Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
File: zEHDryzVmGV10bz2Xsnod2Zu3jY.mft (raw, json)
Hash identifier: TFfoTnJxJkhHtWaT9BF4NxytPGN2kWDZwtZ8sUMqZCY=
Subject key identifier: 5C:35:2C:13:6D:F0:60:F1:26:FF:84:38:3F:8C:6C:69:74:96:31:5B
Authority key identifier: CC:41:C3:AF:2C:D5:98:65:75:D1:BC:F6:5E:C9:E8:77:66:6E:DE:36
Certificate issuer: /CN=cc41c3af2cd5986575d1bcf65ec9e877666ede36
Certificate serial: 01964B90709D0DC4B091D7279F395E1121F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
Manifest number: 118A
Signing time: Sat 19 Apr 2025 01:01:19 +0000
Manifest this update: Sat 19 Apr 2025 01:01:19 +0000
Manifest next update: Sun 20 Apr 2025 01:01:19 +0000
Files and hashes: 1: zEHDryzVmGV10bz2Xsnod2Zu3jY.crl (hash: pY+IUel7OXHZfBnhERNdyUP/yYSAtVJ9qvTl2VGat8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:90:70:9d:0d:c4:b0:91:d7:27:9f:39:5e:11:21:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc41c3af2cd5986575d1bcf65ec9e877666ede36
Validity
Not Before: Apr 19 01:01:19 2025 GMT
Not After : Apr 20 01:01:19 2025 GMT
Subject: CN=5c352c136df060f126ff84383f8c6c697496315b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:06:dd:7d:b5:f8:10:0f:b3:92:86:b5:d9:da:
c5:0b:c2:ae:2d:0f:06:17:e7:7d:c2:6e:d3:77:5c:
da:2f:9a:33:d1:be:29:de:71:7f:61:cd:70:f5:4e:
2b:0c:41:73:cf:d7:b4:0c:42:e4:10:e9:69:f2:01:
5a:f6:ea:5c:fb:40:98:93:7b:28:04:e5:8f:a9:85:
7c:c0:13:05:c4:10:d5:58:9f:75:66:5f:b6:ec:2a:
cb:6b:56:26:53:07:60:dc:89:53:f9:1f:54:93:36:
88:ce:d3:7a:82:37:ea:5d:d7:df:01:89:c2:bc:d1:
13:d7:3d:87:9c:f4:7f:56:e4:1e:87:e2:d5:dd:54:
d9:fa:97:5e:e0:56:11:8a:2a:37:44:d0:80:92:da:
8b:a4:17:aa:66:5b:dc:9d:8f:c3:5d:d9:a0:d1:26:
25:92:3e:72:d9:c0:87:bc:be:98:6f:47:69:66:e0:
37:b9:9b:92:16:2b:37:06:05:08:24:4f:0b:73:ce:
6e:47:eb:0c:27:bc:0b:fc:89:0c:06:30:c6:5d:19:
78:68:31:07:a5:7b:3d:69:e3:1e:f5:c0:09:72:d6:
28:21:2f:dd:8e:66:cf:e4:8f:eb:d5:6c:99:3f:47:
8c:d7:0d:69:06:17:3a:55:8e:38:d7:83:e2:dc:86:
bf:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:35:2C:13:6D:F0:60:F1:26:FF:84:38:3F:8C:6C:69:74:96:31:5B
X509v3 Authority Key Identifier:
keyid:CC:41:C3:AF:2C:D5:98:65:75:D1:BC:F6:5E:C9:E8:77:66:6E:DE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:23:ab:86:17:35:5f:00:59:2c:0f:b0:89:7f:05:0a:d7:a5:
c0:df:5a:de:a0:e0:8b:43:df:75:fa:ad:e8:4d:e9:be:66:5e:
95:b0:66:c5:29:57:8c:89:43:0c:36:83:07:8f:3e:09:4e:18:
6e:04:fd:ae:16:c1:89:c6:39:a1:fb:a0:6b:52:40:b9:5f:c0:
ae:19:04:3a:26:b1:58:bd:7f:67:2a:76:03:fb:e1:dd:cd:ae:
47:78:de:1e:eb:25:bb:5e:03:f2:64:b8:cc:86:66:a6:e7:4e:
9a:38:aa:54:69:d7:20:ed:0d:98:ea:cc:70:7e:9b:99:89:56:
f5:5c:48:6a:fe:2d:ae:bf:2b:38:31:73:21:d3:37:06:f3:96:
a6:97:23:a6:37:38:8d:d5:18:61:1f:21:06:df:f6:32:d9:cc:
fc:9a:1e:ff:f9:55:df:a4:b8:7b:1b:cf:ae:07:38:5e:ea:09:
d6:64:b6:78:ad:0a:cf:9d:3b:ee:e9:8e:3f:81:bb:8f:8d:44:
26:8a:42:5d:39:50:3c:1f:0f:fd:0f:23:6f:57:0f:0a:df:d3:
e5:03:64:fb:e3:b1:b5:d0:4b:2a:03:c6:06:b8:b4:c9:e2:f6:
10:92:60:8e:6e:d3:5b:48:81:0d:ca:03:86:41:ce:d3:8a:12:
d1:fa:8c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:26:28 2025 by rpki-client