Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
File: zfDoJMYqWSimUCFO8z6Md-fB_40.mft (raw, json)
Hash identifier: cvxajEFWN/uGY074HxPMotztqqwuPs2bgKG9jw+w6GM=
Subject key identifier: C9:AF:DC:D8:B5:C1:F7:29:06:2C:52:25:7C:93:AC:00:3A:8F:D0:E6
Authority key identifier: CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D
Certificate issuer: /CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
Certificate serial: 0195903D15818E60DED92B62B9B3535E66E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
Manifest number: 0E39
Signing time: Thu 13 Mar 2025 16:01:17 +0000
Manifest this update: Thu 13 Mar 2025 16:01:17 +0000
Manifest next update: Fri 14 Mar 2025 16:01:17 +0000
Files and hashes: 1: zfDoJMYqWSimUCFO8z6Md-fB_40.crl (hash: /kd8rPW/hpFBQzbTI+8Ox2884CoxHE4mfilGo0NsGOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3d:15:81:8e:60:de:d9:2b:62:b9:b3:53:5e:66:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
Validity
Not Before: Mar 13 16:01:17 2025 GMT
Not After : Mar 14 16:01:17 2025 GMT
Subject: CN=c9afdcd8b5c1f729062c52257c93ac003a8fd0e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ec:c7:d0:21:49:ea:98:e1:63:c7:18:f9:1e:
8e:05:92:8f:5c:f2:be:29:9c:51:dd:28:ef:23:9e:
ca:1c:e3:50:32:47:cd:9d:ba:a2:30:42:89:69:f9:
08:a9:6c:75:d5:99:fc:bd:90:c3:aa:72:2c:d7:86:
74:25:31:0d:12:ef:ae:6f:b3:1d:7d:97:47:b0:15:
00:97:68:ac:7b:c9:fa:16:d9:5b:c1:e5:3d:e2:d4:
64:8f:5b:7f:7c:44:b1:1b:8f:fd:c8:0f:57:52:fe:
d6:df:27:6e:24:66:c2:f6:ed:ae:e2:fb:a4:ed:c2:
53:5f:22:ed:dc:60:c5:ea:31:25:ed:8f:19:de:91:
3b:88:73:2c:ef:14:03:d7:70:f2:61:d7:3a:e2:37:
1b:88:4f:8d:0d:ab:59:96:dd:63:1b:1f:22:48:5b:
a5:5a:fb:2c:8e:cb:20:1e:7f:e4:77:b0:22:3a:d0:
cf:5d:9b:e1:46:ec:37:71:3d:4e:40:30:9f:20:4a:
f0:f4:8a:84:17:e0:08:89:e8:22:02:d3:8d:76:32:
29:99:72:e1:32:36:8c:ca:af:8f:b4:0b:e4:7c:26:
96:aa:7a:61:1e:64:e9:93:eb:a8:66:6e:e5:a8:79:
15:6b:25:82:bc:fb:ed:cf:75:fa:f9:ef:11:30:16:
af:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AF:DC:D8:B5:C1:F7:29:06:2C:52:25:7C:93:AC:00:3A:8F:D0:E6
X509v3 Authority Key Identifier:
keyid:CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:cc:69:27:18:82:fe:e3:cb:25:a3:b9:cd:2c:c8:42:0c:09:
74:e4:22:3a:66:8d:39:d2:fe:9f:91:48:fc:0f:0e:22:50:29:
3c:7c:86:db:26:eb:81:1d:8f:44:f1:72:d4:85:0e:c5:6f:3e:
da:77:e4:16:d4:be:cd:f8:ff:4f:57:2e:3d:5d:2e:a9:0b:06:
2c:6d:72:9a:28:49:46:43:f4:c7:6f:e8:bc:23:22:98:4b:5f:
39:25:89:c0:8c:36:f7:d9:da:48:08:ba:e8:49:8a:ac:f3:1e:
8a:55:a2:a1:95:d5:e3:9b:71:1e:ac:ce:01:fa:17:1a:e2:a6:
41:c8:38:cb:bf:00:ab:ba:ff:0b:ec:37:78:5c:76:d8:8a:0d:
98:91:ba:22:2e:96:38:3d:a3:a0:c1:37:2f:f4:a1:ce:b2:29:
ab:61:0e:02:da:0b:d9:27:e4:8d:10:2b:f7:49:f5:cb:07:1c:
5e:cb:55:6f:02:67:aa:61:ae:e2:4e:fa:71:87:ee:f7:c7:ff:
2b:cd:63:8b:e2:01:27:9c:1e:a2:7a:d2:b8:e5:f8:f7:33:e8:
e1:07:4d:96:66:23:8f:3a:21:ac:d6:14:b9:4b:c3:2b:77:42:
2e:44:41:14:c0:6e:ad:e4:9f:1c:20:1f:3d:1d:bb:2b:86:9e:
02:48:ed:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:34 2025 by rpki-client