Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
File: ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft (raw, json)
Hash identifier: DwXBcUP0FiPb4xP+uiwz0y0sFZ+AQm8MXdRNFeSmN2M=
Subject key identifier: 0D:A4:DE:20:D4:BE:7D:BD:81:D7:F9:1A:C1:7C:F1:F5:E7:93:9C:A3
Authority key identifier: 65:A0:7D:49:24:68:22:8A:A3:06:A6:6B:05:6A:02:28:C5:52:EC:5C
Certificate issuer: /CN=65a07d492468228aa306a66b056a0228c552ec5c
Certificate serial: 01967DC6738DFA1025C07AF79F42992148BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
Manifest number: 0C28
Signing time: Mon 28 Apr 2025 19:01:19 +0000
Manifest this update: Mon 28 Apr 2025 19:01:19 +0000
Manifest next update: Tue 29 Apr 2025 19:01:19 +0000
Files and hashes: 1: ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.crl (hash: RebJA5ARtXU8deJodATjIWwK13la8IxnI6OdmcPA2cA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c6:73:8d:fa:10:25:c0:7a:f7:9f:42:99:21:48:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a07d492468228aa306a66b056a0228c552ec5c
Validity
Not Before: Apr 28 19:01:19 2025 GMT
Not After : Apr 29 19:01:19 2025 GMT
Subject: CN=0da4de20d4be7dbd81d7f91ac17cf1f5e7939ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:57:94:d8:84:2e:3d:af:49:41:5c:81:c4:f6:
64:7a:ed:ed:eb:e1:97:c0:8f:02:0e:d8:ca:7a:ad:
21:4d:47:4e:40:ea:22:92:f2:bc:2b:5e:5f:6a:ca:
4e:96:1e:d3:64:2d:35:0a:da:c5:9a:4f:4f:f3:1b:
6f:3b:70:92:10:3d:a2:21:8c:39:b4:b1:71:41:12:
3c:13:89:c3:b6:db:10:ad:ce:c5:15:fa:47:32:f3:
19:4d:7c:be:73:9a:90:e1:e0:57:ac:40:98:1c:75:
8d:f0:cb:98:98:22:9c:56:cf:37:db:ad:07:4f:e3:
d7:0b:4a:aa:38:23:69:23:3d:40:8e:39:0f:af:66:
c8:39:ca:62:21:0a:58:06:93:b2:6b:a0:7a:b9:46:
2a:94:0a:c3:fd:79:3f:8d:5b:db:45:6b:31:44:1c:
24:69:c6:3b:42:c0:dc:63:14:b3:f6:70:2e:f3:a7:
5a:75:1b:27:27:cc:f6:5b:5a:25:0b:02:90:bd:a4:
bc:2a:bf:f8:39:b2:ab:56:43:d9:80:da:ae:1e:90:
fe:e1:f9:d6:ac:ca:b4:89:e9:22:64:4e:bc:61:7c:
36:c4:60:7e:12:90:39:4f:b4:1d:94:f5:4d:c9:76:
55:1d:c0:a1:a3:11:a7:b0:c0:e3:4c:6e:bf:d5:ab:
9c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A4:DE:20:D4:BE:7D:BD:81:D7:F9:1A:C1:7C:F1:F5:E7:93:9C:A3
X509v3 Authority Key Identifier:
keyid:65:A0:7D:49:24:68:22:8A:A3:06:A6:6B:05:6A:02:28:C5:52:EC:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:fd:4a:22:05:57:fc:b5:89:49:d6:5c:30:87:26:b3:b2:02:
b3:e8:6f:43:de:78:b9:44:97:96:f7:2a:f6:1a:6a:1f:4f:55:
74:2e:89:28:ce:52:fa:39:fc:3d:23:f0:a3:22:aa:16:0c:ea:
37:a9:36:a7:5d:f8:b9:f3:54:8b:6f:7b:9f:c8:2a:43:cc:02:
5b:af:8a:b5:e6:99:3a:c1:d5:94:fa:f0:7d:e9:fa:f7:2a:60:
f1:ae:cb:89:2b:98:ff:fd:06:b0:70:d3:25:91:31:5d:2e:b7:
ca:9e:79:c0:83:5e:f8:0b:a0:2a:63:14:53:ed:3a:94:4e:5a:
f3:cc:13:ca:d3:59:c4:a4:86:bd:90:59:fa:9b:47:d8:10:2d:
72:fd:51:21:3e:b5:18:c4:68:3a:3e:76:81:8e:df:12:89:75:
df:db:e8:ae:6b:54:d9:9b:4d:fc:e8:51:7a:d9:03:ff:6f:49:
3c:55:c9:01:8b:36:be:c1:0e:cb:e5:60:40:01:ed:13:94:14:
cc:96:63:3f:15:42:79:83:d3:f5:0a:fd:2f:93:7c:12:93:28:
c8:ae:ea:4b:65:66:d0:8c:bc:d5:c0:e2:bf:4e:a2:fb:ee:ca:
ad:07:64:75:50:82:64:39:64:4b:a3:4c:4a:d8:a0:63:0c:15:
30:ce:15:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:40:40 2025 by rpki-client