Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
File: zQwDKJL2la9ME_sKyoBD0Xsbl78.mft (raw, json)
Hash identifier: Ouab4blTU0a4yfbCmrfwq5+UutmJn/dkVO4mTwXGeqc=
Subject key identifier: B4:1C:BC:25:B7:67:E6:35:61:9D:A3:E4:95:57:2C:17:72:F1:56:BD
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 01964A7CCB816B6F0BBE76A35F30F6472950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
Manifest number: 089A
Signing time: Fri 18 Apr 2025 20:00:14 +0000
Manifest this update: Fri 18 Apr 2025 20:00:14 +0000
Manifest next update: Sat 19 Apr 2025 20:00:14 +0000
Files and hashes: 1: zQwDKJL2la9ME_sKyoBD0Xsbl78.crl (hash: xSWFY5XXapgzvDzd+TU/ig0eg02c7rmmWYUBEUz+Ruk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 20:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:7c:cb:81:6b:6f:0b:be:76:a3:5f:30:f6:47:29:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Apr 18 20:00:14 2025 GMT
Not After : Apr 19 20:00:14 2025 GMT
Subject: CN=b41cbc25b767e635619da3e495572c1772f156bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1b:60:74:b1:d6:23:2b:2f:cf:ff:96:2e:5d:
d1:6d:40:ac:67:6a:96:50:e1:45:da:07:d6:92:86:
39:2a:41:68:f3:4e:4a:4d:a1:90:ee:fa:69:d8:e5:
54:83:88:16:5d:fa:5b:dd:8f:b9:06:83:f1:1f:95:
3f:e7:ad:4c:00:8c:2f:d8:38:b3:db:7f:7b:0a:80:
85:1f:0e:a6:4d:d8:50:4e:9a:ab:1d:77:9b:62:40:
76:09:02:46:a4:3d:02:d1:c6:fd:7b:db:b2:e8:22:
da:43:74:75:d1:6a:16:43:1a:f8:ea:b9:63:f0:7f:
cb:85:06:43:70:f8:d4:61:40:42:73:52:22:62:d1:
5f:2c:ba:fb:5b:e2:e6:2b:3b:91:52:56:93:58:a1:
9a:f4:c6:33:fd:04:f3:72:2c:e5:d7:c4:38:cb:a6:
c0:bb:2d:66:e8:e4:21:19:5b:c2:1d:7c:c0:2d:e9:
f9:32:38:0e:14:ae:c6:f0:d9:2c:6c:4a:ba:8b:28:
8b:75:13:ce:99:3a:55:42:f4:e6:9a:84:88:68:b9:
67:b2:e8:b4:f2:04:a5:4b:67:c9:ae:85:4d:16:d2:
92:a6:27:3a:77:5a:de:d7:ce:6a:f9:ff:1c:2d:ed:
b4:3d:ec:53:f0:2f:0f:bd:33:47:cb:9d:41:65:8c:
24:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1C:BC:25:B7:67:E6:35:61:9D:A3:E4:95:57:2C:17:72:F1:56:BD
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:53:1c:97:cf:a3:6e:c0:0d:c8:0c:ef:8b:26:12:e8:04:07:
5b:e9:76:ee:52:79:fe:01:69:30:51:c2:d2:e8:43:00:20:6c:
e6:3a:13:f8:fa:0f:2a:ba:5b:36:e4:d7:5b:4e:f2:90:40:20:
7b:58:7e:b7:0a:1d:c5:20:99:9e:98:94:8a:c9:b3:a0:27:21:
b0:ce:26:c9:64:f1:14:c2:b2:f9:34:d6:f1:fb:41:1e:33:e2:
f9:c9:f9:ef:d4:1d:9f:05:55:ef:ed:d9:18:8f:1b:22:a8:c6:
00:f3:a7:59:92:7a:39:72:e1:8d:90:2e:ec:c9:98:2c:88:ac:
ae:b4:12:c2:be:19:98:86:87:90:59:a0:6a:38:38:0a:0f:0d:
35:78:45:74:e1:3d:96:2c:fd:06:58:39:51:c7:3a:ee:50:ab:
72:ed:a8:35:c3:04:cd:ec:7c:d7:e7:d7:cb:38:20:ec:d4:fd:
45:3a:0e:8d:69:c5:3f:3c:9d:42:26:c4:f3:fd:a7:8d:c6:e8:
fe:08:2f:1f:5a:4a:91:fc:01:f2:46:c1:b8:63:cd:f0:04:fa:
4b:cc:a5:93:e9:6c:11:44:3b:f6:3d:e5:12:6f:38:8b:c0:ec:
36:b9:f1:c8:51:1b:42:7a:de:30:2e:72:f6:a9:4c:71:8c:9c:
6e:4f:21:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:13:02 2025 by rpki-client