Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
File: zZEXAvST1u3htuhyvKzcuFQoK60.mft (raw, json)
Hash identifier: OHNb0/YjEbh1VDGPpU+1JYJGvwKBnfJDrIFaz24BQyk=
Subject key identifier: F4:E0:83:0C:BB:20:A1:BF:FA:BF:A4:1A:C1:4C:1E:BA:E3:5D:99:B5
Authority key identifier: CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
Certificate issuer: /CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Certificate serial: 0196C5A7DC5355E23E428FE41EB92DD4634F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
Manifest number: 0B9D
Signing time: Mon 12 May 2025 18:00:34 +0000
Manifest this update: Mon 12 May 2025 18:00:34 +0000
Manifest next update: Tue 13 May 2025 18:00:34 +0000
Files and hashes: 1: talgukTPD8oL2wxiXAXrxPFSwAY.roa (hash: 42F75IV5IsX3V6ll7VHZlZ+ABWMo+HJa6Q+yWz1dm0U=)
2: zZEXAvST1u3htuhyvKzcuFQoK60.crl (hash: GAy7ooVXYUYIAwL5pbJdyQZfr4lzw/+PZdOD+ZZ5J08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a7:dc:53:55:e2:3e:42:8f:e4:1e:b9:2d:d4:63:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Validity
Not Before: May 12 18:00:34 2025 GMT
Not After : May 13 18:00:34 2025 GMT
Subject: CN=f4e0830cbb20a1bffabfa41ac14c1ebae35d99b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:90:c2:53:b2:06:88:16:c0:84:04:00:28:
ad:91:f8:61:09:ef:a0:90:5e:f8:af:fa:d3:27:c1:
5d:d3:6a:e5:4d:2a:b5:dc:a4:5b:fd:63:b6:75:d3:
9b:15:70:aa:a1:2f:ea:90:e0:04:d7:6b:14:b2:d3:
10:0c:d9:99:bc:15:17:39:82:7e:bb:14:02:aa:f2:
77:44:27:67:b6:4e:54:4e:df:dd:f0:00:1f:d5:73:
c6:df:1f:4f:ea:b5:42:42:e4:cf:93:0b:44:58:54:
85:50:b8:4d:7f:74:54:3e:39:86:8c:ba:a8:27:f2:
83:29:8c:44:dc:eb:8a:79:db:a1:3c:59:8c:67:02:
09:b5:fe:5f:18:25:ef:0d:15:8c:cf:cb:19:fc:37:
41:77:10:d3:b9:17:44:07:1a:4d:d4:a4:46:dc:cc:
0a:03:2e:20:7d:2d:7b:29:b7:f7:92:18:9f:ef:85:
5d:15:d9:82:aa:8e:5d:06:c9:de:83:5b:78:7b:14:
ae:3a:cc:21:09:41:fb:74:e3:90:1f:62:96:40:b2:
a6:78:b8:7f:6a:2f:5e:f3:20:30:95:00:64:a6:8d:
82:24:f4:a0:4d:ae:80:76:b1:47:cc:f6:5c:e3:6d:
14:66:c3:8b:3e:06:1c:3a:67:1e:36:6c:29:c5:a5:
3d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E0:83:0C:BB:20:A1:BF:FA:BF:A4:1A:C1:4C:1E:BA:E3:5D:99:B5
X509v3 Authority Key Identifier:
keyid:CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:4d:83:b4:ba:c7:4a:78:72:f4:fc:bd:3c:f0:6a:1c:b1:51:
03:31:04:79:bf:f5:29:df:a4:9f:ae:2d:f9:d9:93:9d:51:b4:
4e:dd:5c:aa:e6:6a:ba:e9:21:8e:c1:9e:b6:3d:e6:63:e6:a0:
a2:a6:1c:ef:b1:00:07:de:4c:bf:63:64:cf:84:47:e0:d4:7f:
78:0b:64:c8:3b:83:76:44:27:95:26:45:19:e1:96:bb:84:89:
0b:ba:8f:ae:de:34:ad:a8:89:55:64:60:e6:75:8d:86:7d:11:
b9:c3:06:83:bd:3e:02:b2:db:aa:79:06:b9:59:f3:e6:10:e0:
38:e0:3c:2f:7e:74:52:8f:35:4c:59:74:89:e3:54:42:c7:b7:
f4:dd:96:c4:97:6e:0d:cb:d9:87:48:cf:14:7b:06:1d:2c:b4:
43:af:0a:b6:1d:59:ed:e7:8b:36:9c:09:a5:95:ec:e2:3f:a6:
eb:23:c2:03:97:be:24:cb:17:60:8c:15:15:15:2e:64:de:38:
a4:08:74:ce:a8:cd:59:52:06:1f:a1:b9:be:c6:43:83:20:b0:
76:49:a0:90:a2:6a:f9:ae:0e:df:95:b7:f0:f4:f8:93:bd:85:
c3:ed:ff:8b:e2:a0:c5:67:d3:89:db:c7:bc:90:6d:a2:b6:28:
3b:e3:09:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:54:51 2025 by rpki-client