Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: eW6LzI82ITqP6gL76njBrsue9BDysG7WgC5klGD3uWI=
Subject key identifier: FE:C9:2F:51:05:7E:7C:76:E1:38:F6:BA:D5:32:DA:82:49:4D:34:A8
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 0196839134997A631A3D02ECE26ECC62CD23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 1514
Signing time: Tue 29 Apr 2025 22:00:53 +0000
Manifest this update: Tue 29 Apr 2025 22:00:53 +0000
Manifest next update: Wed 30 Apr 2025 22:00:53 +0000
Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=)
2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: 0IHFcWY9w/TZ7tS1DgtlQ9J7mbnmw0sV8XCEtIVHPAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:34:99:7a:63:1a:3d:02:ec:e2:6e:cc:62:cd:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Apr 29 22:00:53 2025 GMT
Not After : Apr 30 22:00:53 2025 GMT
Subject: CN=fec92f51057e7c76e138f6bad532da82494d34a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a5:41:45:b6:35:65:d5:27:a1:dd:3a:eb:bb:
e9:e7:f2:7a:42:d9:b0:e8:3d:a9:42:6f:c1:40:ae:
12:e7:84:4f:31:9d:95:2d:73:eb:d3:76:0d:fc:d2:
a9:fa:88:6e:66:e0:97:2b:1f:07:f8:10:c1:a4:db:
96:5c:03:94:79:a5:d1:e2:c9:c8:30:ee:68:be:f8:
bc:65:ed:da:15:2b:cf:41:f6:6e:bb:b0:5c:81:03:
c1:10:15:df:2b:ed:a3:79:50:44:dc:d0:cb:9e:ea:
81:b7:a7:0a:4c:45:b8:2c:33:83:7c:95:7a:ca:ba:
54:51:88:b4:7a:8c:aa:6d:a4:4a:c1:60:92:e5:20:
32:31:f0:ee:e5:96:a4:e0:bd:e9:86:3f:33:3b:ad:
e0:c8:d8:15:43:5e:83:2c:dd:cb:ad:a5:49:a3:ba:
3b:17:62:be:07:e8:59:65:77:56:0b:c6:f6:9e:c5:
ef:96:20:ec:66:f2:64:c9:fa:bb:b5:c9:40:8e:d6:
dd:a3:f7:10:77:8b:da:6f:71:af:11:fc:a3:39:44:
a2:89:4d:69:ab:60:de:7d:85:a6:15:1e:f1:66:80:
87:f1:0b:a4:2c:97:13:93:bd:07:86:5a:77:97:71:
9a:10:19:1d:bb:3e:61:59:ab:15:e2:40:ac:5f:5e:
8a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C9:2F:51:05:7E:7C:76:E1:38:F6:BA:D5:32:DA:82:49:4D:34:A8
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:27:31:3c:de:b8:4b:78:13:13:02:87:a5:30:35:8c:3f:91:
01:3f:3b:32:f5:80:e4:a4:d6:9a:2d:89:3e:b6:be:2e:d6:40:
3e:db:10:06:6c:8d:95:4d:7b:af:42:83:09:28:cb:46:52:21:
37:bd:7b:53:9d:3a:d6:d9:ce:87:c9:a0:86:dd:a5:7d:ed:70:
38:41:03:73:c6:48:85:8a:8f:40:9f:2f:7c:4d:44:93:d0:6f:
31:f0:42:7a:2c:53:c8:6d:fb:66:e2:0c:2e:8b:4a:f3:d5:9d:
5c:e6:71:ec:fc:7c:3c:35:7f:8f:6f:ca:da:35:d2:9a:6b:79:
ad:92:4e:b5:96:f5:a0:86:af:ca:10:b0:aa:3a:6f:86:25:a8:
ba:f9:48:6e:4a:fc:2a:aa:86:45:35:44:83:35:2e:2b:47:e6:
ff:83:71:2c:e0:0f:21:75:fb:ba:04:4d:0c:3d:33:f4:32:29:
7b:33:cb:1e:15:26:5a:53:19:a9:f9:63:4b:d8:65:51:e3:95:
1a:cb:b5:b0:f8:01:95:04:e9:c2:8f:b1:24:1f:98:13:2f:cb:
f3:83:77:4c:8a:8f:3c:dc:87:a4:ea:8e:26:22:19:43:96:c2:
f3:a9:28:ae:84:ec:56:50:9b:29:2c:1a:f1:ac:02:12:f8:0c:
2d:fc:4f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:25:07 2025 by rpki-client