Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
File: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft (raw, json)
Hash identifier: 0iEJb730oqsncVolEEgc/OXfjPplR0In2CFx2D9/UZ0=
Subject key identifier: DD:65:26:D7:CB:D6:36:88:75:95:DD:04:82:61:6F:41:98:02:22:4D
Authority key identifier: 65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
Certificate issuer: /CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Certificate serial: 01968A3772B256C1F4F3363C37ED860A8E82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
Manifest number: 11D8
Signing time: Thu 01 May 2025 05:00:11 +0000
Manifest this update: Thu 01 May 2025 05:00:11 +0000
Manifest next update: Fri 02 May 2025 05:00:11 +0000
Files and hashes: 1: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl (hash: 8Mh96aCv3e0wKQReXDexs2/BxiojJ5Tiw9eZVVW4qUc=)
2: cD0i6eXUEb95MRC9zt2P-QsR-zI.roa (hash: bwRfJD4nIDDz+Ohj/YcPEu2i5IBHAbvcA7uyG/Ew8EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:37:72:b2:56:c1:f4:f3:36:3c:37:ed:86:0a:8e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Validity
Not Before: May 1 05:00:11 2025 GMT
Not After : May 2 05:00:11 2025 GMT
Subject: CN=dd6526d7cbd636887595dd0482616f419802224d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0f:f7:95:db:6d:55:ed:4f:eb:f5:20:30:dc:
7f:16:fe:4b:fe:e6:5f:99:22:23:8a:0c:66:65:74:
2d:f4:80:cd:65:e9:f0:27:94:0e:a9:49:15:2e:f9:
ed:87:15:eb:8f:68:d5:49:7d:10:86:db:8f:eb:c9:
fd:ab:24:f6:94:d4:af:cc:d9:23:96:b7:34:cb:b7:
aa:21:cc:ed:4a:3c:fb:f2:1e:da:fb:bc:84:ab:e6:
e9:f2:ed:37:e5:2e:ef:3d:b3:8e:3b:2c:84:37:3b:
65:df:14:27:5b:e5:ee:55:87:37:aa:b2:e9:08:5a:
95:48:05:6e:ac:a3:41:34:d6:49:93:20:9f:ce:f2:
a8:96:02:0d:bf:0f:9f:04:97:0f:00:53:11:95:75:
2e:ca:ff:45:2b:89:e9:0d:8a:da:e2:bf:14:e5:a2:
6c:ca:8d:6d:25:5c:84:50:2b:63:62:be:2a:89:9e:
10:1f:c3:a5:67:fe:dc:64:e4:9c:2a:ea:4c:98:af:
aa:d4:97:8f:f7:94:b6:69:16:ba:0d:48:d7:c6:da:
55:81:30:3e:4f:67:38:2d:07:88:aa:7e:b1:34:91:
a1:81:0d:e0:52:88:6d:12:94:51:43:be:31:8d:04:
af:b0:a1:52:93:f5:08:b3:fd:72:fb:00:d7:2a:31:
3e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:65:26:D7:CB:D6:36:88:75:95:DD:04:82:61:6F:41:98:02:22:4D
X509v3 Authority Key Identifier:
keyid:65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:df:a1:1f:65:a1:70:1e:a0:16:74:39:47:62:b2:fd:8f:4d:
9f:27:2c:9d:de:62:f2:84:86:8f:26:dc:37:5b:ca:37:2a:86:
68:b4:5b:2c:14:69:87:15:26:41:90:1e:b6:f2:2c:a4:20:07:
83:05:7f:1c:c1:61:3a:06:a2:88:aa:bb:09:fd:68:9d:29:0f:
e3:37:cb:69:06:77:0e:7d:05:e7:25:1b:19:69:b0:5a:da:61:
08:a0:4a:4e:fc:6b:bf:83:57:2e:40:59:0f:cd:ac:1d:a3:90:
f2:5e:8b:88:eb:c8:c8:76:50:60:fd:95:86:48:03:9d:1b:83:
64:e7:2d:88:f2:e8:80:e9:90:6f:f6:b3:c5:e2:30:e6:33:69:
35:ef:ab:2c:0b:5a:2f:7d:64:25:9e:9d:41:bc:d6:29:c5:90:
17:82:68:18:0a:d0:c1:13:c6:04:0f:d3:94:8a:bb:42:f4:87:
fe:f2:31:53:63:5b:95:9b:21:bc:ed:2b:d6:89:ae:db:a1:6b:
0b:8b:26:bc:17:6b:b7:fd:1a:1c:94:8e:44:ae:a0:6f:60:4b:
f2:fb:08:b8:26:33:6f:31:a2:a3:b0:96:76:92:4b:b9:7e:02:
ae:16:67:52:e3:4f:4d:0b:0f:d4:2b:d6:6e:23:1c:ae:ff:14:
2e:25:17:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:22:49 2025 by rpki-client