Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
File: ZpDQciFADjewHnSnEvrnxtcDFZU.mft (raw, json)
Hash identifier: WLGw92RMNa4k8zZwrGEgslgI2ZPg38J1KQrk3D9YPmI=
Subject key identifier: 1C:DD:FF:5D:90:AD:21:93:DC:62:F6:44:4C:68:6F:C8:D5:AC:65:AB
Authority key identifier: 66:90:D0:72:21:40:0E:37:B0:1E:74:A7:12:FA:E7:C6:D7:03:15:95
Certificate issuer: /CN=6690d07221400e37b01e74a712fae7c6d7031595
Certificate serial: 0196756792CC7131FFF9925D73B60510A308
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
Manifest number: 0FBC
Signing time: Sun 27 Apr 2025 04:00:44 +0000
Manifest this update: Sun 27 Apr 2025 04:00:44 +0000
Manifest next update: Mon 28 Apr 2025 04:00:44 +0000
Files and hashes: 1: ZpDQciFADjewHnSnEvrnxtcDFZU.crl (hash: 2gsDuD8SlEleklz/DuD/kA4hsQy4CNQD2JEA7/+9Qm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:92:cc:71:31:ff:f9:92:5d:73:b6:05:10:a3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6690d07221400e37b01e74a712fae7c6d7031595
Validity
Not Before: Apr 27 04:00:44 2025 GMT
Not After : Apr 28 04:00:44 2025 GMT
Subject: CN=1cddff5d90ad2193dc62f6444c686fc8d5ac65ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fa:e7:73:10:31:34:84:03:18:52:5e:5f:d8:
30:7e:72:cc:cc:84:1e:bb:c4:91:d3:f8:84:05:5d:
22:b0:e3:35:ba:5f:77:b6:8c:1d:b9:bc:16:85:52:
16:38:57:dc:84:ec:ec:91:a5:5e:1a:c3:3d:e3:7c:
b2:3f:fb:e0:c5:fc:ec:60:69:27:9f:a1:21:c8:56:
33:2d:ab:5f:a9:8b:cb:08:2e:36:23:ff:03:6f:6c:
56:5d:7a:da:b6:c5:6f:1c:c6:74:6f:6d:4c:55:b3:
d7:10:1c:19:1e:98:7e:b4:3f:e1:65:f2:79:1f:e1:
ac:79:40:88:13:93:a5:63:7c:f2:1d:85:7d:4a:27:
12:62:71:5a:9c:ec:7c:b0:ba:f1:55:76:7b:2f:82:
f8:24:90:df:fa:21:57:72:90:eb:39:7b:f6:34:c6:
c7:9b:b6:f3:05:c1:03:d4:8b:e7:3d:a2:c2:9e:19:
8f:83:db:62:b5:77:86:19:a0:c4:cd:54:c3:bd:54:
3d:26:18:db:40:10:01:0b:97:f2:70:83:5b:ff:24:
57:99:2c:e7:fa:7a:49:c3:fe:e1:74:77:8d:f7:cc:
c3:d7:bd:f2:fc:cb:5c:cc:e2:f6:e3:8c:1d:09:04:
88:a5:8c:bc:3e:66:05:a3:c3:df:5b:8b:53:0f:82:
4e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DD:FF:5D:90:AD:21:93:DC:62:F6:44:4C:68:6F:C8:D5:AC:65:AB
X509v3 Authority Key Identifier:
keyid:66:90:D0:72:21:40:0E:37:B0:1E:74:A7:12:FA:E7:C6:D7:03:15:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:1b:63:4e:24:26:60:30:d4:04:0b:0c:bb:1d:1a:c4:27:88:
5a:d3:74:13:1d:4e:d4:6a:23:40:7b:43:89:5d:3e:a0:37:bc:
8b:a5:71:c0:6d:a1:53:7f:08:78:6f:68:17:b4:a4:b0:b9:0c:
55:64:e4:bd:2d:18:7f:c2:5c:dc:57:9b:a4:c5:9d:c2:ad:6f:
34:8a:00:f0:2b:28:ee:2f:a4:fa:d7:39:0d:14:f6:fe:ff:a8:
77:be:96:e3:74:97:9d:62:63:8d:8d:e2:6d:1a:de:f9:39:cd:
48:0f:6b:aa:02:a0:b8:bf:bb:9f:7b:fa:2b:c1:df:67:e6:79:
c8:7c:9c:e2:84:f4:d6:33:af:b1:c3:55:7d:9b:d1:06:7e:40:
38:6d:9f:d3:d8:13:14:ef:ca:fe:8b:f4:4a:4c:2e:d4:83:42:
1f:aa:63:15:ec:a2:5f:35:73:9b:bf:85:3a:ee:57:df:55:ca:
1f:fc:aa:ca:59:9b:a1:ef:1d:5d:d6:fe:c3:e4:ee:50:e6:da:
8d:b3:e9:ce:f9:6e:31:22:d0:92:99:33:71:04:46:2d:9e:a3:
6b:6a:25:3f:40:17:20:b2:13:a8:58:16:7d:4b:54:50:18:9f:
79:f3:62:56:32:30:07:39:c7:b1:f9:e2:de:c4:1c:97:f1:a4:
77:25:12:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:54:53 2025 by rpki-client