Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: SGvD8JA2Z5H77asBBH2lbkG7BA20sPcvHC7nNlZGKJk=
Subject key identifier: 6E:FC:77:AE:D8:C6:A8:71:A5:FF:E5:27:B6:0C:FE:3F:D7:9A:DE:78
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 01963FF96BDB5D2CBFA94CC762A171376B18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0DA2
Signing time: Wed 16 Apr 2025 19:00:32 +0000
Manifest this update: Wed 16 Apr 2025 19:00:32 +0000
Manifest next update: Thu 17 Apr 2025 19:00:32 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: cDd/SeQQM3SBHdm18QFOP319sjQjr1nsSpX75afnRqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 19:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:f9:6b:db:5d:2c:bf:a9:4c:c7:62:a1:71:37:6b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Apr 16 19:00:32 2025 GMT
Not After : Apr 17 19:00:32 2025 GMT
Subject: CN=6efc77aed8c6a871a5ffe527b60cfe3fd79ade78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:60:ef:7a:53:02:87:64:4b:5c:22:b8:1d:29:
90:7f:b8:fb:3a:00:5d:4a:ec:1d:1f:b6:06:84:f9:
59:fb:65:fc:cf:a0:29:8f:c1:4c:4f:4b:fa:35:46:
99:c3:29:9b:05:ab:e8:d6:a0:55:f4:ce:86:b4:e4:
86:b6:b1:bf:3c:34:28:9a:54:13:95:29:df:83:e1:
0d:d9:cc:f5:1c:d4:a7:86:6e:1e:c9:bf:19:c5:25:
48:62:e6:9f:39:69:ce:99:01:b2:20:dc:98:8e:47:
37:85:1a:bb:cd:ce:84:ab:1a:d7:e4:74:14:25:4b:
7a:37:22:82:e0:35:61:4b:eb:e8:bc:58:04:35:0a:
f9:e9:56:38:ca:b0:9f:49:88:03:e0:c5:8e:8d:8a:
ee:c7:fc:1e:14:e1:3b:5d:fd:e4:e1:21:7f:93:be:
a3:22:4d:68:0b:38:11:df:ab:75:98:b1:d2:a3:86:
85:01:ee:8f:0a:b4:ff:3b:3c:bf:3b:45:0c:06:74:
40:46:2f:47:62:55:12:bb:2f:6d:96:42:e5:8e:01:
b6:fe:a1:b3:b5:ff:f5:96:23:0c:9a:1a:57:8e:80:
aa:03:2c:47:67:e2:e0:da:62:c6:ad:d7:63:43:3c:
8a:6c:8a:5f:87:ed:37:31:8b:eb:ec:0d:9e:e3:e5:
c3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FC:77:AE:D8:C6:A8:71:A5:FF:E5:27:B6:0C:FE:3F:D7:9A:DE:78
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:8b:85:be:d3:97:bd:16:cb:eb:67:37:f2:82:5b:49:07:4c:
0a:d9:97:35:e4:17:ff:ff:80:bf:7f:9b:95:a0:26:3d:1d:5a:
7a:97:87:2b:c4:16:8f:83:18:df:58:6e:16:ad:ac:de:63:3b:
8b:c3:a0:d5:17:4b:e7:48:20:3f:ff:d9:bc:91:44:0a:03:a6:
e3:70:f1:0d:ce:51:e3:e1:84:a6:5e:63:3c:f3:dc:f9:06:65:
c7:18:f8:72:6e:ee:fb:db:38:69:59:29:c5:76:3d:c4:94:23:
f0:59:20:25:06:4f:1c:1c:45:36:43:6d:bb:52:4f:bd:3b:2e:
58:b6:8f:6f:db:53:5b:be:8a:26:1f:f6:01:58:d9:d3:c3:6b:
2c:6e:26:4e:50:63:6f:71:82:ae:8a:86:49:44:0c:53:0b:23:
c0:c2:47:c8:f9:16:f2:89:e6:12:68:74:5e:5b:ae:77:21:f7:
e1:60:3b:64:d6:fd:c1:ae:f6:39:c4:59:92:c4:56:da:b3:c5:
5d:d3:d1:5f:4e:10:12:ff:82:e3:b8:8a:96:05:fb:cb:2b:a8:
50:be:be:31:4a:d3:ea:39:fe:ef:9b:9b:84:ca:4a:89:d9:e6:
71:41:a2:5c:0e:dd:6a:9b:a8:03:4f:c5:67:9e:35:ac:ef:f8:
80:1f:d7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:40:57 2025 by rpki-client