Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: N7fkkbz67NF/CRQTetY7lJv5Ev7PQ/6r6Dl7Q06apHE=
Subject key identifier: 2F:16:6F:23:A8:19:60:6D:B2:64:B3:C2:C2:42:4A:6D:8B:34:2C:04
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 019679E9DC55E4B3043958895774106BC89C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 1512
Signing time: Mon 28 Apr 2025 01:01:31 +0000
Manifest this update: Mon 28 Apr 2025 01:01:31 +0000
Manifest next update: Tue 29 Apr 2025 01:01:31 +0000
Files and hashes: 1: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: +VzAzV4zbG23YLI1SYpBjwpcc/OtZx/3hgcZwwjJaj0=)
2: zwMZXsX6Z6y_GtPEpsaBS7FPtIU.roa (hash: bi378rHsH1o9Uq16RD7qe5x44q14EkwJzXLivtK1Naw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:dc:55:e4:b3:04:39:58:89:57:74:10:6b:c8:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Apr 28 01:01:31 2025 GMT
Not After : Apr 29 01:01:31 2025 GMT
Subject: CN=2f166f23a819606db264b3c2c2424a6d8b342c04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:16:7b:c5:12:c1:a5:75:59:08:a1:f6:e3:9b:
14:b8:ac:24:ef:35:67:0c:65:e2:34:f6:b8:89:15:
f1:6c:31:41:26:1c:c3:b9:0e:67:c6:b0:34:16:4a:
bf:6b:05:b5:cf:ce:b0:12:f7:39:2a:f4:9a:6c:57:
89:f0:06:a6:e7:5a:4b:1c:06:c0:91:37:33:1a:f1:
fd:2d:f1:df:25:4e:51:e4:4b:c8:41:9d:39:60:75:
2a:b3:0a:f0:00:61:72:19:9b:11:8f:68:04:f5:eb:
00:96:89:4c:31:c8:a8:2e:ca:fd:7f:a5:b6:3c:d3:
d1:dd:0b:24:22:5c:46:1c:81:63:ed:f9:18:bf:8e:
33:4e:f3:0b:0c:f9:e5:05:37:16:f0:4c:d3:ad:3d:
57:a3:40:03:f9:e2:69:3a:ee:02:91:1b:6b:87:47:
8c:4a:9e:fc:28:2f:d6:c4:66:ab:69:17:33:40:1d:
ca:92:13:05:30:d4:ef:0f:51:fc:0e:88:d1:57:06:
a1:4c:e1:63:92:16:c7:fe:c7:c8:cb:92:98:3e:29:
8a:e5:8e:19:21:d5:b3:0b:8f:52:d2:25:d6:55:b9:
9b:92:74:4c:5f:65:d6:14:e8:b4:1f:92:13:26:62:
f4:34:e7:4c:b2:96:d6:39:5c:2d:4a:fb:7a:c4:a3:
4a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:16:6F:23:A8:19:60:6D:B2:64:B3:C2:C2:42:4A:6D:8B:34:2C:04
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:86:eb:11:32:f2:f5:85:78:09:f6:84:e0:76:df:7f:d4:a1:
ee:9b:42:95:39:c3:41:59:80:3a:46:91:f8:10:73:c4:a5:b3:
7e:a1:79:f8:85:11:73:41:69:8f:5d:3a:6e:e1:9a:49:f4:72:
51:13:a5:e3:b4:3c:35:90:50:74:1a:1d:fc:8d:85:ad:54:48:
5c:4c:0a:73:4f:c5:67:6b:73:1e:d3:ce:66:cd:d5:87:bb:49:
5d:36:0b:91:80:b8:31:53:b5:00:ea:0f:43:1b:e5:15:53:70:
0c:30:d4:d2:c6:1c:25:f0:05:99:dc:61:9a:b9:ae:b9:17:51:
82:93:9c:c4:83:ef:4c:33:a5:28:45:5a:ac:c2:37:a6:ae:cc:
d1:b2:92:1c:34:c7:55:75:a2:29:53:2d:58:34:ad:c7:cd:0c:
ee:f2:a3:cf:a2:53:60:bd:fa:8f:81:d0:e2:65:5d:ec:cb:c4:
27:2d:cc:6f:8c:3a:07:67:9c:7e:40:e8:c9:96:97:80:b5:93:
34:eb:fa:43:f7:46:0f:86:3e:6c:e9:ad:07:35:a0:4b:29:fd:
eb:08:00:4b:78:92:ea:ad:1c:65:37:d4:8c:64:5d:5e:0d:35:
95:3a:55:bf:a1:77:f7:8a:91:25:19:df:0a:05:76:75:5d:1a:
3d:f6:0a:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:20:30 2025 by rpki-client