
db:05:8b:88:92:fe:23:0a:66:38:a7:b6:0c:e6:70:
e4:9a:e2:57:4c:20:63:3f:c5:e6:d5:c1:f6:00:a5:
5b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B5:B6:3E:53:FD:F1:7E:E2:B2:91:EC:3E:7D:37:AD:90:C6:7F:70
X509v3 Authority Key Identifier:
keyid:CE:8D:92:AC:E0:80:11:C4:D0:AE:C8:F2:28:65:71:5B:D9:1A:01:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:9e:cd:0a:0c:a7:62:f0:fe:2e:b2:b4:ad:b5:a8:e2:4a:bd:
5f:94:6b:0f:d3:84:44:39:d1:5f:af:64:dc:6d:90:7b:46:2a:
a6:1a:c4:2a:5b:8d:2f:6c:f9:1a:b9:c5:e2:bb:19:8d:73:ac:
17:d6:8e:3c:72:66:f8:52:f6:9a:9f:08:1c:5f:e6:ca:e0:bc:
20:c7:aa:82:c0:b1:30:96:ed:22:22:df:b2:c2:35:c4:b3:32:
2c:50:5d:5c:55:87:61:25:d5:53:5f:b0:76:e0:b0:b5:f5:5a:
ba:aa:70:2d:f3:be:89:de:e8:d9:7c:09:72:5d:6c:99:18:a0:
62:e8:30:39:7e:16:c9:79:11:26:0c:59:f9:4a:04:05:c4:f2:
43:1e:9c:bc:da:7f:a4:ba:41:31:0e:93:5b:a3:ea:bb:9a:68:
67:d1:de:b3:fd:01:c1:b8:88:1d:56:eb:2f:c1:0f:c2:3f:c2:
c2:23:f8:38:67:e3:8c:8f:81:f3:3f:fe:60:3b:07:7c:a9:53:
d7:24:64:96:92:b6:73:10:27:00:dc:2a:8e:09:d2:55:1c:b0:
49:68:fd:a3:13:12:75:4c:0c:4c:ce:4e:b6:17:a1:94:f8:41:
09:33:b4:84:b2:8b:1c:10:7e:d1:bf:ed:25:cb:7a:0d:ec:6c:
1b:5a:5d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:33:31 2025 by rpki-client