Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: djfloU3rWRlOd6ZsXAAUl3SJY2Z88ZPFrED9ZWxm9QA=
Subject key identifier: 3B:84:08:CD:1D:26:85:D2:18:FA:B2:29:95:46:8C:5F:D0:9A:CE:0B
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 0196AB0CBE6F0C73AF910F90374623EFFDDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 152C
Signing time: Wed 07 May 2025 14:01:01 +0000
Manifest this update: Wed 07 May 2025 14:01:01 +0000
Manifest next update: Thu 08 May 2025 14:01:01 +0000
Files and hashes: 1: KWbEbWMWx8GsR8Asb1Hi7iVj3A8.roa (hash: w7QiyqZy99cacAStF09i7GMZP3QKH24tEZwntPEoeMs=)
2: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: bfo4xf6Kvf2RlBm8K2+/Ysk7lyOM2fxzAfC+BBJzRWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:0c:be:6f:0c:73:af:91:0f:90:37:46:23:ef:fd:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: May 7 14:01:01 2025 GMT
Not After : May 8 14:01:01 2025 GMT
Subject: CN=3b8408cd1d2685d218fab22995468c5fd09ace0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ab:a1:f2:43:d5:51:b2:4f:ba:49:be:9b:39:
af:98:36:db:ac:e3:cb:02:6e:47:52:db:d9:09:2a:
94:8e:c0:2c:8b:9f:eb:91:a7:be:95:53:cc:61:57:
ef:67:ab:0d:17:97:0c:a9:9c:41:58:c7:d3:db:94:
a4:6b:54:b9:00:6a:60:2e:17:05:d5:8c:52:df:6a:
49:60:b6:e9:f1:f3:42:ad:6a:38:14:d6:f0:b8:e1:
b2:43:aa:8b:74:7b:7a:a0:e0:54:8c:fc:7d:14:a3:
11:13:74:d1:74:6c:da:c5:92:60:94:dd:85:96:fe:
61:62:b4:d5:df:94:3f:85:83:cb:ab:82:9a:52:6d:
61:d5:bb:6c:e2:5f:8e:03:b0:0a:74:06:25:a7:61:
f7:cf:71:59:b2:b5:09:38:f0:a3:fc:7c:19:4b:88:
fd:1a:44:5c:44:d3:09:0c:7f:19:f7:49:e5:54:a2:
a3:bf:ee:20:7c:47:91:21:84:97:7b:87:78:cc:db:
81:e7:c9:66:44:02:5b:35:e8:94:f0:a7:d3:e5:64:
72:81:3d:89:01:ea:4e:8a:ba:3e:fa:b4:7d:6c:bf:
5b:60:68:fd:cb:40:eb:71:06:29:f7:fa:bf:ca:b2:
ae:3c:88:61:c4:18:9c:7a:23:fc:ab:27:f3:0b:22:
ee:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:84:08:CD:1D:26:85:D2:18:FA:B2:29:95:46:8C:5F:D0:9A:CE:0B
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c0:66:58:a8:cb:4c:24:8e:32:2d:03:03:c2:15:f7:7c:06:
71:f1:bc:ce:a0:72:f3:06:1f:6e:c1:ba:1c:ac:f7:05:ab:5c:
eb:68:cc:33:02:8d:9b:0d:e9:aa:84:86:43:f4:1e:26:38:c2:
4a:94:60:46:08:32:ac:f2:7f:c4:40:69:26:e1:03:31:cf:2d:
36:b5:d5:70:fe:72:3f:c0:02:3e:24:7b:be:e8:e2:ae:83:12:
64:41:db:ef:c2:3f:f1:f0:5d:46:4b:eb:fa:47:2c:16:5f:59:
e1:11:0c:74:fa:7d:c7:36:39:d5:90:94:7a:f8:c6:e1:c8:c7:
dc:36:7a:73:77:77:8a:d5:23:81:a0:31:e7:09:bf:12:f9:89:
2b:42:00:b7:42:b1:3b:63:c3:45:e9:e3:82:59:b9:b2:87:49:
0a:f2:79:2d:ae:8a:07:f2:98:2c:f0:ee:6a:57:65:07:a3:aa:
2d:7f:c5:72:b7:e5:67:bf:5e:50:3b:fb:a7:03:75:3b:62:e7:
84:39:97:36:18:c0:67:f8:ad:40:f2:a5:e3:40:49:20:b6:a6:
64:67:12:43:75:cc:0f:23:25:4d:3d:5e:8b:4e:eb:de:62:a1:
4e:27:fe:44:ff:46:36:77:ad:c0:d0:59:b8:69:02:13:79:d3:
57:cf:ca:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 19:28:32 2025 by rpki-client