Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: BY9nSDhCScAlmX+P6RMQ2jzYocg9P/vYoPN+DV61OM4=
Subject key identifier: CE:A7:C2:F0:00:92:C4:09:06:DE:4D:43:71:4A:B9:14:53:E2:EB:A4
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 0196722FE01BB7E85E43B9E6D2BF66146A6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 14A0
Signing time: Sat 26 Apr 2025 13:01:02 +0000
Manifest this update: Sat 26 Apr 2025 13:01:02 +0000
Manifest next update: Sun 27 Apr 2025 13:01:02 +0000
Files and hashes: 1: DnVFEpYRkYdsvx6fTEjYM0mnXYg.roa (hash: Q/XnpIbexx4X2BOItVZgFWxgUIF3KGLUNsRlADlMLPI=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: kqF17HRNwYZLdaRThRclNWMPGv2MYp2679zKxrHV7d0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 13:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:2f:e0:1b:b7:e8:5e:43:b9:e6:d2:bf:66:14:6a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Apr 26 13:01:02 2025 GMT
Not After : Apr 27 13:01:02 2025 GMT
Subject: CN=cea7c2f00092c40906de4d43714ab91453e2eba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:5d:77:0e:38:be:94:49:77:6b:95:32:c0:
81:8e:da:a3:a8:9d:bd:c5:6a:8d:6c:48:0f:fd:4c:
d1:0b:6d:e7:41:3f:72:0e:5d:ea:db:8a:d6:cc:a6:
48:31:f8:90:78:2b:6b:3f:9c:7e:0d:be:71:d2:c1:
5e:54:2e:95:70:b9:f2:2d:c9:75:a8:b1:b0:5e:9b:
c4:d1:9f:df:b2:91:de:93:2b:e1:36:7d:6b:0b:ad:
2d:fa:fd:a7:db:2b:01:49:06:3f:8f:f2:25:6c:4c:
ec:9b:1c:49:33:a8:d5:f5:10:d8:be:25:69:c8:44:
e7:f2:b6:58:af:5f:75:02:a3:27:2b:74:67:75:9c:
fd:23:d4:95:c6:5b:40:bc:e8:93:46:65:1b:c9:e0:
49:34:84:1b:83:7f:de:50:53:75:11:00:25:97:04:
61:5a:85:03:90:61:bc:70:41:fd:60:dd:2c:c7:54:
30:ac:cb:db:ce:4e:19:7a:67:7c:f0:f1:0f:ea:e2:
21:de:b6:e2:18:62:1d:4c:a5:fd:60:8b:06:62:d1:
11:5a:66:e1:a4:9f:b0:72:c8:38:2f:5c:46:e2:11:
fd:4c:d5:0c:dd:e2:d3:e2:09:7c:ea:9a:8b:35:90:
0b:90:11:1d:61:f7:d6:de:fb:4e:1e:6f:27:f7:60:
bf:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A7:C2:F0:00:92:C4:09:06:DE:4D:43:71:4A:B9:14:53:E2:EB:A4
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7f:23:21:11:7f:61:c6:78:1f:ef:86:33:2d:96:26:7a:ce:
d9:24:78:db:53:a9:63:51:86:d9:15:42:a8:87:ca:b0:74:72:
db:db:d3:e5:2c:b3:b1:78:8c:0d:ae:60:6a:74:fb:a0:c8:61:
ea:5b:65:53:4c:85:bb:19:5e:6e:10:00:20:3b:48:c8:ff:1f:
6e:fe:08:03:e3:54:cb:8b:0f:b5:87:52:7a:6d:2b:bc:0a:91:
0c:04:77:25:e0:3a:32:d9:f9:70:b6:16:05:f5:59:80:e6:e7:
a7:9e:b3:21:fd:cd:98:7c:77:d4:d4:2e:f6:f0:11:42:bf:83:
81:50:c3:0c:f4:b8:19:5a:97:53:5e:ee:82:be:ad:ea:0b:25:
66:2a:1e:22:d1:2c:10:63:39:db:0e:7e:2d:8c:ae:92:f9:b7:
b8:43:7a:69:15:79:4d:8d:52:d0:76:77:6f:eb:4c:4a:d5:26:
91:2f:f4:a5:7c:b5:d5:45:92:5f:3c:16:3f:06:56:ac:8e:1f:
28:e2:bf:ec:df:7f:85:38:46:9a:b7:4d:aa:0c:cc:b1:76:8d:
af:38:b4:de:c3:3f:39:b5:57:80:af:b1:0b:ae:e0:6f:f3:64:
96:a1:29:56:93:46:b4:4c:d6:99:7e:5f:5f:2e:76:72:d0:e0:
78:e2:65:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 22:57:27 2025 by rpki-client