Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: utCWuVALEy/h4UjS3NZpLh6LeK18wpu2gTSTWpVkde8=
Subject key identifier: 7E:CC:BE:C9:64:57:A3:DD:7E:6B:F0:E6:12:04:B9:15:51:8A:16:29
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 01968134AEC391423C96CBB0D852ADAFB1B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0BF9
Signing time: Tue 29 Apr 2025 11:00:35 +0000
Manifest this update: Tue 29 Apr 2025 11:00:35 +0000
Manifest next update: Wed 30 Apr 2025 11:00:35 +0000
Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=)
2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: iVTnXJzQPD+ysBm93FMZtSN9QGDEyNtzmSAfnXCbAUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:ae:c3:91:42:3c:96:cb:b0:d8:52:ad:af:b1:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Apr 29 11:00:35 2025 GMT
Not After : Apr 30 11:00:35 2025 GMT
Subject: CN=7eccbec96457a3dd7e6bf0e61204b915518a1629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fc:ad:56:9f:78:ed:5a:0a:a3:4f:a2:e1:7f:
d3:45:5c:d6:24:d1:13:b1:2e:b8:1e:89:a1:9e:c3:
5b:68:1c:3a:c3:6e:26:33:b0:4b:9f:3b:91:7b:b0:
98:90:1a:78:aa:93:1b:2e:5d:19:cd:69:5c:55:f7:
89:92:b3:19:0f:66:03:85:4a:e7:11:68:af:86:b5:
83:51:12:ba:7e:0d:30:e7:a2:00:a3:ac:4a:1d:6f:
ff:1c:f6:f1:8d:9b:1e:27:13:68:51:b2:2b:fa:db:
e0:5c:9e:cb:a4:eb:a4:88:0e:87:cb:b0:3c:44:f3:
01:f4:95:19:f5:56:c9:2b:f8:b6:03:86:28:c6:3f:
a8:88:56:40:dc:64:4e:33:5f:36:9a:e4:4c:43:65:
63:45:63:a7:b3:e7:0b:17:64:09:48:92:8a:c0:57:
c2:13:ef:0e:34:9c:a8:9a:5b:27:b3:67:fc:a2:42:
87:39:28:53:0d:48:e5:46:b2:c6:17:9e:92:a6:ac:
a0:7f:f2:8c:2b:56:87:b5:bd:31:66:a2:8c:aa:01:
5c:bb:7d:24:c2:7d:12:74:7f:7f:71:cb:df:41:79:
08:f1:cc:10:b1:c9:c3:c8:d9:69:d3:76:dd:e1:5b:
35:57:fb:4a:7f:ef:18:5f:a2:aa:31:69:1d:2c:82:
e1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CC:BE:C9:64:57:A3:DD:7E:6B:F0:E6:12:04:B9:15:51:8A:16:29
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a9:82:94:05:7c:35:2d:00:24:9b:16:81:52:7b:c4:bd:bc:
fd:da:20:b2:e3:06:a7:6c:b5:d8:53:b2:f2:47:6e:52:aa:09:
b2:4c:83:65:49:85:c3:75:91:fe:b7:cd:d2:9a:9e:3e:fc:e1:
4d:57:44:69:e5:31:9d:bd:25:84:aa:92:1c:c5:79:a4:e8:68:
72:32:f6:2e:b6:cf:84:d9:c3:4e:89:51:5a:69:68:0c:7c:fe:
58:14:27:c6:a9:9c:9f:74:68:f4:6f:af:73:a4:f0:12:7a:1b:
b4:1a:07:e9:97:29:5f:42:0a:87:73:1c:fb:5f:59:18:e6:7c:
3b:41:c5:c6:5b:03:03:ec:c8:99:c6:d6:2d:a6:2e:13:7d:96:
88:20:05:6b:57:9a:1d:82:57:24:db:4b:47:c1:72:4b:96:17:
2a:3f:ad:92:05:22:2b:f8:e2:d3:f2:4e:45:ca:7b:12:82:56:
3b:fe:9d:d9:ef:2a:d6:e1:40:8d:68:87:dd:80:27:a9:d1:8c:
ee:74:67:bc:21:72:bd:7c:33:09:a1:21:10:e7:55:a6:cf:a3:
ee:39:77:1d:e8:70:27:24:d8:f5:c2:6b:7c:aa:70:bb:77:28:
22:d2:2b:90:f0:f5:03:d0:2b:82:f7:e8:3e:cb:8f:a9:27:93:
99:43:14:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 14:35:51 2025 by rpki-client