Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
File: ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft (raw, json)
Hash identifier: 6QGv0mvSXQcdJ1fd6exLczpNGgKOLRTTNNcigoyTTXs=
Subject key identifier: 14:ED:3F:54:91:18:35:54:29:8E:F1:CD:94:6C:84:7B:99:55:AB:A3
Authority key identifier: 64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
Certificate issuer: /CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Certificate serial: 0196BC3719DC38F5B9A4562127A98C212034
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
Manifest number: 153A
Signing time: Sat 10 May 2025 22:00:49 +0000
Manifest this update: Sat 10 May 2025 22:00:49 +0000
Manifest next update: Sun 11 May 2025 22:00:49 +0000
Files and hashes: 1: 77Lxszm6b67-RSjepR0C23JG5dI.roa (hash: 9Xm4YAYAAgADPugT2wEGkyXGaEUt/FjBjGPJ5p3nqlw=)
2: ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl (hash: rW479mIKJRAE21QQlo9BTHeD+AUsgfCJ8cWmhCyXU0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:19:dc:38:f5:b9:a4:56:21:27:a9:8c:21:20:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ef98adbf42d5bacd24cadb0adf092c4576daf3
Validity
Not Before: May 10 22:00:49 2025 GMT
Not After : May 11 22:00:49 2025 GMT
Subject: CN=14ed3f5491183554298ef1cd946c847b9955aba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fa:ea:ef:b7:6c:46:a5:87:cd:5f:84:ff:ec:
79:ed:71:de:45:82:25:5a:56:81:86:78:05:b8:54:
32:fe:53:6c:34:46:82:26:7e:35:3a:6b:69:8c:b4:
11:00:35:08:c6:99:85:f6:ba:e1:e6:d4:24:e0:0d:
d5:6e:c0:51:4e:98:8c:74:70:66:35:b2:1e:66:32:
69:71:03:c8:80:3b:d7:08:f9:06:2d:ac:dc:29:0f:
d7:91:1b:e3:18:26:22:e0:5d:b6:64:8e:06:9f:0a:
96:cf:e1:14:05:8e:bb:c7:e1:4f:f8:63:ca:a6:80:
46:ad:f9:f5:e8:6e:6f:d8:86:4a:5d:b7:87:23:ab:
c2:34:48:bb:7c:4b:29:f6:75:ee:78:59:ca:d2:1f:
5f:7a:80:74:c2:6c:84:61:91:f9:a6:d8:2c:40:59:
d7:ab:1c:af:49:f0:af:85:c3:bc:b1:9f:2f:de:bc:
78:8e:18:6e:35:db:4c:78:6a:93:2b:ec:d2:3b:53:
14:66:39:ff:5d:f0:45:b5:af:29:28:13:96:46:d0:
49:fa:a3:e3:13:89:4a:92:b5:f6:2e:d3:0d:9e:bd:
80:88:2a:8d:60:2d:bd:c7:d9:9a:c6:63:69:df:ec:
de:f6:e7:07:41:0f:f1:ad:58:4f:25:dc:a6:68:3d:
f2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:ED:3F:54:91:18:35:54:29:8E:F1:CD:94:6C:84:7B:99:55:AB:A3
X509v3 Authority Key Identifier:
keyid:64:EF:98:AD:BF:42:D5:BA:CD:24:CA:DB:0A:DF:09:2C:45:76:DA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO-Yrb9C1brNJMrbCt8JLEV22vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e49bc5-68c5-4ce2-a9b9-03c6feaf1d9f/1/ZO-Yrb9C1brNJMrbCt8JLEV22vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:6d:63:4c:75:26:94:13:c3:35:8e:00:3c:dc:f1:98:96:0b:
b4:cd:9a:ce:f3:de:5f:a7:40:f5:d4:3c:32:a7:21:c4:6d:53:
13:c6:60:e2:67:29:c0:af:82:56:50:f3:b9:f3:d4:0c:fc:5c:
76:2b:2e:cb:31:8e:8d:7d:05:5e:39:12:a9:5f:0b:cf:99:94:
70:4f:fb:cc:b6:41:50:bc:9d:06:24:45:df:31:7e:c0:4f:84:
d7:3d:88:62:48:5c:4c:23:02:2e:11:a4:00:b2:0c:a2:22:ab:
be:c4:7e:44:d5:d0:77:55:ac:75:0b:63:96:11:bb:da:6e:82:
36:1f:c6:09:6a:7d:5a:6a:af:e2:55:c0:e8:c0:16:e6:72:c6:
db:15:84:b9:39:4c:f0:b6:db:41:41:1a:d2:2a:7a:a9:e3:b7:
16:fe:b5:84:57:50:b0:72:d2:04:3b:18:aa:9f:2c:9c:c7:17:
9a:45:03:61:24:64:14:c1:70:d8:1d:1c:05:20:48:b4:e0:81:
eb:24:7f:cd:76:99:01:58:70:06:bc:f2:d0:d7:1d:20:da:ac:
e8:c9:a7:73:71:8c:08:81:aa:b4:5a:7c:72:27:26:52:1f:ba:
f0:e5:98:df:25:3f:8a:b0:ab:97:f3:9d:fe:48:3f:76:98:3a:
36:c9:4c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:20:35 2025 by rpki-client