Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: cSGp1vVKsvzpWed4mpRhjRKuC7/yhHGlTaFKfbQRF4A=
Subject key identifier: 6D:DB:F8:A0:74:42:CB:E3:E3:02:61:8C:96:55:B2:A4:22:AE:CB:4F
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 019676E8110F74E1445CDE131386C71B6B05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0B24
Signing time: Sun 27 Apr 2025 11:00:42 +0000
Manifest this update: Sun 27 Apr 2025 11:00:42 +0000
Manifest next update: Mon 28 Apr 2025 11:00:42 +0000
Files and hashes: 1: IyubcYm7YNGoTHG6Zyl3Cm2IkRw.roa (hash: 4lmGSbybL+9qT7cvm7erjsIQir7v2NPime1p2riEn1k=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: VRx505lhHujPewOf4rX3I4kN0AHuwK5sdjvvl+PxRyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:11:0f:74:e1:44:5c:de:13:13:86:c7:1b:6b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Apr 27 11:00:42 2025 GMT
Not After : Apr 28 11:00:42 2025 GMT
Subject: CN=6ddbf8a07442cbe3e302618c9655b2a422aecb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fa:50:60:62:6d:dd:45:ee:6b:aa:63:06:75:
71:9d:a3:bb:0b:f8:59:91:c1:ce:04:6b:b7:a5:19:
cc:67:ef:61:41:c3:b4:67:0f:1d:f7:fb:18:e0:5f:
10:9f:34:ef:88:a2:35:04:10:25:31:61:47:7c:cd:
7d:c5:cb:88:d8:f5:7a:34:7f:9b:23:d2:ef:4f:32:
5d:cc:0d:29:ba:fd:3e:c7:21:78:56:f7:a7:4c:45:
cb:32:bd:ac:74:e8:c5:ec:b9:0a:02:61:f8:42:5d:
a9:18:cb:3c:e8:b6:63:42:a5:57:4b:04:3f:13:00:
11:ef:b1:09:2a:e7:0f:86:ba:95:0f:ee:ed:6e:83:
64:7f:aa:5e:b8:fa:b1:59:1a:8e:55:d2:3d:5b:3f:
54:29:ab:d3:35:5a:46:f8:42:37:84:f6:cc:75:73:
73:6f:a2:f2:48:84:46:2b:cc:03:21:49:4e:98:29:
ba:53:ee:5f:5c:0f:8d:a9:77:31:70:15:51:15:04:
fb:86:44:54:87:e3:d6:bf:d6:e3:54:a9:66:a9:e9:
74:fc:db:e0:d1:f8:96:a6:a5:da:a9:e4:c1:eb:93:
a1:fc:3c:26:29:47:b8:e4:9c:d2:e2:49:b3:f6:b6:
53:9f:85:dc:a8:7f:3b:9d:33:7f:ec:d0:9c:50:fc:
70:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DB:F8:A0:74:42:CB:E3:E3:02:61:8C:96:55:B2:A4:22:AE:CB:4F
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:d6:7e:e6:06:9d:b3:75:d9:d4:89:69:77:5f:18:fe:94:19:
6a:a8:64:7c:54:1f:f9:2d:02:a2:4f:45:47:91:f8:e7:12:94:
4b:7d:a6:a4:82:c6:85:7b:1a:a4:c4:14:51:70:85:0e:94:c2:
43:8c:90:e8:fd:52:17:3f:3f:4f:87:18:d3:d0:a8:ee:73:6b:
27:6a:22:fa:2e:79:cc:e6:9f:05:17:e6:dc:f8:34:67:bd:b3:
15:94:1c:a3:94:1f:a6:ad:31:d3:6d:0a:c0:31:04:3d:61:08:
66:c7:65:e4:44:01:20:ef:4a:ca:45:cf:23:fd:c8:f4:07:b2:
8c:e9:6e:a3:d6:38:b5:f3:02:ee:43:ea:61:9e:8b:42:99:5b:
4d:61:d3:16:b1:65:13:2e:ff:f6:f1:95:9f:26:a7:cc:7f:c0:
cf:ae:e4:74:ca:49:e0:fc:51:d3:18:1b:7b:ea:ce:50:d1:f7:
bf:6a:cf:e7:0a:6d:b0:dc:32:52:3b:8e:ec:b9:f1:cf:a6:19:
94:e6:40:0c:b2:3d:4a:4b:20:83:5e:f2:51:39:01:3e:1b:1c:
07:75:28:12:5e:94:90:f0:3c:40:6e:63:af:3e:42:0d:a9:51:
82:fe:30:24:cf:36:d0:1e:2f:d5:63:b7:6d:39:67:30:1c:7b:
9c:da:7b:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:17:04 2025 by rpki-client