Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json)
Hash identifier: fTRfmmuxVZZwiP/+TfgO//0t8b9rOSx3Z7KO3ijdLpw=
Subject key identifier: 80:95:4C:58:53:A4:53:E6:43:B8:C5:5A:AB:34:CA:5C:51:38:D4:44
Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Certificate serial: 019657262BDF3D957BE3BF4E3F3235D6BE24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
Manifest number: 103C
Signing time: Mon 21 Apr 2025 07:00:41 +0000
Manifest this update: Mon 21 Apr 2025 07:00:41 +0000
Manifest next update: Tue 22 Apr 2025 07:00:41 +0000
Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: oAD2k4Td7EAvtBwVbu7mhZksxwC1qMqLh9DBCHGj0GU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:2b:df:3d:95:7b:e3:bf:4e:3f:32:35:d6:be:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Validity
Not Before: Apr 21 07:00:41 2025 GMT
Not After : Apr 22 07:00:41 2025 GMT
Subject: CN=80954c5853a453e643b8c55aab34ca5c5138d444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:1f:5d:65:f1:5a:cf:a1:26:ec:c6:fe:28:
c4:e7:2a:2c:f7:e7:96:c1:ae:6f:c0:79:f6:d3:bf:
e8:70:05:a6:79:ee:5f:93:ff:6b:a1:da:fa:21:ee:
34:0e:b9:01:7e:cd:a5:ed:eb:15:c6:31:75:32:f7:
13:38:f4:fa:90:49:0b:d4:de:71:d1:9f:94:61:19:
16:2a:2f:55:c3:cc:ed:5e:2e:db:08:5e:7c:dc:06:
8e:62:80:fa:bb:42:cc:9d:83:f1:11:4b:5e:b0:60:
fd:fa:21:db:06:45:2a:77:69:1d:92:f4:4c:a1:a2:
77:9b:cd:74:a8:1f:a7:96:05:24:4f:e6:1f:ab:e0:
21:a5:89:cc:3a:08:cd:a6:ad:26:71:9b:cd:64:db:
78:1c:fa:89:11:29:20:8c:22:fe:a2:10:6d:ad:5e:
3f:f4:ae:14:96:7a:63:88:bd:96:61:16:75:59:75:
fa:5c:3a:f0:75:d5:7d:39:b9:55:20:fa:30:6a:62:
9a:d7:33:3a:28:f1:6f:b9:b2:6b:b3:63:57:83:72:
a8:00:4a:c9:ba:68:ae:b3:9b:ae:00:19:6a:c6:46:
24:b6:67:dc:1d:3c:08:85:fd:1f:16:08:92:64:f4:
d1:6a:ae:52:ce:9b:81:85:ec:13:ce:75:2a:0b:43:
a7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:95:4C:58:53:A4:53:E6:43:B8:C5:5A:AB:34:CA:5C:51:38:D4:44
X509v3 Authority Key Identifier:
keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:49:64:e3:a6:68:fb:59:d6:9a:d8:d3:4e:f9:65:28:0b:1c:
a9:c2:7f:f4:2b:92:61:e2:fe:cf:61:04:21:29:5b:7e:1b:b6:
ea:6a:12:b6:b4:2a:f1:a5:58:88:a4:72:98:68:34:35:6d:b7:
e6:66:33:5c:2f:28:06:6d:4e:9b:15:fb:0e:59:a9:54:e4:f2:
f7:69:a1:2b:73:c4:62:03:05:70:d1:76:5b:98:69:13:6a:6a:
9e:03:48:8a:f4:6a:cf:02:ad:dd:7e:91:59:f8:05:b1:3e:15:
cd:c4:fb:7d:71:f6:e5:08:1d:5f:67:0b:bb:1c:22:b9:03:94:
b7:c4:d3:20:36:89:db:0e:43:23:c1:89:f1:c8:04:75:54:dd:
fe:d4:35:4d:02:93:f4:eb:40:da:db:2e:a2:da:0e:22:de:56:
e1:7a:82:08:5f:b8:c2:54:0a:50:27:3a:ad:c4:37:be:e9:0b:
bc:e9:a4:73:63:0b:43:a4:ab:3f:25:ba:eb:0a:60:b2:d3:98:
92:92:e5:3b:8e:23:58:79:82:94:00:60:78:b2:18:a1:0a:ba:
b8:3f:bf:cd:98:b9:02:f7:0a:d9:cf:9f:ae:35:7b:f5:63:23:
9c:8f:20:5b:77:d4:56:2f:2f:15:33:49:64:ed:77:55:d1:8c:
fe:85:6a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:39 2025 by rpki-client