Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json)
Hash identifier: Vwukp2LakoDVXjqnL0k1OMuMFjDf3d8pYYEPWr+6MOA=
Subject key identifier: 59:AB:24:5F:6D:00:B9:CE:22:4D:17:80:F1:10:6D:41:33:89:DA:18
Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Certificate serial: 0196BBC8D6A584FA48B58AB06D2A89A66A2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
Manifest number: 1534
Signing time: Sat 10 May 2025 20:00:23 +0000
Manifest this update: Sat 10 May 2025 20:00:23 +0000
Manifest next update: Sun 11 May 2025 20:00:23 +0000
Files and hashes: 1: CBx-FeJj7z4oTrZiVmY-MbHnzM4.roa (hash: 1bONPKFzyDS/3APoxZR25vqyDAsgCQifSMXpTfL4F0s=)
2: WxxzockSF-0jbEBubYwjKIfgtaw.roa (hash: uNom3cZ42KKzlsjBXTYNfCi+Ksse/PrjCfplRbo7jWE=)
3: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: WRMosz/BO9EHvy9CMmSVy+PZUAkii+/maSoVj4g72Zs=)
4: hAuohYiSHygUFUxTjuX1SWN5QDE.roa (hash: MotGMSUysnMBdzXEwoyDH1EBq/l4jrQRez7lyisrMeA=)
5: n6ANVJpjfADW-mInHpVlhLdkL5w.roa (hash: E28ZlsfhOnBkyIyOKkYfx6xyMrKE5R52d/SAANOKtIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 20:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:c8:d6:a5:84:fa:48:b5:8a:b0:6d:2a:89:a6:6a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Validity
Not Before: May 10 20:00:23 2025 GMT
Not After : May 11 20:00:23 2025 GMT
Subject: CN=59ab245f6d00b9ce224d1780f1106d413389da18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:94:48:99:8f:31:02:7c:8c:d1:e4:90:40:40:
89:11:bd:f1:71:e9:03:91:5c:6e:c9:5e:a9:83:b1:
a6:3e:39:89:fa:2f:e9:83:48:4d:f6:78:c1:47:e6:
9d:6c:29:77:ee:07:bd:df:c7:7a:5c:cc:86:07:d7:
bd:bd:3d:0e:bf:6e:2d:f7:32:cd:b8:87:8b:fe:9b:
53:19:46:82:f3:a9:a5:76:14:f3:f4:92:55:6b:35:
5a:0a:7b:60:fc:ed:dc:b7:3d:63:b0:eb:58:09:d3:
aa:dd:27:88:25:d1:81:c5:a8:c4:47:68:94:34:3f:
8d:d4:a4:d8:13:80:ad:45:c3:70:23:cd:14:d9:f2:
de:24:37:2c:bd:ac:31:4f:30:89:b7:bf:04:d5:f9:
dc:ad:92:61:65:65:21:6e:60:17:be:8b:07:2d:39:
4e:a2:55:66:b0:ac:20:9a:65:06:11:60:e0:c6:b1:
67:a0:b5:bd:43:b1:90:70:3f:d8:65:ca:6e:75:5c:
bf:f0:82:4b:f8:0e:52:f3:c2:84:20:06:32:98:43:
33:fc:04:c3:62:83:9c:d7:9f:90:a2:55:ad:3f:17:
ed:e2:e4:94:0b:79:c7:4b:2d:4c:cd:16:eb:a0:41:
65:98:0c:c5:6d:3d:1f:2a:f9:96:f0:1f:d5:d7:c9:
98:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AB:24:5F:6D:00:B9:CE:22:4D:17:80:F1:10:6D:41:33:89:DA:18
X509v3 Authority Key Identifier:
keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:39:e8:42:f4:2f:48:00:54:e0:57:a7:29:4b:4f:ac:54:ed:
ee:17:93:48:d0:d7:a5:1f:01:e0:1f:80:48:d2:a0:50:90:21:
46:cf:45:f5:cb:44:18:ab:76:1e:69:ec:d9:8b:16:6b:3c:fa:
ef:b9:82:35:ac:78:cc:8d:6f:96:ba:89:5f:e0:2d:35:4d:f1:
c7:70:38:dc:78:ba:08:d2:51:05:b2:6f:26:fe:6e:1d:0f:b6:
c5:64:00:2a:bc:9d:7d:21:49:a0:cf:cf:f7:56:4d:4c:45:1f:
28:7a:39:f9:d8:f5:07:55:a8:82:2e:81:8a:fd:c1:70:87:e0:
3b:12:5a:53:76:a0:41:39:c2:2e:2f:6c:0c:70:ae:53:0d:44:
e9:c6:56:11:51:56:87:60:64:0f:33:d9:d7:3f:11:e1:42:84:
25:10:4c:63:8e:56:1a:43:a2:f7:02:98:e4:91:7d:c8:57:2f:
2f:b8:3a:3a:02:d9:62:bb:40:73:07:59:86:4c:fc:b8:82:f0:
20:ed:89:69:af:0d:af:1f:5e:25:ba:fb:ce:00:b3:10:22:e9:
93:49:7d:91:6c:e8:c8:06:13:1e:a1:f2:8e:a6:cc:85:bd:e2:
c3:f0:aa:6b:11:f9:b5:cc:53:18:85:44:43:b6:94:8b:f8:47:
77:1f:2a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:55:14 2025 by rpki-client