Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
File: ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft (raw, json)
Hash identifier: vo9y2PPEWtMNuLBg+J03cz8NpdVLJcv6YuB3POnT77s=
Subject key identifier: AA:9F:31:1F:4B:82:E8:BD:65:40:46:99:52:94:78:E5:1B:BE:15:FF
Authority key identifier: 65:28:2B:F5:2B:FB:80:F1:10:6B:3C:0E:CD:FA:1A:54:33:30:50:86
Certificate issuer: /CN=65282bf52bfb80f1106b3c0ecdfa1a5433305086
Certificate serial: 01964EC81C15EFA920E281C9286B95A7D546
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
Manifest number: 11DB
Signing time: Sat 19 Apr 2025 16:00:59 +0000
Manifest this update: Sat 19 Apr 2025 16:00:59 +0000
Manifest next update: Sun 20 Apr 2025 16:00:59 +0000
Files and hashes: 1: ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl (hash: c/imsNTh5rPWuv0lWcuMpKovl8JKVrlh5VdmvUIM2hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c8:1c:15:ef:a9:20:e2:81:c9:28:6b:95:a7:d5:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65282bf52bfb80f1106b3c0ecdfa1a5433305086
Validity
Not Before: Apr 19 16:00:59 2025 GMT
Not After : Apr 20 16:00:59 2025 GMT
Subject: CN=aa9f311f4b82e8bd65404699529478e51bbe15ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:aa:8d:0f:bf:a4:ab:d7:59:96:8e:51:dc:
59:d8:b1:28:2b:8c:e1:39:f0:d4:6f:a4:90:43:2e:
5b:2c:4d:8a:4f:da:5c:23:70:11:a4:b9:19:0e:a9:
3a:5d:f7:d8:06:4f:b3:71:42:0f:3f:6d:3c:8d:ea:
1e:36:a3:7f:21:5a:aa:1f:bc:15:7e:39:ad:5c:51:
dc:01:74:3a:5b:a6:ca:f0:31:a2:78:73:8b:e4:c4:
e2:76:3f:50:cf:cd:68:55:d9:eb:1b:53:61:ad:6d:
c4:a0:45:30:0b:ca:03:f0:cb:c9:e9:32:18:3a:06:
75:41:ea:07:9f:a5:af:7b:0a:fc:5c:38:02:3c:47:
51:06:cf:dd:6a:65:0d:87:34:5b:3a:75:83:9e:c0:
da:6b:9e:08:eb:d0:26:89:19:da:da:d4:a6:7d:88:
41:17:89:56:6c:92:87:9a:d7:57:42:15:f1:fd:7d:
ac:3d:43:f2:40:86:cc:0b:51:8a:1f:10:32:17:26:
f0:3d:b7:4f:50:69:df:c9:6d:5d:8f:f1:4c:8f:6a:
ad:ed:9e:03:6a:9e:a6:60:36:db:7f:ec:94:e7:6c:
52:d1:8e:4c:6e:b4:64:53:e7:bb:9a:80:39:79:89:
f2:e9:2e:6d:ce:76:e1:2f:31:c8:01:9a:cd:75:82:
1a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9F:31:1F:4B:82:E8:BD:65:40:46:99:52:94:78:E5:1B:BE:15:FF
X509v3 Authority Key Identifier:
keyid:65:28:2B:F5:2B:FB:80:F1:10:6B:3C:0E:CD:FA:1A:54:33:30:50:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:74:56:69:7c:56:56:f3:02:cc:29:d7:22:ec:3b:39:d0:06:
91:fe:0e:59:10:4d:01:49:63:23:e7:99:ec:af:97:d7:01:66:
bb:44:8f:21:8e:46:b8:dc:a7:75:68:5c:56:1c:5e:73:7e:d5:
4e:af:81:5a:50:9d:13:be:07:5d:5c:8e:ff:58:92:95:a3:62:
48:2b:68:18:86:34:fc:c6:c1:25:03:05:66:53:2d:1a:82:36:
30:a1:b8:aa:fb:c9:eb:3d:b1:a4:a1:c4:91:cf:12:46:70:b5:
10:fb:80:fa:59:9f:f7:d8:00:e9:76:f8:d8:2e:0b:28:ac:a8:
9f:26:8d:15:23:e7:5b:14:82:ae:f9:db:f3:0a:c3:4a:d7:74:
e7:dd:67:64:33:2d:cb:64:33:6c:fd:db:f4:80:ae:5a:90:fd:
9b:d8:03:59:84:e9:b2:e7:59:0c:2c:83:3d:b1:8c:67:3a:9b:
a4:73:94:2d:1d:03:9e:8b:c9:93:aa:83:dc:94:d3:f9:24:5b:
d8:d6:16:46:30:45:10:bf:d2:1c:d2:f2:79:fb:44:26:ab:5a:
07:03:25:7b:81:2d:78:b6:61:64:3e:93:7e:3b:26:3f:87:e5:
59:1f:22:57:d1:67:8f:2a:74:f6:1b:03:ed:4a:81:e0:8c:c3:
25:f6:aa:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:46:20 2025 by rpki-client