Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: WXinNeOtjPlbrbL/E5M6CO9xJZntuXVGnfM9VjKU3ps=
Subject key identifier: 9F:47:3C:0C:78:71:ED:8B:6E:29:F2:3B:BC:F2:2E:5F:18:4D:4A:A9
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 0194C3873E17D6E4E2E57C6D9C352A7319F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0CDD
Signing time: Sat 01 Feb 2025 22:00:07 +0000
Manifest this update: Sat 01 Feb 2025 22:00:07 +0000
Manifest next update: Sun 02 Feb 2025 22:00:07 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: YX89ywFK7ChMwFdJR9eFvY8cOscp8SkioBfrhVpKzpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:3e:17:d6:e4:e2:e5:7c:6d:9c:35:2a:73:19:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Feb 1 22:00:07 2025 GMT
Not After : Feb 2 22:00:07 2025 GMT
Subject: CN=9f473c0c7871ed8b6e29f23bbcf22e5f184d4aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:af:e2:d3:09:82:6b:c5:cc:94:19:2f:b9:
14:dd:23:07:76:c7:80:5b:1e:59:e6:92:b3:71:fc:
f0:2d:1f:a6:f3:d8:24:65:1f:b8:f8:bc:f5:6d:a6:
0e:eb:24:6e:c8:e5:21:6e:dc:58:a1:78:1e:77:8f:
e2:62:e2:1b:37:60:d7:51:31:44:8b:99:17:1e:5e:
1e:39:48:19:a5:b2:d4:de:bb:4c:1f:c0:77:be:db:
f7:aa:5e:f6:2e:3c:e3:5f:bb:40:d0:2b:25:f7:cd:
53:e8:e7:eb:89:57:68:dc:71:54:b1:20:d7:94:69:
bd:6f:81:48:ac:58:46:8f:c3:51:84:b1:c6:80:09:
66:75:46:29:9b:99:11:f5:4d:cd:98:ad:8f:ca:aa:
28:cc:c9:b1:2f:ab:fb:be:e7:6e:0d:de:0d:e6:e7:
01:25:28:f1:2b:b9:79:ea:a3:43:be:c3:26:51:24:
2e:af:44:e6:f2:0b:0b:df:90:92:39:29:04:cc:7e:
44:38:90:52:9a:18:a7:80:9d:6e:7e:45:13:8a:0d:
ef:e4:6f:7a:4d:e8:dc:20:1d:2c:74:2e:07:a3:8a:
a1:57:20:75:df:21:bb:99:bb:e0:4d:7d:42:8d:98:
1c:c1:3a:8a:8c:71:3b:63:e4:0f:b1:cf:0a:b1:b5:
a9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:47:3C:0C:78:71:ED:8B:6E:29:F2:3B:BC:F2:2E:5F:18:4D:4A:A9
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:20:53:79:d0:1c:fc:82:5d:8c:73:0a:e3:f6:ed:9c:5a:60:
00:4b:8a:8c:28:40:69:c9:6c:09:a6:bd:5e:4b:de:4b:c0:57:
87:20:e8:05:6a:f9:c2:ca:f3:81:d5:16:83:3b:e8:df:74:fe:
2d:93:15:03:62:73:5d:84:bf:f2:90:f5:03:3f:e7:c7:cd:c6:
97:f2:25:ab:ab:8f:fb:2c:8a:28:e1:dd:5e:f8:d6:1a:c2:b2:
98:a1:d4:3f:80:5d:26:51:32:cf:f4:68:97:00:73:35:97:70:
4b:03:59:fa:fb:55:d4:b1:6f:44:21:97:6c:88:d1:92:80:f3:
e4:3c:22:cf:00:25:63:44:1c:0b:21:75:9f:67:c3:7a:29:38:
b4:b5:5a:eb:ee:97:e3:b2:37:03:4a:87:65:5e:01:ae:69:3f:
c8:af:a8:27:da:34:9c:73:e1:f3:7e:2a:b0:e0:9c:50:ae:2b:
bb:10:7a:dd:7b:fc:49:2b:90:76:a9:95:51:90:dc:76:ba:7e:
e2:89:17:7f:da:11:88:f3:09:9b:23:9e:02:6d:f9:17:89:32:
3d:0e:2b:00:5a:14:38:55:46:a7:73:b6:58:87:8c:a9:a2:5b:
07:75:24:79:7b:c3:7e:dd:9d:e9:f3:b0:d1:d3:f8:0e:14:4c:
ba:ca:23:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:51:38 2025 by rpki-client