Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
File: zy3L5YDpQvIQonhxtWUMjCkGOFE.mft (raw, json)
Hash identifier: dMaCvciUmRsvW1qmg422dC5NGLO4gOmJzaBlGUiQmIs=
Subject key identifier: 53:BF:3C:BA:E0:D1:29:A2:2C:83:BD:B6:BD:9C:00:5E:CD:A8:69:AC
Authority key identifier: CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51
Certificate issuer: /CN=cf2dcbe580e942f210a27871b5650c8c29063851
Certificate serial: 019649A21266DD75422BD0028D2099A454CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
Manifest number: 14F4
Signing time: Fri 18 Apr 2025 16:01:20 +0000
Manifest this update: Fri 18 Apr 2025 16:01:20 +0000
Manifest next update: Sat 19 Apr 2025 16:01:20 +0000
Files and hashes: 1: zy3L5YDpQvIQonhxtWUMjCkGOFE.crl (hash: nBIBoCT6jh3qzgCO6I8QX93c6zrD8kpeKCrQi2AdXZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 16:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a2:12:66:dd:75:42:2b:d0:02:8d:20:99:a4:54:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2dcbe580e942f210a27871b5650c8c29063851
Validity
Not Before: Apr 18 16:01:20 2025 GMT
Not After : Apr 19 16:01:20 2025 GMT
Subject: CN=53bf3cbae0d129a22c83bdb6bd9c005ecda869ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b4:0f:c2:1e:39:d9:63:7a:66:6e:6f:1d:33:
ed:36:e1:e4:4b:f6:79:fa:ae:28:25:1e:af:bd:79:
ad:7b:ba:16:ed:e6:b3:18:3a:21:26:f4:f5:f0:7f:
4a:3c:e9:b7:d7:9b:bd:0b:e1:7a:02:ba:82:ef:a0:
29:9a:46:b0:5a:44:de:a9:9e:78:95:a7:b3:f5:e4:
f5:d5:63:a9:8e:4d:66:c9:d4:1f:f0:e3:20:21:81:
55:76:88:b0:09:80:c4:45:9e:e5:4b:08:a8:d2:b9:
1a:40:c0:d0:55:10:e6:1f:d9:e6:9f:dd:de:29:bf:
72:da:d1:9b:d6:4f:87:5c:a8:e9:2f:cc:0f:14:84:
fd:25:5b:70:4b:04:15:d0:4e:1d:b5:2a:bd:3c:64:
23:33:b5:19:0a:09:f0:27:12:37:0c:00:2d:e3:c8:
c5:da:32:8d:a6:65:e3:71:5a:63:4e:65:b8:38:17:
8e:37:ea:cb:02:c4:b7:96:ef:f3:df:8b:a1:91:36:
51:67:a9:8d:57:0b:6d:f7:a4:29:97:7d:09:6f:d9:
cc:81:ee:82:05:79:bf:cd:73:6f:2c:79:d5:ea:78:
b2:d6:63:eb:16:de:e0:18:33:05:69:b9:94:fa:c8:
6b:7f:61:a5:24:d8:f8:e0:58:50:43:10:43:15:7e:
40:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BF:3C:BA:E0:D1:29:A2:2C:83:BD:B6:BD:9C:00:5E:CD:A8:69:AC
X509v3 Authority Key Identifier:
keyid:CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:b2:39:1a:27:d0:26:93:77:e4:08:36:0a:a1:da:08:40:45:
41:c9:66:18:5c:85:5a:46:51:26:58:16:21:38:22:0b:6f:89:
bb:8a:65:4c:66:48:1f:24:00:12:a5:b3:c0:45:64:e7:cd:79:
a1:03:c2:b6:a9:79:e5:41:e7:40:4c:32:f9:4e:e1:80:4c:6a:
8d:b1:7b:53:47:2c:e2:60:15:9d:32:6f:a0:85:41:1e:bb:46:
2d:59:ed:5b:45:10:30:95:6a:2b:a1:38:49:cd:17:d0:ab:3c:
59:95:fc:bd:99:04:ec:5d:34:5a:9f:e2:6a:39:e4:00:ca:29:
74:c9:f5:13:d9:64:28:c4:7c:04:41:4a:15:a1:04:ad:01:ab:
2e:1b:52:92:2a:9d:ce:c9:67:98:35:e0:07:94:8d:8e:0a:f0:
73:0f:f0:cf:06:80:8c:18:96:f5:e4:cc:af:f4:25:e5:b2:62:
84:02:11:ba:e7:5d:55:f0:83:af:ba:66:96:f4:c1:41:19:02:
fd:2e:b0:61:aa:94:94:ad:3e:2b:b3:25:0a:d3:07:5b:d0:a6:
ac:ed:53:cc:89:86:d1:fa:cf:88:b5:10:76:06:b0:f2:b2:8e:
7a:1e:9d:b9:9e:0a:1f:72:14:92:b2:df:98:53:b3:01:a2:41:
b8:21:58:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:31:30 2025 by rpki-client