Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json)
Hash identifier: K63spuvlGG+gvliCHN2SkZLCJyY15ZwIdiV0sojEyhg=
Subject key identifier: 15:6A:12:95:2D:AE:05:7C:C8:D5:10:B7:3B:5D:18:F5:14:B9:FE:19
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 0196759E749E1686782C5068340AAB9E4189
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
Manifest number: 14A0
Signing time: Sun 27 Apr 2025 05:00:40 +0000
Manifest this update: Sun 27 Apr 2025 05:00:40 +0000
Manifest next update: Mon 28 Apr 2025 05:00:40 +0000
Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: 3KzStDuz9nW7aWLC6g5fnWVfJzqG/4qRfqEZ9UggEzs=)
2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:74:9e:16:86:78:2c:50:68:34:0a:ab:9e:41:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Apr 27 05:00:40 2025 GMT
Not After : Apr 28 05:00:40 2025 GMT
Subject: CN=156a12952dae057cc8d510b73b5d18f514b9fe19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:97:75:e6:70:81:28:95:1d:da:54:08:1f:
83:05:72:24:1b:d9:ac:69:f5:fe:fb:00:ce:d4:04:
ff:06:26:0a:5d:d5:0c:57:74:59:ff:6c:e0:83:a1:
a2:d1:2e:70:3a:b4:41:5f:ad:94:c5:de:6b:2a:b0:
8d:dc:e8:6a:aa:76:bd:f2:40:2f:ca:a6:41:35:3e:
f2:00:17:1b:4e:f5:f7:f7:f5:d8:70:93:ef:36:ab:
22:30:94:00:36:7d:1f:34:fb:ed:02:6d:04:3d:ac:
40:e8:3d:bb:f6:e2:b7:3f:6b:48:dc:ec:bb:91:ec:
75:1c:26:fd:e7:19:09:f7:c2:a1:bc:5f:f4:85:21:
a5:04:11:48:c5:07:ca:84:eb:03:dc:12:07:ce:24:
f5:78:6e:b2:ff:64:db:d1:90:96:0b:54:ec:57:fc:
91:e7:83:71:d8:1e:1a:7f:19:96:9b:65:02:2f:36:
8e:68:95:d7:15:3d:13:d9:2c:51:b3:00:3f:2e:f4:
62:54:b8:63:66:02:90:88:08:dc:4d:62:9a:b7:07:
8c:81:27:86:f5:6f:80:a8:ca:e9:b1:ee:46:df:83:
c7:00:d2:41:2d:45:5f:8f:59:59:61:1f:a5:03:f3:
34:77:26:d9:e3:10:06:cd:ff:10:4b:aa:c1:ed:50:
a5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6A:12:95:2D:AE:05:7C:C8:D5:10:B7:3B:5D:18:F5:14:B9:FE:19
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:95:9e:9f:71:9a:e3:0a:f9:ea:8c:ee:b1:03:12:44:05:1d:
b2:0b:2d:d6:b5:eb:34:e5:2f:79:dd:8a:fd:6b:c7:a5:06:db:
0c:39:11:e1:33:fd:cc:c4:b9:cf:dd:9c:a8:9f:86:e1:ae:95:
1f:51:f1:c7:3f:7d:30:b2:68:ed:e1:5c:b3:e3:a5:92:2f:dd:
35:84:3d:5f:39:dc:77:45:3e:f5:e9:17:b9:3e:ab:66:42:53:
52:33:18:40:3d:89:71:b6:15:11:62:4a:66:a3:f7:a4:1d:5e:
58:d5:39:ad:26:6d:a3:2f:ce:45:1d:16:60:df:6a:d8:0a:5d:
fb:b8:7f:36:00:03:38:68:c9:cb:c2:ff:bf:50:48:3f:c2:3d:
e2:2a:c7:1c:59:4a:46:16:aa:66:1f:c5:8a:4c:de:61:28:9f:
0e:cb:a2:24:bb:5f:71:09:42:1f:7f:aa:1c:98:3c:ea:3b:96:
01:65:f3:a9:0b:ad:11:96:79:61:38:1f:d8:c3:e9:43:42:ef:
18:72:c7:45:22:c3:cb:e5:94:7c:70:26:c9:75:dd:12:e9:f8:
ab:72:56:0a:5e:2c:a1:d2:ca:1e:f4:ad:aa:91:27:3e:0c:18:
6f:1a:94:4a:d5:d9:7c:9a:0a:15:bd:4e:cf:b2:ab:6c:25:58:
f3:51:39:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:31:25 2025 by rpki-client