Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json)
Hash identifier: /xZidETGk7OZ0QbZJRima1wiZuheHVuiMXOT4OzTWFc=
Subject key identifier: F0:62:F2:D2:FE:4F:EE:B7:E8:9C:A2:00:0E:2D:FA:14:DD:85:7C:1E
Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Certificate serial: 0196C6F12280BDDE0561383465CFEA156F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
Manifest number: 111C
Signing time: Tue 13 May 2025 00:00:13 +0000
Manifest this update: Tue 13 May 2025 00:00:13 +0000
Manifest next update: Wed 14 May 2025 00:00:13 +0000
Files and hashes: 1: 8P_S0IiROCk_5OYQ6mxMJ_E_ykg.roa (hash: hKXKA4mluIkjfh1vqK/elg6N0eojlwBUTy51lDcZmFo=)
2: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: S1nu2etuhCpuZYaO9ubqNxnhn+0rO8FhlZMPvJGUNXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 00:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:f1:22:80:bd:de:05:61:38:34:65:cf:ea:15:6f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Validity
Not Before: May 13 00:00:13 2025 GMT
Not After : May 14 00:00:13 2025 GMT
Subject: CN=f062f2d2fe4feeb7e89ca2000e2dfa14dd857c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1c:d3:12:f9:9b:82:4c:4e:e7:29:69:c0:2a:
cd:d7:ef:46:90:65:eb:39:07:59:7a:0d:f6:ed:ab:
e0:fc:28:43:e6:01:1c:ee:20:96:f1:c4:ea:ed:33:
c6:cd:75:1f:07:64:8c:7b:f9:66:e9:c6:66:41:17:
b7:29:d5:11:83:b7:97:78:b2:06:ca:67:8f:24:eb:
63:ff:8d:c1:56:65:a3:85:89:92:52:bb:59:51:28:
40:d6:9e:09:82:23:50:8c:f4:12:71:14:57:15:fc:
82:29:7e:9d:6b:0b:c6:33:72:1e:23:b4:ef:70:42:
cd:fc:30:fc:31:3a:02:5a:fd:09:97:c3:43:54:03:
7d:55:36:a3:70:7d:33:62:9e:ba:f9:4d:d3:73:01:
0a:e1:8f:df:82:ab:bb:ce:ca:ad:fb:ce:06:9e:66:
09:ab:a7:fa:32:bc:0d:f8:b3:03:ff:79:80:13:58:
d4:af:fa:f4:ee:51:e8:4b:59:20:c7:30:96:19:3f:
ec:12:5b:3c:31:ff:09:81:b7:2b:28:46:15:22:2a:
d8:07:14:6d:22:bd:54:b5:f0:df:00:7b:e7:2c:63:
47:7d:c9:0d:c8:e1:6c:c4:82:8a:de:5e:9e:e8:15:
23:9a:61:af:46:5c:40:43:fa:fc:bc:43:fb:86:ea:
77:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:62:F2:D2:FE:4F:EE:B7:E8:9C:A2:00:0E:2D:FA:14:DD:85:7C:1E
X509v3 Authority Key Identifier:
keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:50:a9:c3:93:20:ca:5f:47:1c:6a:08:43:ee:85:e4:d6:80:
2b:6b:35:04:cb:a9:05:08:5a:27:58:dd:c8:d0:c2:f5:ff:a6:
f5:25:93:66:89:76:f2:8d:d3:b1:ab:80:f3:42:e0:8a:f7:96:
75:4b:00:92:d5:ec:b7:a3:88:7c:b7:f1:56:5c:ff:4c:bd:5d:
31:30:9c:0a:e8:b9:5e:ab:1f:87:66:a5:fc:a8:a2:f4:cf:d6:
18:49:ef:69:93:3d:ce:3e:3a:52:2c:39:a0:48:49:31:7a:4d:
6d:48:0b:5e:15:4d:3f:ef:75:94:9a:59:b6:10:ce:53:f0:96:
45:fb:9c:09:da:4c:7f:04:4d:72:68:f0:4b:f2:64:ce:b9:9a:
29:fb:a3:4b:ef:ba:09:4a:ad:3f:9d:3b:7e:e0:02:96:55:69:
a4:2d:26:41:a7:93:df:1a:dc:76:45:a2:fe:74:8f:63:07:ab:
f6:36:db:c8:b2:57:40:04:39:2b:0f:2c:e7:78:1c:2e:69:9c:
22:76:38:b7:c5:f1:b8:48:1e:a0:3d:25:93:cf:89:d9:fe:7b:
f0:a9:7d:24:dc:03:e5:19:4f:92:4e:bd:32:5f:ee:02:71:ba:
97:88:b4:c6:37:6e:a4:32:9d:2b:57:54:d9:ba:40:33:47:58:
06:23:c0:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:09:00 2025 by rpki-client