Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
File: zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft (raw, json)
Hash identifier: szq5Jd8QzELgMUzYFBRYnvsR/NjjUMaXP442ZTbHI3Y=
Subject key identifier: E2:30:06:45:98:68:D1:93:1C:A2:3D:02:FE:5D:93:3D:DD:AA:1D:38
Authority key identifier: CE:42:B4:38:5E:57:72:F5:1D:58:8E:2B:B7:21:9A:12:23:99:58:7A
Certificate issuer: /CN=ce42b4385e5772f51d588e2bb7219a122399587a
Certificate serial: 01964FDB04D47DCE71E912F8D8CEA6D656CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkK0OF5XcvUdWI4rtyGaEiOZWHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
Manifest number: 091F
Signing time: Sat 19 Apr 2025 21:01:15 +0000
Manifest this update: Sat 19 Apr 2025 21:01:15 +0000
Manifest next update: Sun 20 Apr 2025 21:01:15 +0000
Files and hashes: 1: zkK0OF5XcvUdWI4rtyGaEiOZWHo.crl (hash: xAdIXzzvcXrEmG5CF7pe63kGMdTt45iPX+1TRo/H8cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkK0OF5XcvUdWI4rtyGaEiOZWHo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:db:04:d4:7d:ce:71:e9:12:f8:d8:ce:a6:d6:56:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce42b4385e5772f51d588e2bb7219a122399587a
Validity
Not Before: Apr 19 21:01:15 2025 GMT
Not After : Apr 20 21:01:15 2025 GMT
Subject: CN=e23006459868d1931ca23d02fe5d933dddaa1d38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b1:f2:a2:69:91:91:16:57:1a:a2:d2:37:3b:
cc:d7:6b:6a:90:c1:30:94:33:04:5d:5e:ff:44:6a:
db:68:b6:8d:4d:bd:3b:60:f3:5f:71:4a:5b:a9:02:
68:3e:59:3f:dc:12:27:4d:55:62:a2:86:b5:78:47:
84:fe:bb:b1:89:c8:01:e2:ac:e9:42:4d:de:31:e7:
36:55:35:11:ba:42:6f:e4:1a:4d:78:24:1c:cf:71:
10:9a:53:eb:19:62:2b:e5:a1:0d:6f:f5:3c:cc:e8:
fc:60:7b:ae:9c:34:55:1c:e8:1c:59:17:aa:78:62:
0b:6d:69:27:64:96:d2:19:31:c5:bf:6e:b2:da:33:
83:d2:44:86:f6:26:e0:e1:3d:37:07:28:fc:79:fd:
e8:ca:bb:3c:cd:b9:d0:b2:ed:36:65:0c:e8:4d:2f:
c4:60:22:44:49:6c:4e:5b:d7:c2:29:eb:3a:dd:be:
0e:3e:1c:3f:00:39:8a:1f:8f:b9:0b:d1:45:ac:bd:
08:a7:fe:39:65:00:70:f4:b8:4c:66:af:b9:0a:1a:
92:84:74:55:bf:fa:6b:39:15:8d:15:ff:7d:5d:f8:
a8:31:86:12:d8:43:00:66:e5:f3:8c:f6:5b:f9:fe:
79:1c:2a:71:34:e0:b8:49:4b:63:a1:4b:44:fb:a2:
91:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:30:06:45:98:68:D1:93:1C:A2:3D:02:FE:5D:93:3D:DD:AA:1D:38
X509v3 Authority Key Identifier:
keyid:CE:42:B4:38:5E:57:72:F5:1D:58:8E:2B:B7:21:9A:12:23:99:58:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkK0OF5XcvUdWI4rtyGaEiOZWHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b2e528-f1f5-4c05-93ee-ca15ebf37ec7/1/zkK0OF5XcvUdWI4rtyGaEiOZWHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:08:04:1d:8b:16:68:eb:c6:90:da:02:4d:47:6b:38:04:e9:
07:8c:a6:7f:0e:31:f3:92:d6:cf:48:0f:12:b4:ed:93:73:8d:
ae:c7:e6:83:3f:0c:a1:61:8c:7c:43:ab:1a:50:0b:df:10:38:
7b:95:44:ff:db:16:c9:05:99:82:c8:9d:cf:62:af:25:b9:55:
45:a2:c3:d1:14:d7:47:9b:40:66:65:a8:70:ca:3c:36:56:9d:
61:90:88:51:6e:6c:58:28:34:05:69:b8:36:7d:33:2d:ce:b5:
57:6f:23:43:22:b2:c5:e5:62:1f:7f:7c:9d:00:b8:27:bb:71:
27:59:f0:f4:33:31:e2:54:a6:59:c6:3c:61:d9:53:e9:c2:39:
89:a5:e4:8d:37:a0:13:f3:0b:e2:23:1a:7d:72:e2:89:6f:a0:
3e:a3:26:8d:14:ab:13:03:6f:11:c9:9c:65:54:6b:8c:6b:98:
03:ac:d4:0d:55:c5:78:59:ac:77:65:a6:b4:86:15:7d:4f:de:
07:cf:24:39:bc:89:7e:e7:86:ed:52:8c:7a:dc:f5:a2:e5:05:
a4:22:75:c9:c8:7b:2f:30:15:fa:02:a0:4d:6a:41:c5:bf:fb:
da:1d:b8:dc:d4:e2:b2:83:a0:e7:cb:8a:2f:fc:f8:d4:06:53:
9a:e3:f0:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:00:55 2025 by rpki-client