Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: eVgn60qmRtJhCebqaMlfylSef8S1Iqn4N1t8z9FrjBI=
Subject key identifier: D3:D4:E0:48:FC:74:77:8A:73:BA:AD:CC:8C:B2:B2:8F:B5:F8:EB:06
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 0196A3C0ACB65DEBF1317D5265ADF6296A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 1527
Signing time: Tue 06 May 2025 04:00:35 +0000
Manifest this update: Tue 06 May 2025 04:00:35 +0000
Manifest next update: Wed 07 May 2025 04:00:35 +0000
Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: o3GVszSCfqPT1GG8xz2aJR2WFXCZt8lIW8FwtJQc/08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:c0:ac:b6:5d:eb:f1:31:7d:52:65:ad:f6:29:6a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: May 6 04:00:35 2025 GMT
Not After : May 7 04:00:35 2025 GMT
Subject: CN=d3d4e048fc74778a73baadcc8cb2b28fb5f8eb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:69:b3:3f:7e:35:73:d7:bb:7e:e3:59:3e:dc:
48:21:3e:30:61:25:3d:1f:5b:0d:c8:2b:b1:39:9d:
b8:27:e8:ba:16:33:5d:3d:e3:eb:36:da:18:a1:5a:
a7:e4:a9:2c:05:07:88:45:ba:a2:e1:06:79:5e:50:
b6:0d:16:25:6f:6d:45:af:69:31:0c:39:bd:09:d0:
22:7a:35:39:56:23:d1:67:53:6b:4b:56:c3:bc:a5:
b5:17:c5:02:0b:7c:c2:a4:07:d6:73:a9:70:e6:66:
71:9f:0e:13:36:9b:2b:4e:04:00:e8:ed:ef:49:df:
94:c9:0e:af:85:ae:76:5a:c9:7e:a8:40:be:0f:e1:
a2:44:71:34:b6:a2:48:21:39:11:e5:73:e2:09:0a:
1f:f1:67:24:a0:e7:6f:23:d3:f6:21:5e:05:aa:58:
1a:fc:17:11:4e:ed:75:0e:4d:5a:b9:a8:c3:d3:12:
1a:a2:39:42:56:3f:21:2c:62:97:56:d6:20:6a:2e:
31:df:e4:ed:29:1a:ba:d8:f6:8c:97:11:36:3b:d5:
67:df:90:71:f0:d0:9a:d4:7e:64:4a:40:9c:26:46:
cd:e5:a5:36:38:6c:56:f6:6d:74:35:7d:73:46:fd:
97:f1:06:a8:5d:95:8e:23:5a:2d:28:28:4a:fc:04:
61:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D4:E0:48:FC:74:77:8A:73:BA:AD:CC:8C:B2:B2:8F:B5:F8:EB:06
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:e0:4e:a2:ee:57:0a:11:b9:36:ca:76:73:1b:f4:9b:fa:af:
59:8c:35:ba:bd:1f:5c:d1:63:24:d5:f4:24:8b:f0:57:f7:08:
95:20:2f:e3:33:c0:2b:e6:a1:06:f7:d0:a3:5c:69:47:5a:c0:
79:26:91:53:19:ab:e1:d3:fb:41:63:97:4e:fc:da:40:05:0c:
88:53:d7:94:d7:d2:aa:8e:dd:27:e0:24:82:19:94:2e:6e:fc:
5c:1a:99:22:f7:1b:02:6a:06:3c:7c:88:ab:6b:6f:ca:47:16:
17:83:12:55:10:0d:f4:11:91:28:e1:95:b4:5b:3e:ca:48:25:
bd:2b:71:6a:ea:ad:1b:29:33:fc:08:28:c1:04:b0:39:18:dd:
2e:d6:05:60:28:8e:0c:91:d3:4d:18:af:d4:a3:66:eb:44:70:
e8:9c:69:6f:5a:03:80:71:df:ea:2d:05:a0:60:f9:29:a3:73:
da:9a:ee:db:eb:d2:28:71:4d:27:5f:34:f7:98:a2:fe:b1:17:
85:e6:12:6a:a6:85:c7:e7:c1:a5:a0:a8:fa:fb:67:10:fb:73:
13:10:28:59:26:2f:e5:90:d1:61:31:81:be:2d:e5:13:74:7d:
7d:8a:98:b7:4a:d8:b0:32:ab:96:7f:79:69:22:0a:4f:90:b3:
16:6e:2b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 13:22:49 2025 by rpki-client