Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json)
Hash identifier: v6eVgXaTPMtobnsLMt+9taMnu/uyHfxi+Atwt5Dr5Uw=
Subject key identifier: 4E:8E:8C:38:B3:99:F2:C5:BF:92:66:25:C2:E6:58:33:F3:40:93:18
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 0196A2AE176643985F781E3D938B27C4E72D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
Manifest number: 1528
Signing time: Mon 05 May 2025 23:00:40 +0000
Manifest this update: Mon 05 May 2025 23:00:40 +0000
Manifest next update: Tue 06 May 2025 23:00:40 +0000
Files and hashes: 1: VI-dWQcY37xUT1kUINfwRf4ITOY.roa (hash: /K+hbbpjK6p98+FcPVOwuQPFXuHi6fBZ7x81PS6CuTg=)
2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: WzJY0jRHbG8Hfxry8uluoZhLrKmEgsvF5lleZXdhUc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 23:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:ae:17:66:43:98:5f:78:1e:3d:93:8b:27:c4:e7:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: May 5 23:00:40 2025 GMT
Not After : May 6 23:00:40 2025 GMT
Subject: CN=4e8e8c38b399f2c5bf926625c2e65833f3409318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:09:dd:27:6c:11:4b:2c:c4:09:65:6f:32:9a:
7b:9e:bb:c9:82:86:bf:1e:69:54:4c:15:1c:9c:22:
67:67:17:60:53:44:c8:66:92:37:a1:0f:60:ee:f4:
02:3b:b9:a6:fe:90:51:04:a4:5d:34:64:ad:e2:bc:
2d:25:c8:a9:b3:a6:22:3f:ad:ff:3f:ca:1e:57:82:
44:12:7d:df:59:d3:74:8a:dc:6b:37:00:2b:82:63:
4d:47:54:c8:31:f4:87:45:71:ce:f1:30:3f:07:06:
a5:34:4a:bc:57:6f:e3:82:65:80:5a:64:a1:7f:09:
79:4a:95:a4:4f:16:a7:93:0a:b2:c6:58:78:67:1c:
d1:a9:9b:0a:24:be:27:92:e2:40:c6:a6:9d:98:47:
17:9b:69:48:eb:65:33:fc:eb:00:eb:e0:5d:50:58:
32:43:1a:5b:96:1e:bf:e2:94:b8:41:1c:d9:ea:db:
da:e2:06:d0:e6:93:8f:ca:85:cf:b6:ec:5b:76:b8:
78:4e:96:77:4b:48:f8:4e:2f:43:56:83:34:d5:f8:
7d:6d:54:74:91:bd:ae:f2:f9:5e:c1:1c:4c:71:30:
97:14:f9:13:3a:8e:a7:4f:86:44:1d:67:0a:bb:4d:
b5:c2:12:e7:08:ec:f9:e7:71:2b:87:e7:fa:88:b1:
80:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:8E:8C:38:B3:99:F2:C5:BF:92:66:25:C2:E6:58:33:F3:40:93:18
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:5c:63:73:b8:7c:13:d7:e4:2a:8d:57:cd:d8:39:c6:5e:21:
21:e1:1e:d8:8e:0e:a3:9e:c6:48:68:0b:85:cb:99:0e:0c:7b:
6e:08:65:8c:49:77:b1:a5:9c:bf:fe:e2:e2:1c:66:8f:d5:8a:
a9:82:e3:9f:05:c1:0a:52:84:db:81:ce:4d:00:81:be:5d:7c:
13:d9:05:7b:e8:70:30:99:a7:ad:3a:96:fc:a2:ff:66:9c:d6:
7d:95:61:dc:ae:14:fb:2b:6e:2c:2d:ab:c2:96:ff:be:84:00:
df:ce:e5:84:b3:91:8b:aa:4b:89:dc:a1:f1:70:c8:91:3e:c3:
a5:72:44:3c:ae:41:10:90:68:ab:d9:c3:e8:b4:fc:ce:b3:95:
c4:0a:90:fb:dc:e7:25:0a:65:db:52:e2:cd:b9:85:4e:e1:ae:
ab:c8:7f:00:ae:01:3a:bd:61:0b:09:00:72:dc:0b:6b:8f:41:
cf:5d:be:e2:c6:cf:2c:5b:b5:c4:71:ad:bc:21:12:5e:e7:5e:
04:3b:9d:70:53:b9:9d:c9:36:53:0e:22:26:67:c3:d1:44:e5:
c1:56:44:e7:27:6b:d2:da:c7:0d:7d:1c:f0:58:44:2a:74:63:
1b:14:02:e1:21:97:82:87:fa:41:3f:27:1e:08:da:8b:ff:87:
a6:b2:2a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 07:41:50 2025 by rpki-client