Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
File: Z8i133U8dJrleBD52T87pRrgXVw.mft (raw, json)
Hash identifier: lPe0N3QtTdO/6sp9q09EKz3K7uxnO0h6UZrILdR2OJY=
Subject key identifier: 5B:47:13:51:D5:FC:0D:BC:7B:B5:BA:CA:59:42:EC:2D:D3:3E:EF:D3
Authority key identifier: 67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
Certificate issuer: /CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Certificate serial: 019510C6B3FC8ECBCAE7B3EEEEEBA462E41F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
Manifest number: 0D52
Signing time: Sun 16 Feb 2025 22:00:12 +0000
Manifest this update: Sun 16 Feb 2025 22:00:12 +0000
Manifest next update: Mon 17 Feb 2025 22:00:12 +0000
Files and hashes: 1: Z8i133U8dJrleBD52T87pRrgXVw.crl (hash: EV5Eg23EetkDwiohpg6xiW29PFz0M8sbu2998MB4zXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:b3:fc:8e:cb:ca:e7:b3:ee:ee:eb:a4:62:e4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Validity
Not Before: Feb 16 22:00:12 2025 GMT
Not After : Feb 17 22:00:12 2025 GMT
Subject: CN=5b471351d5fc0dbc7bb5baca5942ec2dd33eefd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b5:d1:cc:89:cd:75:3f:9e:6e:a6:56:a6:4f:
08:87:c8:73:a1:af:3e:c5:53:3f:e1:04:b4:06:c5:
0d:3e:ce:78:b1:a7:ed:29:f8:87:a1:cf:af:04:d8:
66:ab:fa:8a:10:c2:1a:57:98:07:23:c6:ce:74:fe:
37:34:f7:6c:50:c2:69:69:e6:ff:1c:ad:b2:72:46:
20:bf:cb:3b:5c:f1:25:98:49:aa:44:ad:30:f8:ad:
6d:5b:ab:a8:19:2e:33:24:54:6a:af:b1:21:cf:af:
78:c0:e3:87:c9:98:6c:21:25:bb:62:60:68:ca:ba:
c2:e3:ea:ce:69:89:c1:c7:72:95:6a:a4:33:2f:d6:
d7:01:77:47:09:91:20:cd:1f:cc:2a:2f:30:57:9f:
e9:28:f5:40:f1:40:cd:26:c3:f3:47:0e:3b:19:af:
9d:80:ac:a4:96:5d:85:37:16:c8:d9:27:90:3a:08:
0d:fe:0c:1d:2f:90:6f:cd:77:b3:1b:63:e6:a0:b1:
b6:39:ed:b8:73:1e:44:d1:11:69:e5:31:2b:bc:89:
9b:71:57:06:59:01:6b:fd:5b:4f:54:3e:56:e7:23:
a5:29:57:55:64:20:28:ca:df:9c:65:e5:8d:92:4e:
02:20:64:b9:08:7a:69:6e:fc:04:57:6f:34:62:20:
ee:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:47:13:51:D5:FC:0D:BC:7B:B5:BA:CA:59:42:EC:2D:D3:3E:EF:D3
X509v3 Authority Key Identifier:
keyid:67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d1:6c:e7:fd:ba:d9:4a:f8:67:e7:f1:81:ce:08:3e:67:b1:
ad:15:74:21:48:84:83:f0:1a:f6:d2:53:b6:d8:c3:fd:ba:31:
5c:1b:f8:83:ab:fd:32:f9:94:33:07:c1:45:a9:08:55:d9:9b:
58:3c:32:48:55:4b:9b:fc:61:12:4d:2e:f6:02:b3:59:2c:fd:
d1:3e:a9:8d:32:6b:d0:44:b3:cf:9d:78:b2:22:d2:44:ef:11:
ea:11:40:75:2c:80:2b:48:2a:97:8b:85:83:af:35:cd:20:d0:
92:09:62:11:b6:76:52:c8:50:9b:77:d7:61:3a:ee:2e:91:0c:
1b:13:cd:f5:65:8b:4f:70:0b:47:83:12:0f:27:22:f2:11:f8:
30:f4:41:31:85:2b:c6:d9:f3:6f:3e:61:00:2e:04:4e:9f:3e:
c9:ae:21:19:87:01:b4:4f:46:98:c4:dc:21:c8:0e:18:4b:aa:
1e:8d:b0:4b:48:df:1e:5b:b4:aa:e4:f5:42:e0:47:26:6c:03:
a1:dd:13:26:c7:3c:34:45:32:df:12:7e:b2:4e:44:8b:e2:f5:
57:1c:9d:bc:4a:69:ea:7d:da:39:6a:08:28:89:2a:46:3d:a1:
23:db:77:70:a4:f0:58:e8:98:89:e3:5e:30:0a:9b:d8:b5:12:
9b:f5:ae:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:23 2025 by rpki-client