Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
File: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft (raw, json)
Hash identifier: QgrTcwk34Pk7Tdb+ygA4zZM8/AsIDpJg8Z8ginlk+Kw=
Subject key identifier: 34:E1:09:8E:11:8A:4A:6E:6F:C2:67:AF:9D:36:9C:BD:85:4A:B3:E2
Authority key identifier: CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
Certificate issuer: /CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Certificate serial: 01964FDAF71B3A53331295EB89BE300D3902
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
Manifest number: 0C8D
Signing time: Sat 19 Apr 2025 21:01:12 +0000
Manifest this update: Sat 19 Apr 2025 21:01:12 +0000
Manifest next update: Sun 20 Apr 2025 21:01:12 +0000
Files and hashes: 1: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl (hash: 6vH1mMPdxk5NQVK14kwQW5X9v2NZ2MNhZgYna5nrjao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:f7:1b:3a:53:33:12:95:eb:89:be:30:0d:39:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Validity
Not Before: Apr 19 21:01:12 2025 GMT
Not After : Apr 20 21:01:12 2025 GMT
Subject: CN=34e1098e118a4a6e6fc267af9d369cbd854ab3e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b5:56:46:38:3d:ad:81:9a:89:d8:5d:7d:b5:
02:a6:85:e7:3f:f9:32:a6:10:c6:2b:e1:da:37:80:
63:1e:73:88:ae:c3:a5:c4:db:b3:b9:ef:b8:57:57:
df:f7:44:35:a6:17:7a:3d:7b:cb:1b:ca:23:71:3e:
f6:d6:21:cd:4b:9f:93:e2:63:f6:e4:e8:25:64:42:
02:2f:37:4a:20:89:5e:55:47:44:bb:db:76:9e:5e:
71:00:15:c0:74:45:1d:d1:1b:49:fe:f0:e3:cb:3f:
1f:84:f0:0f:95:eb:c9:dc:0f:07:7c:62:2a:df:bd:
eb:f4:88:f7:e4:0e:78:9a:54:72:10:1b:de:94:25:
ef:83:54:66:3d:2a:a1:18:96:e1:20:ab:5f:80:ef:
a9:e4:6f:60:b1:5f:e3:37:7b:7e:21:e3:40:6a:f9:
89:cb:15:d3:c1:7f:2a:e9:fe:ee:9f:34:6b:9b:c6:
fe:ce:00:ce:58:14:0a:84:58:87:67:22:38:f3:f4:
f1:2a:c4:51:c5:1b:77:51:75:87:0d:54:c6:0b:74:
22:3f:09:ae:f2:79:da:2c:a4:ce:7f:5b:7b:ca:c5:
b0:bb:c3:03:28:cb:fc:ec:ca:0e:8e:03:93:1a:ba:
7f:14:fa:6a:94:c7:c7:af:55:55:77:79:95:d3:5f:
c4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E1:09:8E:11:8A:4A:6E:6F:C2:67:AF:9D:36:9C:BD:85:4A:B3:E2
X509v3 Authority Key Identifier:
keyid:CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ed:ce:d8:48:0b:d0:35:a7:d4:fd:4d:c6:6b:58:f7:6c:d4:
3c:6e:9a:39:65:e2:6f:90:88:26:09:ad:d8:ae:ec:89:05:bd:
44:c8:2f:39:27:b5:52:44:eb:7d:82:29:cd:07:a2:13:8c:d6:
b4:05:7e:b3:02:f7:37:6c:a9:21:fc:61:dc:4b:fd:ea:3e:74:
ec:9c:6d:c8:15:db:a7:7b:05:66:53:c0:62:9f:65:9e:26:97:
6e:5f:36:0d:07:eb:52:78:c0:88:b4:08:df:81:bb:d2:80:10:
df:52:66:3c:bd:82:f8:7e:55:9b:61:0f:27:0a:8f:b1:5c:a6:
7a:c2:1c:a7:f3:56:8b:0b:d6:39:0c:2f:50:3a:5c:e9:e0:62:
ca:f7:e5:35:9a:2a:5a:18:24:cb:75:d3:76:e5:42:02:fe:03:
ca:ba:d4:f1:ac:2a:4c:b8:39:fe:23:09:c2:52:73:62:17:e2:
06:a2:b4:2e:98:8c:3a:91:a0:8d:e7:b7:59:38:ba:b8:2d:a2:
58:50:7f:05:be:68:fc:3d:73:d4:4d:82:8c:09:e6:e7:de:fe:
45:5b:61:dd:3c:c7:62:e4:27:7f:26:08:3f:33:11:cf:22:6c:
de:39:3e:bb:a3:87:e1:80:8f:2d:67:e0:23:9a:b9:cb:0f:7a:
15:30:1d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:56:29 2025 by rpki-client