Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
File: Z8i133U8dJrleBD52T87pRrgXVw.mft (raw, json)
Hash identifier: gOFCGZ/cRjGc/tllmA5mxKUVyZjS9ydLT8YOrcyGsFE=
Subject key identifier: CC:A0:52:12:5F:6D:61:0B:CE:14:D5:B1:A5:C7:0B:96:11:3D:A2:CA
Authority key identifier: 67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
Certificate issuer: /CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Certificate serial: 0196515BA827C174C2D7376AFF6A327A4CAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
Manifest number: 0DF8
Signing time: Sun 20 Apr 2025 04:01:23 +0000
Manifest this update: Sun 20 Apr 2025 04:01:23 +0000
Manifest next update: Mon 21 Apr 2025 04:01:23 +0000
Files and hashes: 1: Z8i133U8dJrleBD52T87pRrgXVw.crl (hash: Io3FDoMPAin6ZjazKoRGGyfMeeuVcA99wUbYMDome3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:a8:27:c1:74:c2:d7:37:6a:ff:6a:32:7a:4c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Validity
Not Before: Apr 20 04:01:23 2025 GMT
Not After : Apr 21 04:01:23 2025 GMT
Subject: CN=cca052125f6d610bce14d5b1a5c70b96113da2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d0:b0:3a:23:23:a6:cf:eb:02:9d:19:e2:0a:
25:27:e0:ae:13:df:d2:42:44:54:49:8e:5c:43:34:
84:ec:b8:11:fa:bb:ae:bc:f8:a1:9e:22:b8:17:19:
8a:3e:1a:d8:4b:93:3b:cb:e2:fa:85:51:ad:40:9b:
71:0c:c0:16:32:8d:34:92:87:2b:a4:96:48:7b:e4:
ae:9e:d0:60:64:fa:a8:79:c6:e7:7c:ad:bb:63:f8:
bd:be:d5:b1:76:23:51:68:98:c1:2b:22:e5:7c:d7:
9f:e1:15:9a:a1:13:c2:44:e2:02:c0:a4:52:ed:91:
b5:45:a8:0e:7c:ec:bb:d9:80:a7:a5:3e:7b:cd:20:
46:10:a6:67:5f:03:fb:cf:f4:14:c3:f8:72:e8:66:
b3:19:a9:40:35:66:75:a5:2c:61:ab:34:47:84:83:
f3:2b:8c:81:d6:94:e1:a2:ec:04:b4:63:c2:03:f0:
30:d8:56:db:a9:75:f0:39:fb:6a:11:91:c3:bc:43:
62:e9:a6:b4:b9:be:68:80:4f:53:02:ed:f7:a5:1c:
f3:da:41:98:de:7c:e4:b4:3e:d1:b0:79:0a:90:53:
75:15:f4:04:94:cb:08:3e:15:dc:8d:a8:2f:b0:8f:
2c:43:e2:04:88:45:49:de:1c:89:58:5b:ee:32:80:
fe:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A0:52:12:5F:6D:61:0B:CE:14:D5:B1:A5:C7:0B:96:11:3D:A2:CA
X509v3 Authority Key Identifier:
keyid:67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:11:91:fd:44:68:a6:bb:a6:47:d0:18:b5:f3:ea:67:29:ff:
f6:ac:8d:f5:45:48:07:b9:66:b9:c7:be:da:62:fd:d0:df:02:
18:ad:8f:b4:79:cb:ca:b4:89:c5:5c:bb:17:5a:f1:ba:25:0f:
42:95:dd:d4:cf:57:3d:32:4f:15:89:06:b0:ca:d8:8b:e1:ce:
f1:3b:6d:55:ff:63:f9:98:6d:90:38:42:cd:b6:7a:ca:67:41:
23:39:35:31:04:8e:d9:cd:d9:0f:15:6a:4a:71:b9:c1:fb:ae:
30:a8:2f:8f:c8:15:32:4c:4b:72:46:c7:ca:76:76:da:a1:74:
73:5d:49:0d:b8:44:cf:cc:a3:63:de:67:97:97:be:aa:65:51:
33:83:f8:91:a4:a6:b3:2e:6a:b1:a4:4e:90:d4:7b:c3:3b:4f:
66:03:1b:8d:74:8c:6c:a5:26:24:53:f3:6e:d1:a3:e1:b3:09:
cd:d6:81:b3:c3:e8:ec:2a:9b:d1:8b:7b:a9:1c:f8:6d:37:a3:
65:f1:c2:47:1b:6b:5a:b0:c0:11:0d:7e:23:03:95:9a:95:87:
4c:b8:57:a3:b5:5a:c9:43:74:77:b4:54:9f:77:81:09:4f:a0:
d9:e2:ff:02:59:87:a2:c9:26:ed:d7:32:d7:e3:2f:46:78:9a:
1d:d8:30:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:57:39 2025 by rpki-client